This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: KGTb1GTZgX1pQvZFfiH2bnZvZqOqhiTyFeCIKGK1lqs= Subject key identifier: 87:8A:80:74:24:D2:BA:48:66:13:74:F6:FF:B1:1B:CB:0A:35:18:FC Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D49 Signing time: Sat 24 Jan 2026 15:57:41 +0000 Manifest this update: Sat 24 Jan 2026 15:57:41 +0000 Manifest next update: Sat 31 Jan 2026 15:57:41 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: Kk4EmwVkIlPeFb6pdG/EPMq9T4Vn2zMc6RhjzoHHra4=) 2: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=) 3: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: nkQmProxyP6YQNqCslU/7lr0b3AmBz1GRwsmzYE8/fI=) 4: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=) 5: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=) 6: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=) 7: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=) 8: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=) 9: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7623 (0x1dc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Jan 24 15:57:41 2026 GMT Not After : Jan 31 15:57:41 2026 GMT Subject: CN=6974ebf5-d7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:83:b1:b6:27:08:92:07:75:f7:2a:59:95:ca: 72:f8:1f:e0:08:4f:b5:30:a2:03:3d:f6:54:27:d2: 4d:c3:73:72:9d:e5:af:47:44:dd:3f:27:5e:9a:67: 25:50:4c:e0:2d:cb:8e:e0:af:84:06:ee:a8:a1:8a: 46:02:90:e5:83:77:ff:27:d5:fb:40:15:4d:80:60: 5f:1d:ba:7b:4c:ee:40:87:49:a7:b7:fd:6c:be:31: 73:92:a5:e5:25:3a:e8:e0:bd:ca:83:b6:20:a6:0c: 93:59:b1:11:61:05:d6:06:a8:c4:91:01:20:ea:e2: b4:3f:6c:78:49:d5:f1:fb:79:ae:64:ff:29:1e:9d: 7b:a4:5a:d5:be:c3:9a:e0:19:af:78:f2:88:c7:49: 4b:4c:38:81:42:6c:92:3a:ad:84:4f:69:cb:89:60: cf:34:82:fa:88:c8:fe:5b:e0:7c:0a:58:ff:82:74: 6f:ef:c3:46:b4:5c:b6:83:5e:6e:20:32:46:48:6c: c3:8a:97:b2:db:ff:38:99:b2:5f:00:b5:5e:dc:7e: 6b:a6:44:f5:4b:7d:f3:93:e4:c9:07:fe:5a:10:73: 12:bd:74:39:65:5a:30:68:c2:71:1e:46:20:3d:63: fc:75:b2:83:48:92:0b:ac:b9:01:0f:05:c5:23:ff: 80:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8A:80:74:24:D2:BA:48:66:13:74:F6:FF:B1:1B:CB:0A:35:18:FC X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:0a:0f:52:80:16:ec:50:e8:da:e8:17:05:72:bb:61:9c:18: 1d:a1:9c:8f:0e:7c:cb:b7:e9:b3:b1:6d:82:4d:0e:52:38:2a: e3:2f:77:4c:5c:3a:4f:8c:ca:af:c2:fc:d7:fc:cb:3b:32:a0: 01:10:dd:d7:c2:59:95:e4:96:c7:f5:13:a9:a9:9a:9b:e0:a0: 66:8d:35:79:d6:7c:57:0d:93:d6:bb:af:19:61:b6:82:7d:b7: ee:01:18:6d:c5:d9:e6:f6:92:6c:af:d0:c6:a1:a5:22:39:48: 32:41:01:77:69:3b:df:f8:9a:c6:23:bd:fb:73:65:8b:7e:e3: ae:c6:fc:90:51:89:63:b2:cf:30:9f:f0:d4:35:bb:87:d4:ab: c5:85:86:88:84:d7:73:e5:17:2e:fb:58:d7:6d:b2:09:d2:8d: 0e:f1:54:90:b6:7c:3c:9e:4e:73:6b:3e:98:eb:64:e7:dd:e8: 4b:11:ad:77:2a:48:ad:03:5a:88:d6:10:ef:d4:6c:48:7a:33: 82:8e:56:d7:09:45:6a:a2:8d:f2:f3:59:67:be:a1:8b:d1:97: 69:c7:29:0b:f2:f9:98:9e:70:6e:89:f2:3f:64:7a:65:97:d2: b2:e4:64:40:9d:62:d6:bb:55:c5:d4:0f:9b:05:4c:8f:a6:67: cf:10:9b:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwMTI0MTU1NzQxWhcNMjYwMTMxMTU1NzQxWjAYMRYwFAYD VQQDDA02OTc0ZWJmNS1kN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5YOxticIkgd19ypZlcpy+B/gCE+1MKIDPfZUJ9JNw3NyneWvR0TdPydemmcl UEzgLcuO4K+EBu6ooYpGApDlg3f/J9X7QBVNgGBfHbp7TO5Ah0mnt/1svjFzkqXl JTro4L3Kg7YgpgyTWbERYQXWBqjEkQEg6uK0P2x4SdXx+3muZP8pHp17pFrVvsOa 4BmvePKIx0lLTDiBQmySOq2ET2nLiWDPNIL6iMj+W+B8Clj/gnRv78NGtFy2g15u IDJGSGzDipey2/84mbJfALVe3H5rpkT1S33zk+TJB/5aEHMSvXQ5ZVowaMJxHkYg PWP8dbKDSJILrLkBDwXFI/+AXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeKgHQk 0rpIZhN09v+xG8sKNRj8MB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiCg9SgBbsUOja6BcFcrthnBgdoZyPDnzLt+mzsW2CTQ5SOCrjL3dM XDpPjMqvwvzX/Ms7MqABEN3XwlmV5JbH9ROpqZqb4KBmjTV51nxXDZPWu68ZYbaC fbfuARhtxdnm9pJsr9DGoaUiOUgyQQF3aTvf+JrGI737c2WLfuOuxvyQUYljss8w n/DUNbuH1KvFhYaIhNdz5Rcu+1jXbbIJ0o0O8VSQtnw8nk5zaz6Y62Tn3ehLEa13 KkitA1qI1hDv1GxIejOCjlbXCUVqoo3y81lnvqGL0ZdpxykL8vmYnnBuifI/ZHpl l9Ky5GRAnWLWu1XF1A+bBUyPpmfPEJtM -----END CERTIFICATE-----Generated at Sun Jan 25 04:35:17 2026 by rpki-client