This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft File: ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft (raw, json) Hash identifier: GrwS17zSj+VDzbRn5R+1SXx2+ixbvpDOvaLHheicCKk= Subject key identifier: 7B:0A:DF:52:87:62:56:6C:DF:9D:7B:A6:98:C5:22:4A:AF:33:CC:B3 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1DC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft Manifest number: 1D4A Signing time: Mon 26 Jan 2026 15:57:10 +0000 Manifest this update: Mon 26 Jan 2026 15:57:10 +0000 Manifest next update: Mon 02 Feb 2026 15:57:10 +0000 Files and hashes: 1: ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl (hash: 5atREUwEOapXWKQHD24pKMse3HKlqmzlvvNr+Y4rA/c=) 2: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (hash: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc=) 3: 84064494E48F11EF8386EA50C4F9AE02.roa (hash: AffWt9J6no4G+h1FpGfN0NTkhva8z6z11If0wdojgPY=) 4: D3C8593E905E11EFAF2C185CC4F9AE02.roa (hash: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI=) 5: 3BDD23E27CA611EE82D65D19C4F9AE02.roa (hash: pnMyT26PaWSPhc4xLktPGQAXbwWHq3wiOavqQNjLHrI=) 6: 3322FCF6B8B611F09EE22E11C4F9AE02.roa (hash: nkQmProxyP6YQNqCslU/7lr0b3AmBz1GRwsmzYE8/fI=) 7: 75D2A3666E8011EF92BDE465C4F9AE02.roa (hash: y+uJHyht1alI7ZPC3JmvnuhjGbEy3LzzaLiSY5fiRNU=) 8: 2F9A7A1648FC11EBBAE0991CC4F9AE02.roa (hash: AkhO60SNFyTg9WciYKqi3vhEF3h9kd5WtxlSK6krnU0=) 9: 87F433B2234C11EBA94AE637C4F9AE02.roa (hash: /m1lXjaboioF2x7MUrTWDdQH9KVsmd4C/ofOTcRyOPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 15:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7624 (0x1dc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Jan 26 15:57:10 2026 GMT Not After : Feb 2 15:57:10 2026 GMT Subject: CN=69778ed6-428b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:a9:65:6f:24:0e:6f:db:2e:40:39:03:89: 39:c1:0c:cf:2e:85:c6:67:2d:c1:45:2b:16:b4:4c: 7e:20:38:b0:63:e8:2e:b4:78:5d:e9:5f:9e:d8:57: f8:1f:15:33:57:c3:4a:bd:70:4e:32:d6:55:72:e9: ee:61:b1:14:e2:2a:f0:67:5c:ac:a7:11:cb:dc:26: ba:39:dd:30:63:58:5f:de:42:06:d7:06:8d:b2:39: de:17:71:bd:7c:20:8a:82:4c:3f:a5:3c:a3:62:74: 51:19:fd:f3:0e:36:97:01:e2:80:b7:fb:7f:2e:d0: bf:5e:f5:b5:9a:51:d4:5e:fb:d9:fa:b5:2c:c2:68: 18:29:b0:81:6c:0d:d9:d6:44:ff:89:75:20:4d:38: 34:d4:59:e4:a2:f3:04:a8:32:1a:e8:0b:11:55:74: 8a:fa:04:c8:87:6a:37:6e:3b:40:d8:6d:00:72:da: 4c:87:a4:90:f4:ca:52:ed:28:30:e8:1d:e9:a1:bc: c7:78:6d:3c:94:4e:17:c4:6a:eb:d0:11:94:b1:01: dd:ed:51:3d:5d:4e:54:a6:77:c1:e5:91:b9:5a:67: b1:98:b4:13:80:a5:0b:e1:3e:30:36:e5:8d:1a:fb: 13:bb:0c:54:af:0c:e5:9b:e3:e6:3f:e4:61:19:4c: 55:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0A:DF:52:87:62:56:6C:DF:9D:7B:A6:98:C5:22:4A:AF:33:CC:B3 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:62:b7:35:3e:46:b5:12:5f:1e:9c:37:f1:e2:9b:f9:5d:89: 9e:08:d8:5b:cb:82:9f:82:5c:84:85:97:8e:68:e1:da:0b:db: 9b:d8:9e:d2:63:ba:2f:8d:bf:56:a5:12:4e:30:07:1f:70:52: b7:30:52:26:ff:74:e3:90:b4:72:c2:93:3a:c0:d1:40:f7:6c: 77:3e:92:21:8d:78:f4:58:eb:58:67:fa:1b:a2:15:2f:c2:79: 4c:31:b2:a6:3d:5a:0a:5b:c0:fe:b3:e1:da:8a:4a:d4:07:b0: 20:ad:75:de:5e:0a:85:a5:79:fa:1c:68:3e:a9:70:d7:56:27: ba:65:14:32:06:e5:e4:18:8d:23:de:4b:8d:69:41:9a:df:ea: 18:1d:0f:19:de:c0:ac:1e:79:7d:7b:d4:92:a0:15:15:ef:8a: f0:84:e2:ae:a3:37:5f:5c:8d:ea:d4:62:c0:7b:1f:0a:6d:94: b3:84:d0:ec:41:15:0f:db:79:2e:96:52:12:02:bb:53:25:cb: f0:b4:84:c9:c0:43:ed:8c:24:f4:30:26:05:d9:33:81:f1:ee: 4d:71:a8:10:e3:bf:df:c6:38:93:22:18:3c:04:bb:e5:3e:58: 8a:c6:ea:5f:a4:da:1b:52:30:0c:44:8d:91:0c:3f:ea:b9:5a: c0:ae:e1:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjYwMTI2MTU1NzEwWhcNMjYwMjAyMTU1NzEwWjAYMRYwFAYD VQQDDA02OTc3OGVkNi00MjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApN6pZW8kDm/bLkA5A4k5wQzPLoXGZy3BRSsWtEx+IDiwY+gutHhd6V+e2Ff4 HxUzV8NKvXBOMtZVcunuYbEU4irwZ1yspxHL3Ca6Od0wY1hf3kIG1waNsjneF3G9 fCCKgkw/pTyjYnRRGf3zDjaXAeKAt/t/LtC/XvW1mlHUXvvZ+rUswmgYKbCBbA3Z 1kT/iXUgTTg01FnkovMEqDIa6AsRVXSK+gTIh2o3bjtA2G0ActpMh6SQ9MpS7Sgw 6B3pobzHeG08lE4XxGrr0BGUsQHd7VE9XU5UpnfB5ZG5WmexmLQTgKUL4T4wNuWN GvsTuwxUrwzlm+PmP+RhGUxV8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsK31KH YlZs3517ppjFIkqvM8yzMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTg0QS8xODA1MTkxQUUxRUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJj SVZMS2lWYjBNdm1vRTVZRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqYrc1Pka1El8enDfx4pv5XYmeCNhby4KfglyEhZeOaOHaC9ub2J7S Y7ovjb9WpRJOMAcfcFK3MFIm/3TjkLRywpM6wNFA92x3PpIhjXj0WOtYZ/obohUv wnlMMbKmPVoKW8D+s+HaikrUB7AgrXXeXgqFpXn6HGg+qXDXVie6ZRQyBuXkGI0j 3kuNaUGa3+oYHQ8Z3sCsHnl9e9SSoBUV74rwhOKuozdfXI3q1GLAex8KbZSzhNDs QRUP23kullISArtTJcvwtITJwEPtjCT0MCYF2TOB8e5NcagQ47/fxjiTIhg8BLvl PliKxupfpNobUjAMRI2RDD/quVrAruGB -----END CERTIFICATE-----Generated at Tue Jan 27 13:24:08 2026 by rpki-client