This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: Hyump/yme+naCr0xAWHT5Bve8W/HwfQxeYOF3B46vpU= Subject key identifier: 64:B4:A6:BA:08:D8:1C:A3:89:6C:FB:73:93:04:4C:0B:B7:22:68:4F Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: CF Signing time: Fri 05 Dec 2025 03:45:44 +0000 Manifest this update: Fri 05 Dec 2025 03:45:44 +0000 Manifest next update: Fri 12 Dec 2025 03:45:44 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: zqiJ6KpIyGl7JalO4kx8aVzGRXxtXD/1tPZmOaDEzGY=) 2: 8B9AE5E6843211F099BF476CC4F9AE02.roa (hash: f0yL6dm4aQQSfB+ngsxTE6LWk8z3YuY+EKGRY0bzeRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Dec 5 03:45:44 2025 GMT Not After : Dec 12 03:45:44 2025 GMT Subject: CN=69325568-a90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:c8:4a:73:14:e9:e5:c0:92:82:e2:74:7a: 15:d2:6d:3d:b7:a1:3a:10:60:66:a2:0b:cb:95:60: cc:0f:2c:c0:fe:e2:60:54:89:0c:99:90:54:a3:2c: 96:3e:50:7c:fb:66:74:68:e0:7a:fd:ab:da:67:25: 11:15:6b:2c:af:8e:06:80:37:32:40:7c:ec:5a:fc: 3b:15:65:c9:3f:20:96:09:76:c3:bb:3e:6c:43:f2: c3:39:15:74:e0:5b:35:fd:40:a0:7b:91:5b:bf:d6: d8:da:40:b4:a4:42:0c:9f:0a:71:33:99:3c:39:22: cb:48:20:a0:35:3c:be:75:45:b2:a2:4a:81:2f:dc: 98:d7:9e:93:2a:be:16:19:c6:59:b6:13:17:63:3d: fb:54:47:0d:e2:4c:88:50:71:65:1c:aa:9b:6f:3e: c9:55:24:e3:83:43:e6:89:36:81:bf:14:a0:cf:34: cc:53:69:d0:6f:f8:4d:67:8e:9d:19:c5:be:e5:b5: 3b:e4:82:77:97:c6:f8:9e:c4:04:5e:8d:cc:65:35: 62:29:d7:ab:c2:10:6c:18:e3:42:08:e9:92:cf:a2: f3:c5:9a:ae:4c:cc:fb:84:80:f1:81:44:6b:b4:7d: 49:f6:6a:c5:2a:7b:ba:90:40:f6:52:19:d5:49:00: b5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B4:A6:BA:08:D8:1C:A3:89:6C:FB:73:93:04:4C:0B:B7:22:68:4F X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d1:06:72:36:0b:fa:da:db:76:3d:b7:63:8f:05:ec:f9:24: 09:0b:da:97:1f:9b:ac:f8:c8:03:ba:f9:27:7e:6d:ae:a5:7c: c7:45:ff:e1:c7:54:2e:31:83:7d:62:3c:88:c9:e9:dd:4a:ba: d8:66:ad:a2:cb:32:c8:50:65:6f:cc:d0:0f:12:67:bd:ee:f4: 1a:fb:6b:fb:3c:f3:0c:7d:de:d1:12:5a:ed:10:73:89:50:e6: b2:fe:81:cf:9c:f2:88:83:48:04:df:6d:5b:8e:e9:12:c5:69: 66:bc:1d:9b:04:41:99:db:6a:d6:1e:fe:61:81:0c:ac:fa:17: f4:f3:fd:d4:9e:0f:44:81:2c:16:41:ec:02:19:55:a9:a9:9c: e6:c7:be:e3:c5:68:78:38:7e:0c:a8:04:e0:c0:a5:69:04:84: 1c:1d:d4:82:20:4b:77:e2:46:9f:92:27:12:4a:57:7c:da:8f: 77:7f:b6:ae:b3:2f:3d:63:97:02:49:b3:f5:93:44:95:d1:7b: ac:0d:a0:6e:b8:8c:97:91:6c:9a:cf:7d:03:40:3b:18:a8:6a: e9:23:ae:92:c9:aa:55:58:41:21:6e:f2:a3:b3:e0:c8:03:7c: 1a:1c:14:70:7d:20:75:70:ad:26:81:dc:ac:5d:a5:91:9b:9e: db:ab:28:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjUxMjA1MDM0NTQ0WhcNMjUxMjEyMDM0NTQ0WjAYMRYwFAYD VQQDEw02OTMyNTU2OC1hOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDvISnMU6eXAkoLidHoV0m09t6E6EGBmogvLlWDMDyzA/uJgVIkMmZBUoyyW PlB8+2Z0aOB6/avaZyURFWssr44GgDcyQHzsWvw7FWXJPyCWCXbDuz5sQ/LDORV0 4Fs1/UCge5Fbv9bY2kC0pEIMnwpxM5k8OSLLSCCgNTy+dUWyokqBL9yY156TKr4W GcZZthMXYz37VEcN4kyIUHFlHKqbbz7JVSTjg0PmiTaBvxSgzzTMU2nQb/hNZ46d GcW+5bU75IJ3l8b4nsQEXo3MZTViKderwhBsGONCCOmSz6LzxZquTMz7hIDxgURr tH1J9mrFKnu6kED2UhnVSQC13QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGS0proI 2ByjiWz7c5METAu3ImhPMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb0QZyNgv62tt2PbdjjwXs+SQJC9qXH5us+MgDuvknfm2upXzHRf/h x1QuMYN9YjyIyendSrrYZq2iyzLIUGVvzNAPEme97vQa+2v7PPMMfd7RElrtEHOJ UOay/oHPnPKIg0gE321bjukSxWlmvB2bBEGZ22rWHv5hgQys+hf08/3Ung9EgSwW QewCGVWpqZzmx77jxWh4OH4MqATgwKVpBIQcHdSCIEt34kafkicSSld82o93f7au sy89Y5cCSbP1k0SV0XusDaBuuIyXkWyaz30DQDsYqGrpI66SyapVWEEhbvKjs+DI A3waHBRwfSB1cK0mgdysXaWRm57bqygn -----END CERTIFICATE-----Generated at Sun Dec 7 02:56:42 2025 by rpki-client