This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: 5W+2hcFCJDj1qRNWo4S8d8+g8f2CNzaE4bXsfoeHnRM= Subject key identifier: 07:86:1A:56:FF:B1:FA:E1:3A:93:52:3A:0F:C9:C0:E4:16:89:43:01 Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 084D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0845 Signing time: Sat 06 Dec 2025 19:52:04 +0000 Manifest this update: Sat 06 Dec 2025 19:52:03 +0000 Manifest next update: Sat 13 Dec 2025 19:52:03 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: Q8s0GvYanZvotQ+5gkGKJB+8T85xeRab21w9vorTutY=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: iinohx2uez2EL2svxSw8QxTPKTPPk9i54jHLL6kBKQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2125 (0x84d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Dec 6 19:52:03 2025 GMT Not After : Dec 13 19:52:03 2025 GMT Subject: CN=69348963-2669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:da:76:43:f6:57:7c:2d:f7:81:9f:4f:9e:da: 52:05:1a:e6:f4:74:ef:d2:05:a5:2c:c2:55:56:93: e5:61:50:a8:92:50:2c:45:a9:2a:5a:ac:8b:1d:69: 64:62:9e:93:8e:a3:3c:ef:cf:85:e9:7d:a6:fe:56: 68:6d:d4:1e:44:42:e7:84:ba:08:bc:37:49:24:6f: 90:c2:b1:3a:53:1c:ee:88:e2:cd:b0:2b:9e:5d:07: 8c:88:8a:2a:a5:56:74:f8:19:3d:10:f7:c6:45:ba: 1d:05:99:11:e6:f5:7b:61:bd:2e:2c:13:20:a2:b9: 53:fd:97:9f:ce:df:14:2d:f9:b3:b0:8d:1e:88:20: a9:cb:92:b4:bf:03:05:4c:70:13:ff:fe:a4:b1:41: ab:c6:ab:df:6b:f0:b2:3d:f5:7d:d5:78:a1:f5:76: 06:2c:cd:a4:43:44:d5:3e:b2:90:96:76:97:e5:a0: bf:82:68:c0:83:62:82:f1:a2:23:e9:c2:75:69:fe: 7a:4e:5b:c7:cc:ed:c6:9e:69:f6:f7:34:8b:f2:39: db:b0:b3:c9:e0:81:70:3c:5d:49:f2:9f:23:5c:08: 90:8b:c0:b0:ca:6c:19:52:97:9a:38:a0:49:8e:24: 1f:76:2d:d6:e3:bb:a7:32:8c:ba:3b:60:d9:45:ec: cd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:86:1A:56:FF:B1:FA:E1:3A:93:52:3A:0F:C9:C0:E4:16:89:43:01 X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:aa:a9:e3:e7:0e:68:e2:0b:69:c5:77:98:fa:50:ea:15:5a: d9:68:11:1f:5d:2e:5a:76:f1:82:63:64:dc:08:c0:b4:9e:e1: 37:eb:9c:d0:67:9e:d9:88:ef:ad:b5:e5:d5:92:33:7c:54:36: e0:f2:a1:0a:25:21:8b:03:82:a5:51:a0:3e:78:95:f0:d1:fd: 16:ab:df:01:cf:c6:83:bc:47:87:18:6b:b9:98:3b:c0:70:b4: 7e:1a:7c:29:dd:a8:fb:bd:0d:10:cf:f4:f7:22:d3:cf:70:d0: e4:40:f3:14:3f:1e:85:4a:3b:68:39:f7:4a:13:6d:d5:fa:ef: 22:23:9f:17:ff:30:25:24:ab:4c:90:ba:5f:d3:9c:73:90:c0: 17:0d:cb:d8:71:32:38:b3:45:5b:a3:93:5d:9a:83:56:b7:d3: d5:f0:a0:a2:81:fb:60:8a:f9:81:5d:b7:59:99:20:d8:a6:29: 66:d6:95:d6:e0:6b:27:9b:4d:30:f8:8c:c9:b4:c7:17:b6:0c: b5:cb:5c:e0:dd:af:e6:19:02:87:a4:e3:80:36:d2:1c:73:99: e5:53:fd:15:66:6e:ab:43:5d:6b:92:56:78:93:66:06:40:99: df:77:36:6a:16:e9:ea:e3:f1:bc:77:67:47:9a:e9:fd:ba:f2: c1:59:95:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjUxMjA2MTk1MjAzWhcNMjUxMjEzMTk1MjAzWjAYMRYwFAYD VQQDEw02OTM0ODk2My0yNjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29p2Q/ZXfC33gZ9PntpSBRrm9HTv0gWlLMJVVpPlYVCoklAsRakqWqyLHWlk Yp6TjqM878+F6X2m/lZobdQeRELnhLoIvDdJJG+QwrE6UxzuiOLNsCueXQeMiIoq pVZ0+Bk9EPfGRbodBZkR5vV7Yb0uLBMgorlT/Zefzt8ULfmzsI0eiCCpy5K0vwMF THAT//6ksUGrxqvfa/CyPfV91Xih9XYGLM2kQ0TVPrKQlnaX5aC/gmjAg2KC8aIj 6cJ1af56TlvHzO3Gnmn29zSL8jnbsLPJ4IFwPF1J8p8jXAiQi8CwymwZUpeaOKBJ jiQfdi3W47unMoy6O2DZRezNGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeGGlb/ sfrhOpNSOg/JwOQWiUMBMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsqqnj5w5o4gtpxXeY+lDqFVrZaBEfXS5advGCY2TcCMC0nuE365zQ Z57ZiO+tteXVkjN8VDbg8qEKJSGLA4KlUaA+eJXw0f0Wq98Bz8aDvEeHGGu5mDvA cLR+Gnwp3aj7vQ0Qz/T3ItPPcNDkQPMUPx6FSjtoOfdKE23V+u8iI58X/zAlJKtM kLpf05xzkMAXDcvYcTI4s0Vbo5NdmoNWt9PV8KCigftgivmBXbdZmSDYpilm1pXW 4Gsnm00w+IzJtMcXtgy1y1zg3a/mGQKHpOOANtIcc5nlU/0VZm6rQ11rklZ4k2YG QJnfdzZqFunq4/G8d2dHmun9uvLBWZXW -----END CERTIFICATE-----Generated at Sun Dec 7 04:43:15 2025 by rpki-client