This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft File: IRoCHoq99NvyBwgibMgyj9JBMd8.mft (raw, json) Hash identifier: QxQuc116wQx7B8NcIgyPKkkG2jBKskqSwXjk8lZwd1w= Subject key identifier: A4:6D:71:6C:EB:28:02:0D:1D:38:F8:E8:25:00:68:61:31:B1:F1:9C Authority key identifier: 21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF Certificate issuer: /CN=A9170F11/serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft Manifest number: DC Signing time: Fri 19 Dec 2025 04:47:27 +0000 Manifest this update: Fri 19 Dec 2025 04:47:27 +0000 Manifest next update: Fri 26 Dec 2025 04:47:27 +0000 Files and hashes: 1: IRoCHoq99NvyBwgibMgyj9JBMd8.crl (hash: i251Ez8pUfgo/lIf58EJNEISNIbAGlaYx8dV4l3kOaQ=) 2: 0029F6EAD41F11F0B1A47183C4F9AE02.roa (hash: S2OZL34K7y7KU66LSbkx0n+jdpTeHIrf5kcKi6P19ww=) 3: 00926CA2D41F11F092947183C4F9AE02.roa (hash: 6Kb8qTYjaoIOVP7kkTd2rIa7gwLmY36EevcUKuSxehs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170F11, serialNumber=211A021E8ABDF4DBF20708226CC8328FD24131DF Validity Not Before: Dec 19 04:47:27 2025 GMT Not After : Dec 26 04:47:27 2025 GMT Subject: CN=6944d8df-1c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fe:3f:5a:ce:97:fc:c5:11:ed:3a:26:90:5f: 99:b7:28:74:4d:61:ad:56:70:cd:49:d2:ab:21:42: ff:cc:32:43:cd:16:b6:85:60:d5:50:d7:46:d5:4b: ed:c7:7b:0e:9a:cf:d3:a2:23:04:84:ec:d4:1c:38: 3a:39:f2:37:dd:ae:0f:b7:7d:56:1f:f6:e4:f8:e8: 1d:e3:4f:b4:88:36:a5:3f:7e:9e:39:76:6b:cc:14: fc:30:9d:cc:0b:34:bd:c9:4a:ad:7c:8c:bc:86:93: b8:5b:84:2b:a3:bb:86:fd:0f:28:d9:5f:bc:2c:97: 94:8c:9f:ff:0a:80:ef:3d:2b:58:53:41:29:b2:98: 9b:d2:58:ba:b9:cc:19:34:08:dd:8e:39:15:e6:3c: 93:4c:d3:90:f6:b0:30:2c:17:dc:d2:fe:e5:34:85: 9b:44:79:73:09:30:da:c3:be:29:fe:a6:6d:1e:e5: 3f:b9:40:08:a0:40:cd:6d:b2:e6:1d:cd:29:67:c4: 91:76:c2:86:3d:fe:e4:ed:e6:e8:4e:0c:df:da:b8: d1:89:e1:a0:9b:da:66:23:95:9d:9f:9a:84:a4:5f: 08:86:02:e0:5e:90:d3:b0:d4:d5:38:b8:eb:3a:a7: 8a:7e:d7:2e:73:80:06:ea:76:6e:30:ec:e1:b6:eb: db:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6D:71:6C:EB:28:02:0D:1D:38:F8:E8:25:00:68:61:31:B1:F1:9C X509v3 Authority Key Identifier: keyid:21:1A:02:1E:8A:BD:F4:DB:F2:07:08:22:6C:C8:32:8F:D2:41:31:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IRoCHoq99NvyBwgibMgyj9JBMd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170F11/E16389109A7C11EF84950D33C4F9AE02/IRoCHoq99NvyBwgibMgyj9JBMd8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:fa:fd:9c:b4:73:7b:da:a8:4e:7c:a8:ea:eb:cb:24:5b:9f: 62:b5:d4:c1:6a:ea:b1:6f:b3:48:ff:9e:44:97:62:21:1c:bd: 92:12:f7:68:06:5d:06:ad:07:34:83:45:18:02:64:fd:29:29: 83:a8:f9:5e:c0:ca:70:2a:f8:e8:a2:04:a1:e8:45:b4:59:c5: 98:ae:65:72:09:c1:b7:ff:8d:07:5a:ba:26:e9:88:7b:b5:5b: 68:a2:b8:43:97:fb:bd:aa:8e:c6:71:cd:98:e6:12:0a:24:95: e0:74:e3:36:a7:4f:5a:c5:d6:9b:36:d7:2b:cc:d4:ee:00:24: e1:ae:ed:aa:7c:14:a8:06:d9:97:ee:69:01:f9:fc:dc:1c:9b: 15:09:8d:80:e8:3e:e5:b2:37:49:9e:dc:d6:ae:1c:39:00:f1: f9:16:0b:74:a8:67:9a:46:e7:47:ca:dc:df:57:f5:3a:0d:d8: 3f:be:9b:74:6d:37:c4:f9:34:86:0a:c4:95:26:b1:25:9c:e2: e4:45:f4:46:ea:21:34:ed:9c:19:9d:40:c4:da:ef:c7:ca:47: b5:e7:b5:90:17:01:b5:f9:c0:2e:df:75:6c:d2:ea:af:e1:b7: 1e:46:ea:8d:e7:b3:d1:b0:8b:6c:f8:07:fd:06:9f:83:1e:fd: 43:93:fe:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBGMTExMTAvBgNVBAUTKDIxMUEwMjFFOEFCREY0REJGMjA3MDgyMjZDQzgzMjhG RDI0MTMxREYwHhcNMjUxMjE5MDQ0NzI3WhcNMjUxMjI2MDQ0NzI3WjAYMRYwFAYD VQQDDA02OTQ0ZDhkZi0xYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuP4/Ws6X/MUR7TomkF+Ztyh0TWGtVnDNSdKrIUL/zDJDzRa2hWDVUNdG1Uvt x3sOms/ToiMEhOzUHDg6OfI33a4Pt31WH/bk+Ogd40+0iDalP36eOXZrzBT8MJ3M CzS9yUqtfIy8hpO4W4Qro7uG/Q8o2V+8LJeUjJ//CoDvPStYU0Epspib0li6ucwZ NAjdjjkV5jyTTNOQ9rAwLBfc0v7lNIWbRHlzCTDaw74p/qZtHuU/uUAIoEDNbbLm Hc0pZ8SRdsKGPf7k7eboTgzf2rjRieGgm9pmI5Wdn5qEpF8IhgLgXpDTsNTVOLjr OqeKftcuc4AG6nZuMOzhtuvbDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRtcWzr KAINHTj46CUAaGExsfGcMB8GA1UdIwQYMBaAFCEaAh6KvfTb8gcIImzIMo/SQTHf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEYxMS9FMTYzODkxMDlB N0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlOdnlCd2dpYk1neWo5SkJN ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lSb0NIb3E5OU52eUJ3Z2liTWd5ajlKQk1kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEYxMS9FMTYzODkxMDlBN0MxMUVGODQ5NTBEMzNDNEY5QUUwMi9JUm9DSG9xOTlO dnlCd2dpYk1neWo5SkJNZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi+v2ctHN72qhOfKjq68skW59itdTBauqxb7NI/55El2IhHL2SEvdo Bl0GrQc0g0UYAmT9KSmDqPlewMpwKvjoogSh6EW0WcWYrmVyCcG3/40HWrom6Yh7 tVtoorhDl/u9qo7Gcc2Y5hIKJJXgdOM2p09axdabNtcrzNTuACThru2qfBSoBtmX 7mkB+fzcHJsVCY2A6D7lsjdJntzWrhw5APH5Fgt0qGeaRudHytzfV/U6Ddg/vpt0 bTfE+TSGCsSVJrElnOLkRfRG6iE07ZwZnUDE2u/Hyke157WQFwG1+cAu33Vs0uqv 4bceRuqN57PRsIts+Af9Bp+DHv1Dk/5E -----END CERTIFICATE-----Generated at Sun Dec 21 04:46:37 2025 by rpki-client