This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft File: AryISFcqsaDRBj5XuCIPK1LWvec.mft (raw, json) Hash identifier: 3UsBiwSPP+aKpa4v5w1nDnbqcZfZ73/dBWTmeF1NuBQ= Subject key identifier: 4B:31:A1:D2:0C:3F:F3:19:80:C7:86:0C:15:C1:3C:0E:95:4D:51:A9 Authority key identifier: 02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 Certificate issuer: /CN=A9153B58/serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft Manifest number: 04 Signing time: Fri 19 Dec 2025 07:01:45 +0000 Manifest this update: Fri 19 Dec 2025 07:01:44 +0000 Manifest next update: Fri 26 Dec 2025 07:01:44 +0000 Files and hashes: 1: AryISFcqsaDRBj5XuCIPK1LWvec.crl (hash: QZv/POCYKC1qao73bXMbsxMLBn3Zyb2UBnSfCfrdBus=) 2: 36256C16D96011F0BB00DFAC96D3641D.roa (hash: 6+W+vKMYiOsOm+Y3GN2oawDDGZir37CFnIYDqFPexks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153B58, serialNumber=02BC8848572AB1A0D1063E57B8220F2B52D6BDE7 Validity Not Before: Dec 19 07:01:44 2025 GMT Not After : Dec 26 07:01:44 2025 GMT Subject: CN=6944f859-3164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:40:6f:bd:ba:61:40:8e:f5:ad:40:f0:7c:7f: 16:7c:55:15:6f:2a:f6:00:62:eb:9c:98:1d:96:3e: b2:de:8e:f4:e0:b0:4d:f7:6f:bb:dc:c6:71:0d:7a: 61:df:7b:50:a1:17:bb:fc:7d:a5:21:d8:68:2c:07: 1f:03:6c:7e:a2:05:e3:7b:bd:cc:d9:7f:b3:30:07: 31:37:b3:11:71:c3:d2:ef:4f:22:cb:87:2d:1e:7c: f5:22:4e:8e:fb:15:c8:bf:e9:de:99:ee:5c:3e:02: cc:1f:85:51:71:25:11:54:f2:13:2c:74:81:f0:e0: 4c:d3:9f:78:fb:3b:b4:7e:8b:02:06:11:d9:f3:2c: e1:5b:3a:69:c5:ff:49:73:fb:a3:ee:5e:e1:12:1b: 4d:7f:f7:41:fb:1e:cc:f7:87:81:69:cf:1d:50:64: 63:73:08:36:24:4c:65:5c:f6:3d:93:9b:68:b8:42: 64:8b:cf:4d:fe:82:2d:11:09:68:f5:1e:39:e0:0b: 7e:4f:4f:bb:5a:0d:3e:7c:f1:ab:71:d2:57:ce:22: 6a:84:6c:2f:ba:60:8a:e9:6f:0f:59:5c:2f:b8:7f: 59:9f:3f:49:03:20:83:56:5c:54:c2:60:a2:a0:13: fc:b2:bf:9a:31:7f:98:7c:0d:c3:7f:15:a7:1b:2b: 67:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:31:A1:D2:0C:3F:F3:19:80:C7:86:0C:15:C1:3C:0E:95:4D:51:A9 X509v3 Authority Key Identifier: keyid:02:BC:88:48:57:2A:B1:A0:D1:06:3E:57:B8:22:0F:2B:52:D6:BD:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AryISFcqsaDRBj5XuCIPK1LWvec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153B58/42A52644D95F11F0AA1586A196D3641D/AryISFcqsaDRBj5XuCIPK1LWvec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a7:b8:db:88:e6:be:39:af:1e:79:ae:c5:12:1f:01:25:db: de:fc:de:bd:9f:47:d6:ec:67:bf:30:41:0d:ed:eb:5e:e7:ba: 51:1e:bb:47:39:04:85:d3:18:fd:f5:e0:bb:db:b0:78:b9:e3: bd:39:f0:60:cc:cf:e0:5f:70:9b:ce:b9:7e:72:4d:a6:a8:40: b3:5e:23:0e:fa:4e:65:2f:64:37:b0:da:82:8c:9b:7c:f8:13: a9:2e:2c:d0:90:ac:49:56:7f:d4:6d:92:e2:39:77:6d:6c:2a: a9:de:81:03:a7:f1:7d:d5:37:90:aa:ec:35:ab:e4:34:67:85: 83:d9:75:b0:68:c5:45:26:b5:3b:c4:89:14:20:ce:65:ab:31: c8:dc:19:a0:96:21:3e:8b:4b:00:f6:c1:49:9d:6c:86:f7:10: db:3b:03:9b:fc:eb:f6:53:90:5f:a0:30:6b:92:5a:0b:f2:eb: d2:ed:7d:fe:6c:0c:08:4e:96:70:a0:aa:8a:d3:64:da:9b:93: 9b:dc:03:0d:fb:1b:c0:6b:92:cc:ed:69:0b:a5:9e:23:10:5c: 41:0a:0a:37:e1:63:89:86:00:51:fb:c9:55:b2:69:ba:64:07: e7:13:64:2d:17:55:b2:44:ac:f6:7c:88:ca:eb:0c:0c:d8:b2: 7f:16:5f:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 M0I1ODExMC8GA1UEBRMoMDJCQzg4NDg1NzJBQjFBMEQxMDYzRTU3QjgyMjBGMkI1 MkQ2QkRFNzAeFw0yNTEyMTkwNzAxNDRaFw0yNTEyMjYwNzAxNDRaMBgxFjAUBgNV BAMMDTY5NDRmODU5LTMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0QG+9umFAjvWtQPB8fxZ8VRVvKvYAYuucmB2WPrLejvTgsE33b7vcxnENemHf e1ChF7v8faUh2GgsBx8DbH6iBeN7vczZf7MwBzE3sxFxw9LvTyLLhy0efPUiTo77 Fci/6d6Z7lw+AswfhVFxJRFU8hMsdIHw4EzTn3j7O7R+iwIGEdnzLOFbOmnF/0lz +6PuXuESG01/90H7Hsz3h4Fpzx1QZGNzCDYkTGVc9j2Tm2i4QmSLz03+gi0RCWj1 HjngC35PT7taDT588atx0lfOImqEbC+6YIrpbw9ZXC+4f1mfP0kDIINWXFTCYKKg E/yyv5oxf5h8DcN/FacbK2ezAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSzGh0gw/ 8xmAx4YMFcE8DpVNUakwHwYDVR0jBBgwFoAUAryISFcqsaDRBj5XuCIPK1LWvecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzQjU4LzQyQTUyNjQ0RDk1 RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FEUkJqNVh1Q0lQSzFMV3Zl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXJ5SVNGY3FzYURSQmo1WHVDSVBLMUxXdmVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz QjU4LzQyQTUyNjQ0RDk1RjExRjBBQTE1ODZBMTk2RDM2NDFEL0FyeUlTRmNxc2FE UkJqNVh1Q0lQSzFMV3ZlYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGynuNuI5r45rx55rsUSHwEl29783r2fR9bsZ78wQQ3t617nulEeu0c5 BIXTGP314LvbsHi547058GDMz+BfcJvOuX5yTaaoQLNeIw76TmUvZDew2oKMm3z4 E6kuLNCQrElWf9RtkuI5d21sKqnegQOn8X3VN5Cq7DWr5DRnhYPZdbBoxUUmtTvE iRQgzmWrMcjcGaCWIT6LSwD2wUmdbIb3ENs7A5v86/ZTkF+gMGuSWgvy69Ltff5s DAhOlnCgqorTZNqbk5vcAw37G8BrksztaQulniMQXEEKCjfhY4mGAFH7yVWyabpk B+cTZC0XVbJErPZ8iMrrDAzYsn8WXxg= -----END CERTIFICATE-----Generated at Fri Dec 19 18:59:05 2025 by rpki-client