This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft File: AryISFcqsaDRBj5XuCIPK1LWvec.mft (raw, json) Hash identifier: 8AJzwfhlnwRi5tunWZhCELcK/FwtDMLYiuDD2VJ6RbY= Subject key identifier: 18:54:C3:53:B4:FE:E4:0E:BA:B7:04:AD:45:9D:E8:88:0A:02:A2:06 Authority key identifier: 02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 Certificate issuer: /CN=A9153B58/serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft Manifest number: 16 Signing time: Fri 23 Jan 2026 06:57:43 +0000 Manifest this update: Fri 23 Jan 2026 06:57:43 +0000 Manifest next update: Fri 30 Jan 2026 06:57:43 +0000 Files and hashes: 1: AryISFcqsaDRBj5XuCIPK1LWvec.crl (hash: Ml7paWmS+FSRdLxISSyXsKlTI4xevWH5J7h3v9XDrIk=) 2: 36256C16D96011F0BB00DFAC96D3641D.roa (hash: 6+W+vKMYiOsOm+Y3GN2oawDDGZir37CFnIYDqFPexks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 30 Jan 2026 06:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153B58, serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Validity Not Before: Jan 23 06:57:43 2026 GMT Not After : Jan 30 06:57:43 2026 GMT Subject: CN=69731be7-746c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5a:33:c9:a8:28:e7:8b:9c:20:5d:62:2c:87: 99:2c:11:74:83:72:2e:69:4d:8c:d9:4c:62:4d:ec: 7a:2d:95:0a:4c:25:c5:65:89:05:c3:aa:c6:9f:10: ac:b4:52:e7:0e:9a:c3:c8:bd:b2:65:0a:1c:8d:98: a6:24:cf:71:a0:e1:fe:21:c8:d4:06:d2:20:b9:43: c8:f3:e2:04:66:33:1f:52:cc:67:0c:13:87:4f:b7: 52:35:eb:f5:99:1b:e7:4e:1a:ea:0e:8d:4c:af:d2: f1:4e:28:5b:4d:cb:14:ce:16:0c:b5:24:5c:ab:dd: 91:5e:ee:8b:5e:43:da:ef:c6:b8:70:8d:dd:52:31: f3:0b:3d:82:a2:62:20:04:dd:dd:f3:5d:92:30:ba: 40:47:ea:c9:d6:d3:2c:10:08:71:bd:11:19:cd:4d: 69:8a:9d:88:c0:45:7c:2c:19:02:18:5f:61:ac:30: 98:a1:fd:2a:2b:85:3d:b0:80:83:4a:64:24:0a:11: 0b:ec:f9:c1:9b:d3:93:ce:e2:8b:49:f3:66:f4:36: 10:7e:b5:01:5b:cd:56:cc:8b:3f:68:e5:c2:4c:56: 04:62:11:e7:ba:3d:6c:c8:5b:a4:82:4c:fb:f3:53: f0:e6:31:16:6d:1a:55:73:12:97:34:16:b6:94:f1: 06:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:54:C3:53:B4:FE:E4:0E:BA:B7:04:AD:45:9D:E8:88:0A:02:A2:06 X509v3 Authority Key Identifier: keyid:02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:06:bd:56:b4:b0:05:1b:ee:57:b3:5e:94:15:4a:9b:d4:e8: 07:7f:64:19:c2:20:bb:77:7f:99:13:8b:73:81:b6:a6:7c:86: 8d:f3:07:61:7e:fc:92:5e:62:8b:00:28:52:3e:80:be:f9:49: 36:6f:98:16:fc:5e:b1:9a:e6:9f:e8:d5:54:f2:08:b5:01:13: 18:c8:24:fd:d6:9e:a4:e2:be:55:9b:28:20:45:c5:48:cd:ba: b0:6a:8c:64:29:d2:15:fb:83:7a:03:63:ad:15:23:d4:c5:55: 6b:69:93:74:59:54:c2:ad:75:0b:76:d8:d4:bd:bc:92:ac:a0: b5:9f:2c:b8:15:e0:10:7b:e9:c2:25:f0:14:ec:d6:d7:7e:0c: 12:72:46:93:8c:b6:ae:54:89:b4:88:7f:b9:fc:29:56:67:a2: ca:17:6f:b4:a8:5f:eb:90:43:48:ab:77:cf:10:21:34:c1:5c: cf:14:4d:36:cb:e7:a7:da:00:e1:02:69:ce:b8:89:3a:e2:fd: 24:d4:d7:24:18:ae:0d:82:92:d8:83:0b:ff:02:96:9a:1b:8e: 09:f6:e3:93:32:c2:31:f4:66:b1:0c:b6:91:01:a7:7c:32:25: a5:a9:20:b7:d5:27:e9:b7:ee:46:ce:be:45:cd:9a:38:9c:87: 27:a4:6a:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 M0I1ODExMC8GA1UEBRMoMDJCQzg4NDg1NzJBQjFBMEQxMDYzRTU3QjgyMjBGMkI1 MkQ2QkRFNzAeFw0yNjAxMjMwNjU3NDNaFw0yNjAxMzAwNjU3NDNaMBgxFjAUBgNV BAMMDTY5NzMxYmU3LTc0NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdWjPJqCjni5wgXWIsh5ksEXSDci5pTYzZTGJN7HotlQpMJcVliQXDqsafEKy0 UucOmsPIvbJlChyNmKYkz3Gg4f4hyNQG0iC5Q8jz4gRmMx9SzGcME4dPt1I16/WZ G+dOGuoOjUyv0vFOKFtNyxTOFgy1JFyr3ZFe7oteQ9rvxrhwjd1SMfMLPYKiYiAE 3d3zXZIwukBH6snW0ywQCHG9ERnNTWmKnYjARXwsGQIYX2GsMJih/SorhT2wgINK ZCQKEQvs+cGb05PO4otJ82b0NhB+tQFbzVbMiz9o5cJMVgRiEee6PWzIW6SCTPvz U/DmMRZtGlVzEpc0FraU8QZ/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGFTDU7T+ 5A66twStRZ3oiAoCogYwHwYDVR0jBBgwFoAUAryISFcqsaDRBj5XuCIPK1LWvecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzQjU4LzQyQTUyNjQ0RDk1 RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FEUkJqNVh1Q0lQSzFMV3Zl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXJ5SVNGY3FzYURSQmo1WHVDSVBLMUxXdmVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz QjU4LzQyQTUyNjQ0RDk1RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FE UkJqNVh1Q0lQSzFMV3ZlYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOAGvVa0sAUb7lezXpQVSpvU6Ad/ZBnCILt3f5kTi3OBtqZ8ho3zB2F+ /JJeYosAKFI+gL75STZvmBb8XrGa5p/o1VTyCLUBExjIJP3WnqTivlWbKCBFxUjN urBqjGQp0hX7g3oDY60VI9TFVWtpk3RZVMKtdQt22NS9vJKsoLWfLLgV4BB76cIl 8BTs1td+DBJyRpOMtq5UibSIf7n8KVZnosoXb7SoX+uQQ0ird88QITTBXM8UTTbL 56faAOECac64iTri/STU1yQYrg2CktiDC/8Clpobjgn245MywjH0ZrEMtpEBp3wy JaWpILfVJ+m37kbOvkXNmjichyekavo= -----END CERTIFICATE-----Generated at Sun Jan 25 08:50:20 2026 by rpki-client