This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: liHD7VRXk+EELxtI5vIYBtrVd/zdEVA8CYEJN3O6Vhw= Subject key identifier: 7C:BD:CE:D3:1C:0D:B0:D2:31:DE:45:3D:59:0D:23:67:1A:1C:AD:4A Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D30 Signing time: Sat 06 Dec 2025 15:50:45 +0000 Manifest this update: Sat 06 Dec 2025 15:50:45 +0000 Manifest next update: Sat 13 Dec 2025 15:50:45 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: Ma0UItoVpCdQhk68NcbAufFwBBMcN7s7c5BkvwkJKGo=) 2: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=) 3: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: nkQmProxyP6YQNqCslU/7lr0b3AmBz1GRwsmzYE8/fI=) 4: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=) 5: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=) 6: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=) 7: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=) 8: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=) 9: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7598 (0x1dae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Dec 6 15:50:45 2025 GMT Not After : Dec 13 15:50:45 2025 GMT Subject: CN=693450d5-4651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0c:5f:93:6f:33:03:f0:5d:f6:0e:72:88:d7: 2d:d3:30:56:5b:7e:7b:fd:40:eb:ee:9f:fc:be:d8: 50:70:29:47:9e:f7:d6:85:e6:03:35:07:b4:3e:02: 05:21:36:aa:db:c0:7b:c6:8d:a7:04:99:1a:25:65: 76:3f:c7:2b:c7:5f:3f:18:c7:e8:e1:4c:df:00:d3: 07:eb:9e:3e:a5:b9:88:c9:fa:66:cd:c2:d3:98:e7: 6a:a1:4a:a6:57:48:34:e7:fd:2b:1b:d7:79:c2:a2: be:8c:f9:b1:ba:fc:b2:97:8e:96:39:05:68:82:1b: 0d:07:ac:6b:80:15:fa:b1:ff:3f:57:fb:0f:3a:55: ba:cb:21:a8:78:70:61:51:2e:03:e8:57:d1:eb:fa: 97:40:63:aa:9b:ca:4f:b8:7f:3c:64:da:21:95:93: ec:4f:e1:a5:a4:6b:cb:96:ec:48:65:66:0a:70:f9: 87:b0:2f:a8:67:e5:4b:5b:09:f8:b7:db:4d:2c:19: 20:61:ee:88:d5:e2:0a:84:ea:5e:46:4d:32:68:4d: 69:99:0a:4e:89:07:34:fb:67:c7:61:85:49:10:ad: d4:9b:47:28:ab:53:ae:6b:a0:77:a9:b7:1d:67:1f: a2:44:4e:b1:b8:a5:10:5a:cb:56:9e:ef:dd:cd:4a: f0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:BD:CE:D3:1C:0D:B0:D2:31:DE:45:3D:59:0D:23:67:1A:1C:AD:4A X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e6:69:ac:61:b6:5b:2a:5c:db:0b:c3:ed:0d:72:f8:73:93: e0:f8:f3:29:30:50:a8:33:f7:ce:c8:bf:39:a1:40:f5:d4:e3: 67:de:04:a5:30:86:70:4e:91:cb:e0:f8:c7:dd:2e:7d:c2:b8: c9:97:b0:76:81:ed:3a:8f:da:81:62:29:ee:9f:a5:04:e1:94: 9f:f7:c9:01:2f:fc:c8:18:0d:d1:9b:e1:d5:c4:54:2d:df:8e: 12:52:e8:81:b3:50:05:b9:a8:53:1b:17:8e:56:b5:15:ba:b0: e5:79:97:db:b4:2d:46:a1:27:6f:c9:25:29:0a:9f:d1:e3:45: 8e:35:17:d8:0c:37:36:ad:6d:d8:29:15:b5:81:17:68:22:86: 6c:6a:5d:1a:70:8f:e1:f3:a0:68:71:6b:cb:b2:99:fa:5e:a6: d4:ef:51:4e:3c:e0:d1:2a:15:cb:99:a5:48:bf:91:75:20:4e: 9c:b8:0c:33:f7:ae:1a:44:13:f4:64:11:e3:dd:14:5f:d2:03: 45:0d:1f:55:73:b7:a2:70:ba:f0:0e:38:76:e3:f7:4e:e2:46: 9f:3f:95:63:e1:b0:2c:cf:eb:33:a5:2d:40:62:52:e5:26:02: c9:c3:71:e0:2d:39:7b:6c:fc:0e:5f:97:14:68:b0:a4:21:f5: 51:31:86:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUxMjA2MTU1MDQ1WhcNMjUxMjEzMTU1MDQ1WjAYMRYwFAYD VQQDEw02OTM0NTBkNS00NjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgxfk28zA/Bd9g5yiNct0zBWW357/UDr7p/8vthQcClHnvfWheYDNQe0PgIF ITaq28B7xo2nBJkaJWV2P8crx18/GMfo4UzfANMH654+pbmIyfpmzcLTmOdqoUqm V0g05/0rG9d5wqK+jPmxuvyyl46WOQVoghsNB6xrgBX6sf8/V/sPOlW6yyGoeHBh US4D6FfR6/qXQGOqm8pPuH88ZNohlZPsT+GlpGvLluxIZWYKcPmHsC+oZ+VLWwn4 t9tNLBkgYe6I1eIKhOpeRk0yaE1pmQpOiQc0+2fHYYVJEK3Um0coq1Oua6B3qbcd Zx+iRE6xuKUQWstWnu/dzUrwaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHy9ztMc DbDSMd5FPVkNI2caHK1KMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC5mmsYbZbKlzbC8PtDXL4c5Pg+PMpMFCoM/fOyL85oUD11ONn3gSl MIZwTpHL4PjH3S59wrjJl7B2ge06j9qBYinun6UE4ZSf98kBL/zIGA3Rm+HVxFQt 344SUuiBs1AFuahTGxeOVrUVurDleZfbtC1GoSdvySUpCp/R40WONRfYDDc2rW3Y KRW1gRdoIoZsal0acI/h86BocWvLspn6XqbU71FOPODRKhXLmaVIv5F1IE6cuAwz 964aRBP0ZBHj3RRf0gNFDR9Vc7eicLrwDjh24/dO4kafP5Vj4bAsz+szpS1AYlLl JgLJw3HgLTl7bPwOX5cUaLCkIfVRMYZS -----END CERTIFICATE-----Generated at Sun Dec 7 02:10:25 2025 by rpki-client