This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: dXPHNIMjlsbBZPJtFBx6f1I8EWH9ZcutpSpg8xfTlaM= Subject key identifier: 50:18:17:87:5F:4A:D2:6F:52:3B:FD:09:0D:57:B5:A6:CF:A8:4B:24 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 3506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 34FC Signing time: Thu 18 Dec 2025 14:47:50 +0000 Manifest this update: Thu 18 Dec 2025 14:47:50 +0000 Manifest next update: Thu 25 Dec 2025 14:47:50 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: ys0+605dEbYdParEfz8a/e48mOnMpkteHlACuwTotnM=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: F/YxtB51WnmPfqrklEmeStvP3ev5uQ0VG5cbcJlxSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13574 (0x3506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Dec 18 14:47:50 2025 GMT Not After : Dec 25 14:47:50 2025 GMT Subject: CN=69441416-d369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0d:34:66:a1:ee:17:8e:35:54:c6:d6:14:0f: c1:1b:5b:4b:50:6d:a4:96:08:e9:27:1f:92:f5:05: 08:c4:11:ad:56:3f:a9:f1:dc:79:02:65:3b:4c:ca: 83:f2:db:26:f3:4e:7c:30:73:d7:f5:09:7e:ab:8b: 6d:eb:03:1e:03:a3:53:51:11:f6:38:2b:bc:46:c6: 9b:72:44:f7:96:e5:ab:9b:76:29:74:92:fa:a3:26: 0e:7d:6f:d5:9e:d3:73:25:2f:dc:1b:01:58:01:96: 97:3e:db:f1:16:d7:29:34:7f:1e:7c:fe:54:a1:ba: e7:53:87:e0:6c:a2:1a:dd:ea:20:8a:60:2f:db:d2: 3b:71:a8:8d:0b:4a:f1:ef:d5:f1:c0:5e:7d:08:2b: bf:dd:c3:87:84:85:38:f4:7c:73:3a:1d:85:a7:2d: 19:db:02:89:6b:d8:f0:27:ff:9e:b1:e3:6e:0c:d8: 3c:06:3b:a8:e4:15:fa:a9:84:7d:19:f9:d6:58:93: ad:49:a9:17:20:2c:40:48:a8:fe:87:9b:5d:3d:1e: f7:d3:91:08:15:60:91:95:64:dd:81:8a:f9:da:bc: c3:1a:f8:a7:9d:8f:b0:0b:71:4a:60:b9:ed:b4:5c: 2e:d9:19:3b:2b:07:18:08:3d:49:eb:96:0c:39:aa: 59:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:17:87:5F:4A:D2:6F:52:3B:FD:09:0D:57:B5:A6:CF:A8:4B:24 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:96:2a:9a:51:ce:bd:72:85:19:61:63:4d:aa:6f:17:e7:a8: 8a:7e:99:b8:1e:9c:ae:f9:84:94:92:44:13:ec:b4:37:f4:10: e3:5d:b8:82:d0:1b:bd:f8:a9:bc:0a:3f:3a:4c:34:87:b0:5e: f5:3e:6f:00:4f:5e:2c:4d:35:d1:dc:c8:9a:fe:51:86:04:20: bb:05:98:3a:88:fb:11:b2:0a:03:e8:68:ad:e6:54:68:81:6e: a7:8a:85:a7:fb:b4:62:58:c2:36:43:64:30:bf:05:40:07:8d: a0:85:e4:40:39:30:f0:78:86:40:8c:e4:9d:3e:45:e5:43:5f: 48:f0:76:a2:e6:ec:b7:5b:fd:c9:7a:91:05:a4:0e:41:5d:9c: 7c:18:99:9b:2a:a5:28:ec:8c:cb:8b:f9:f8:44:90:33:64:96: 48:3f:fd:1f:8e:87:74:b6:a4:85:86:76:6c:5d:ff:5d:00:23: d1:46:23:3c:69:2f:55:63:09:c7:96:4f:89:d8:f4:f7:02:1d: 94:e0:72:c9:91:19:ec:3a:a8:26:20:a8:eb:89:a8:71:52:3e: a9:bf:55:ae:b9:67:70:8a:13:70:a3:dd:19:53:b3:1b:a4:e4: 88:03:3f:ff:1d:93:a8:a9:b5:1f:49:0b:07:20:1f:bd:90:2f: e8:4f:2b:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUxMjE4MTQ0NzUwWhcNMjUxMjI1MTQ0NzUwWjAYMRYwFAYD VQQDDA02OTQ0MTQxNi1kMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQ00ZqHuF441VMbWFA/BG1tLUG2klgjpJx+S9QUIxBGtVj+p8dx5AmU7TMqD 8tsm8058MHPX9Ql+q4tt6wMeA6NTURH2OCu8RsabckT3luWrm3YpdJL6oyYOfW/V ntNzJS/cGwFYAZaXPtvxFtcpNH8efP5UobrnU4fgbKIa3eogimAv29I7caiNC0rx 79XxwF59CCu/3cOHhIU49HxzOh2Fpy0Z2wKJa9jwJ/+eseNuDNg8Bjuo5BX6qYR9 GfnWWJOtSakXICxASKj+h5tdPR7305EIFWCRlWTdgYr52rzDGvinnY+wC3FKYLnt tFwu2Rk7KwcYCD1J65YMOapZ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAYF4df StJvUjv9CQ1XtabPqEskMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPliqaUc69coUZYWNNqm8X56iKfpm4Hpyu+YSUkkQT7LQ39BDjXbiC 0Bu9+Km8Cj86TDSHsF71Pm8AT14sTTXR3Mia/lGGBCC7BZg6iPsRsgoD6Git5lRo gW6nioWn+7RiWMI2Q2QwvwVAB42gheRAOTDweIZAjOSdPkXlQ19I8Hai5uy3W/3J epEFpA5BXZx8GJmbKqUo7IzLi/n4RJAzZJZIP/0fjod0tqSFhnZsXf9dACPRRiM8 aS9VYwnHlk+J2PT3Ah2U4HLJkRnsOqgmIKjriahxUj6pv1WuuWdwihNwo90ZU7Mb pOSIAz//HZOoqbUfSQsHIB+9kC/oTytj -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:43 2025 by rpki-client