This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft (raw, json) Hash identifier: /G0z6m3blpUp5rIqz2Or6rV/I63n16MHKySE0tZIsA4= Subject key identifier: 25:BB:D6:2C:FD:2F:D0:20:F3:6A:37:F7:C5:B8:DA:D9:4C:FF:56:B4 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 177C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft Manifest number: 1770 Signing time: Thu 18 Dec 2025 16:28:17 +0000 Manifest this update: Thu 18 Dec 2025 16:28:16 +0000 Manifest next update: Thu 25 Dec 2025 16:28:16 +0000 Files and hashes: 1: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl (hash: 3azPC7IWQx3ylqpJZ2MU6AJKC8QhvfaUs7ztz90hPOs=) 2: 89317668E87B11E785247983C4F9AE02.roa (hash: nzDDDyGYndishzLD7fUyGn3b75yg/sxKqZxJCeL11YE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6012 (0x177c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F, serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Dec 18 16:28:16 2025 GMT Not After : Dec 25 16:28:16 2025 GMT Subject: CN=69442ba1-882f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:b9:c2:c6:df:f0:b0:db:20:3a:5f:d9:d1: 19:5a:95:bc:be:db:26:ed:0f:35:6e:ce:6b:b9:22: e6:ed:7e:8f:e4:dd:79:d3:4c:c2:3f:9a:65:9f:03: 60:69:8b:26:a0:6f:c7:1c:3c:88:72:ab:65:24:d2: 62:52:cf:d8:4a:83:3a:c4:e6:ce:f2:e6:2b:67:e4: fa:9a:e7:6d:9a:81:b1:ea:6c:0b:0e:62:e7:db:39: 6d:8b:2c:cf:df:13:9e:00:14:10:e8:7f:85:e9:74: 10:aa:0b:9b:60:a1:ab:53:a2:b1:3e:90:16:9a:bd: 59:9b:59:ab:31:b8:c5:cc:30:4a:a4:d2:b9:5b:dd: 49:f3:5b:5f:42:d1:cb:28:d9:fb:5d:ce:03:d3:ea: 82:df:0d:12:45:69:3d:03:61:61:b4:fe:49:84:13: 08:31:6a:e0:13:05:85:34:be:15:41:15:c0:db:cf: de:52:ef:2b:96:00:5c:51:9e:3b:ce:a5:8c:f0:5c: be:3f:fe:bf:7c:44:a8:26:2d:97:43:ab:3c:df:69: 4c:b5:1b:1d:84:a4:6c:ca:f0:a1:a3:52:17:0b:e4: e3:bf:4a:17:34:d8:ce:fc:26:bb:63:d5:95:54:7a: ee:06:fb:c9:df:07:7a:c1:19:db:a3:03:ba:1b:73: 60:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BB:D6:2C:FD:2F:D0:20:F3:6A:37:F7:C5:B8:DA:D9:4C:FF:56:B4 X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:72:23:1e:8b:ed:60:03:df:cb:30:8c:56:e7:a1:2d:3f:80: 96:2e:72:e8:c3:c4:21:69:7b:51:f4:b0:fa:dc:05:0f:a8:6d: 72:e0:8f:0e:d4:95:a4:f0:4b:d0:ef:0d:41:db:88:e1:52:1e: 41:cc:6f:8c:a9:f5:9c:20:8a:5f:44:4f:c0:c0:40:06:71:e1: c6:e9:50:32:00:22:33:a5:66:d0:8a:4f:b8:91:23:5c:87:31: 95:53:ef:3d:14:55:6a:c1:12:8c:d7:07:bb:50:ab:b5:d3:87: 95:6e:03:f1:ec:d3:72:89:4d:ab:a3:23:9a:6e:b7:cd:cb:5b: a9:fd:65:3c:ff:61:05:82:97:e5:f6:2c:b2:ac:6c:7f:d2:35: 1f:19:6d:81:bd:34:dc:f1:0b:2e:f1:d4:c4:69:57:2c:b4:62: 03:ac:ec:3b:a3:9f:22:1c:e7:08:66:ce:6f:90:65:b5:12:61: 01:a2:ee:81:71:93:52:ff:76:66:51:40:88:99:11:e5:58:54: f0:65:ac:54:fe:b2:b5:fd:51:66:84:45:1d:a6:62:a3:3b:b6: 1e:79:e9:ab:1a:8b:ed:0c:3a:ce:5c:88:fd:08:8c:bc:1d:8a: 90:26:72:2e:64:66:df:75:2b:1f:47:da:ba:65:90:b1:a5:af: e1:63:c5:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjUxMjE4MTYyODE2WhcNMjUxMjI1MTYyODE2WjAYMRYwFAYD VQQDDA02OTQ0MmJhMS04ODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr665wsbf8LDbIDpf2dEZWpW8vtsm7Q81bs5ruSLm7X6P5N1500zCP5plnwNg aYsmoG/HHDyIcqtlJNJiUs/YSoM6xObO8uYrZ+T6mudtmoGx6mwLDmLn2zltiyzP 3xOeABQQ6H+F6XQQqgubYKGrU6KxPpAWmr1Zm1mrMbjFzDBKpNK5W91J81tfQtHL KNn7Xc4D0+qC3w0SRWk9A2FhtP5JhBMIMWrgEwWFNL4VQRXA28/eUu8rlgBcUZ47 zqWM8Fy+P/6/fESoJi2XQ6s832lMtRsdhKRsyvCho1IXC+Tjv0oXNNjO/Ca7Y9WV VHruBvvJ3wd6wRnbowO6G3NgnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW71iz9 L9Ag82o398W42tlM/1a0MB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9U Q25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0ciMei+1gA9/LMIxW56EtP4CWLnLow8QhaXtR9LD63AUPqG1y4I8O 1JWk8EvQ7w1B24jhUh5BzG+MqfWcIIpfRE/AwEAGceHG6VAyACIzpWbQik+4kSNc hzGVU+89FFVqwRKM1we7UKu104eVbgPx7NNyiU2royOabrfNy1up/WU8/2EFgpfl 9iyyrGx/0jUfGW2BvTTc8Qsu8dTEaVcstGIDrOw7o58iHOcIZs5vkGW1EmEBou6B cZNS/3ZmUUCImRHlWFTwZaxU/rK1/VFmhEUdpmKjO7YeeemrGovtDDrOXIj9CIy8 HYqQJnIuZGbfdSsfR9q6ZZCxpa/hY8UU -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:06 2025 by rpki-client