This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: 3DBOrcx/4Rq4a843j0CxFscqoxHhD204vw26t03F/6w= Subject key identifier: B8:81:23:4F:76:11:96:0C:BC:4F:E7:74:13:95:FF:3A:C3:3D:1F:23 Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0860 Signing time: Sat 24 Jan 2026 20:05:13 +0000 Manifest this update: Sat 24 Jan 2026 20:05:12 +0000 Manifest next update: Sat 31 Jan 2026 20:05:12 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: xT5fpI8xOJHdX0sBMAgDvTrwkfZD3iHM9vn1pFll+lg=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: TYm31Puc+7qP3ESOq+28JglT3+/8P4SqMfkflbKZG8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 20:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Jan 24 20:05:12 2026 GMT Not After : Jan 31 20:05:12 2026 GMT Subject: CN=697525f8-179a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a8:51:90:13:4e:51:de:0f:ae:78:9b:3e:53: d3:45:66:49:a0:11:df:60:e2:f3:50:22:c5:05:ae: 7c:41:81:21:99:d0:f7:bd:2f:3c:29:9c:08:65:46: 99:99:c0:bb:5b:b4:a5:ad:5b:0a:79:87:9e:14:84: 43:e1:1a:a3:57:6d:c9:30:45:a6:ef:c0:66:b5:5e: 21:46:05:08:bd:1d:6e:ad:79:b9:4f:0e:17:fc:ff: 9a:64:e6:24:f7:4e:f9:9e:cb:38:2f:90:4f:a4:c0: 2f:57:94:2a:32:17:30:c4:b0:5f:c5:c4:ce:f3:be: 37:7d:7d:fb:3a:bc:6e:c7:ac:b9:77:17:57:ef:6f: d5:2f:81:d0:78:e8:9b:17:61:f6:eb:db:a1:a7:1b: 3e:bc:8f:ba:69:98:b5:b0:38:3b:28:5b:3b:e3:cb: 99:40:08:ad:bb:73:fb:a8:2e:08:22:58:90:9a:9d: e3:ca:fc:a8:bc:ef:e7:c9:ff:25:ee:67:b2:c6:08: e3:20:1a:5b:4d:04:56:6f:8d:fb:b9:66:48:9a:37: 36:8f:ab:a4:1e:b9:a7:b0:58:f9:61:9e:9b:17:ab: a1:57:c0:83:fb:52:c6:81:2a:3b:c9:dd:78:0e:bb: 73:5b:41:c6:4f:18:4a:98:39:6d:d4:f5:01:20:77: ed:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:81:23:4F:76:11:96:0C:BC:4F:E7:74:13:95:FF:3A:C3:3D:1F:23 X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:7d:9d:0b:a0:6b:d6:1e:08:fe:df:ba:b2:b2:60:cd:2e:6f: 76:35:e8:74:14:67:f7:86:e8:f3:97:36:51:a3:d0:ce:ff:72: 8a:03:7d:c6:3b:ae:02:0e:6f:b3:7f:1e:a7:1e:2d:92:0f:25: a4:44:2b:0f:ee:da:4c:b2:e0:92:77:c9:b5:92:f6:19:77:d2: 0e:3a:13:fc:cf:3d:f4:75:24:bf:23:3f:98:b8:bb:c0:8c:bc: ab:0a:b4:62:4f:69:05:56:46:dc:31:69:05:0c:e3:58:52:7f: ec:77:59:25:82:83:6e:cb:58:2a:5f:53:63:58:a5:38:b9:1f: 50:24:02:18:d3:06:3c:62:0f:4b:a3:ac:04:3e:47:9f:9d:d6: 5d:79:8a:04:21:8a:dd:34:e8:3a:2e:be:b9:63:98:c5:19:0e: fb:03:5f:73:e0:be:89:7c:f3:46:8d:0b:fb:d0:ce:9f:3b:95: 1d:d1:06:69:68:1b:fb:64:da:b5:0b:d5:3c:ed:54:5c:c7:e5: 0a:11:43:54:10:dc:bc:07:25:be:81:22:ff:98:e9:f0:ad:a5: 8c:12:09:00:be:ae:bc:9f:f7:1b:0d:fd:de:70:1f:e3:65:dd: 05:0d:7b:f7:7e:e8:e1:c3:3c:7e:92:02:00:75:78:08:de:0a: aa:c6:59:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjYwMTI0MjAwNTEyWhcNMjYwMTMxMjAwNTEyWjAYMRYwFAYD VQQDDA02OTc1MjVmOC0xNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzahRkBNOUd4PrnibPlPTRWZJoBHfYOLzUCLFBa58QYEhmdD3vS88KZwIZUaZ mcC7W7SlrVsKeYeeFIRD4RqjV23JMEWm78BmtV4hRgUIvR1urXm5Tw4X/P+aZOYk 9075nss4L5BPpMAvV5QqMhcwxLBfxcTO8743fX37Orxux6y5dxdX72/VL4HQeOib F2H269uhpxs+vI+6aZi1sDg7KFs748uZQAitu3P7qC4IIliQmp3jyvyovO/nyf8l 7meyxgjjIBpbTQRWb437uWZImjc2j6ukHrmnsFj5YZ6bF6uhV8CD+1LGgSo7yd14 DrtzW0HGTxhKmDlt1PUBIHft3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiBI092 EZYMvE/ndBOV/zrDPR8jMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrfZ0LoGvWHgj+37qysmDNLm92Neh0FGf3hujzlzZRo9DO/3KKA33G O64CDm+zfx6nHi2SDyWkRCsP7tpMsuCSd8m1kvYZd9IOOhP8zz30dSS/Iz+YuLvA jLyrCrRiT2kFVkbcMWkFDONYUn/sd1klgoNuy1gqX1NjWKU4uR9QJAIY0wY8Yg9L o6wEPkefndZdeYoEIYrdNOg6Lr65Y5jFGQ77A19z4L6JfPNGjQv70M6fO5Ud0QZp aBv7ZNq1C9U87VRcx+UKEUNUENy8ByW+gSL/mOnwraWMEgkAvq68n/cbDf3ecB/j Zd0FDXv3fujhwzx+kgIAdXgI3gqqxlkf -----END CERTIFICATE-----Generated at Sun Jan 25 06:08:39 2026 by rpki-client