This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: 0mMu9JJV/HP85SaMC+FTn6cDql0pd06WMkQDxASkmDc= Subject key identifier: B8:39:F7:84:16:EE:11:BE:FE:82:DF:5C:E2:FD:06:DF:80:97:A5:80 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D36 Signing time: Thu 18 Dec 2025 16:04:09 +0000 Manifest this update: Thu 18 Dec 2025 16:04:08 +0000 Manifest next update: Thu 25 Dec 2025 16:04:08 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: YEOCTkt8WXjYg3LMH4jrXDXkHfolbUdOKMj6Kd3/PUo=) 2: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=) 3: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=) 4: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: nkQmProxyP6YQNqCslU/7lr0b3AmBz1GRwsmzYE8/fI=) 5: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=) 6: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=) 7: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=) 8: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=) 9: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7604 (0x1db4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Dec 18 16:04:08 2025 GMT Not After : Dec 25 16:04:08 2025 GMT Subject: CN=694425f9-d5c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:aa:6b:04:49:36:92:21:7c:f0:4c:d7:a3:39: d5:60:0a:24:30:dd:1a:29:17:aa:bc:b3:5d:22:34: 7d:3c:2a:e2:70:d2:cf:52:59:06:40:93:34:9b:59: f8:cb:b8:26:38:e4:2a:84:ca:fc:0f:28:c9:df:fa: d5:a0:1d:96:3c:69:e1:34:f5:e7:4c:c3:0a:c1:b8: 88:31:cf:84:e8:54:be:b9:81:b2:ad:22:f3:a8:05: a8:92:2d:8b:7c:59:1f:06:a7:ff:aa:6b:a9:90:32: 11:3a:69:f2:d6:05:5c:e0:a8:51:e8:f9:eb:a1:1e: 1f:ec:16:55:5e:ea:82:4d:21:f3:83:29:69:cc:7d: 18:eb:6d:f4:a5:9f:78:c1:03:58:85:8e:73:37:24: 46:2d:16:08:ce:47:5f:93:8b:ac:e8:f2:b2:01:c4: 15:5d:d8:52:98:68:53:60:24:be:d6:7a:9d:9f:9f: 72:a6:75:30:e3:96:65:cd:31:18:ed:39:cd:d6:05: 49:44:40:64:61:f4:1f:5e:48:dc:53:c1:ea:ed:03: 54:70:1c:db:e4:3b:91:9a:ba:6e:0a:56:08:89:37: 5f:a4:42:e1:d8:e5:82:26:6f:cf:d1:b4:01:8f:53: 71:af:8f:d9:83:3b:35:cd:90:8e:1f:86:02:2e:83: f0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:39:F7:84:16:EE:11:BE:FE:82:DF:5C:E2:FD:06:DF:80:97:A5:80 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:50:64:44:67:f4:65:e1:c7:64:31:c5:71:19:53:fb:c1:9b: 4b:bb:b4:3c:75:8d:1d:ab:db:31:36:20:e5:55:fd:0f:6d:81: a2:33:82:9c:86:54:34:d1:ad:ec:60:f0:b0:91:90:5e:ec:7d: 58:57:ae:e1:4e:ba:81:79:72:17:0a:0c:5f:08:07:7a:a1:22: 40:b2:35:20:01:d2:34:9f:e7:96:eb:06:b6:45:8f:18:3b:b6: f9:9a:78:19:d3:2a:47:eb:a6:ca:36:57:82:8f:ee:5d:6e:66: 99:01:0c:b5:64:b4:7b:8c:ab:ad:ac:e0:73:16:c7:f3:24:c9: f9:ef:51:da:8f:7e:38:49:89:d9:4d:76:76:14:d6:3b:7b:84: f2:03:bb:c0:aa:b5:45:aa:ce:f0:36:c8:cb:b2:4e:88:4d:3e: f9:50:dc:46:a3:76:86:f6:09:24:5e:33:9c:f2:3a:e7:b2:67: 8b:de:da:9c:40:78:bd:19:37:bb:db:55:8d:e3:cf:4b:ee:15: 6a:0d:93:8d:36:c0:60:81:e1:82:af:57:08:e0:1b:71:56:70: 1b:de:c1:b0:cc:69:28:3f:35:a0:31:47:8b:22:2b:a5:94:a6: aa:0e:28:9c:bd:f3:48:b3:f8:0e:2a:1d:7b:59:ae:a4:ee:8a: d8:9c:5e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUxMjE4MTYwNDA4WhcNMjUxMjI1MTYwNDA4WjAYMRYwFAYD VQQDDA02OTQ0MjVmOS1kNWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqprBEk2kiF88EzXoznVYAokMN0aKReqvLNdIjR9PCricNLPUlkGQJM0m1n4 y7gmOOQqhMr8DyjJ3/rVoB2WPGnhNPXnTMMKwbiIMc+E6FS+uYGyrSLzqAWoki2L fFkfBqf/qmupkDIROmny1gVc4KhR6PnroR4f7BZVXuqCTSHzgylpzH0Y6230pZ94 wQNYhY5zNyRGLRYIzkdfk4us6PKyAcQVXdhSmGhTYCS+1nqdn59ypnUw45ZlzTEY 7TnN1gVJREBkYfQfXkjcU8Hq7QNUcBzb5DuRmrpuClYIiTdfpELh2OWCJm/P0bQB j1Nxr4/Zgzs1zZCOH4YCLoPwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLg594QW 7hG+/oLfXOL9Bt+Al6WAMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpUGREZ/Rl4cdkMcVxGVP7wZtLu7Q8dY0dq9sxNiDlVf0PbYGiM4Kc hlQ00a3sYPCwkZBe7H1YV67hTrqBeXIXCgxfCAd6oSJAsjUgAdI0n+eW6wa2RY8Y O7b5mngZ0ypH66bKNleCj+5dbmaZAQy1ZLR7jKutrOBzFsfzJMn571Haj344SYnZ TXZ2FNY7e4TyA7vAqrVFqs7wNsjLsk6ITT75UNxGo3aG9gkkXjOc8jrnsmeL3tqc QHi9GTe721WN489L7hVqDZONNsBggeGCr1cI4BtxVnAb3sGwzGkoPzWgMUeLIiul lKaqDiicvfNIs/gOKh17Wa6k7orYnF46 -----END CERTIFICATE-----Generated at Sat Dec 20 08:52:03 2025 by rpki-client