This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: gmurkNJrwBFP4kC0wt6GTqcI/x93C5xBgF+vON7Y8JI= Subject key identifier: 98:29:DC:A0:95:EB:D5:D2:6C:43:68:87:58:3A:4E:B3:A7:F7:35:51 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 3500 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 34F6 Signing time: Sat 06 Dec 2025 14:44:49 +0000 Manifest this update: Sat 06 Dec 2025 14:44:48 +0000 Manifest next update: Sat 13 Dec 2025 14:44:48 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: Rn+4sQkcQnZd+JBxIy5N3Y+zqxtxqZ9TQ6Ym+FegkiE=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: F/YxtB51WnmPfqrklEmeStvP3ev5uQ0VG5cbcJlxSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13568 (0x3500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Dec 6 14:44:48 2025 GMT Not After : Dec 13 14:44:48 2025 GMT Subject: CN=69344161-4b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:ba:ff:3d:0e:1e:5b:02:3f:4e:76:2a:b4: 47:c0:df:7d:6e:13:2a:25:87:b7:74:9e:65:b1:13: 2f:f1:71:5d:b9:e7:d4:70:c3:59:07:9a:7a:9c:69: 06:88:a2:3c:f7:a8:82:08:9a:9a:a8:41:00:89:69: 1c:6b:38:9d:d4:33:d8:49:03:f6:fc:7d:75:71:08: f5:8f:46:7f:90:91:92:6e:2c:97:fe:42:06:e4:9c: 0a:ea:6f:44:70:c6:74:b8:34:2c:6e:4d:2a:78:b0: 8f:2c:49:ef:47:97:fc:ac:92:d3:5c:4e:05:d1:1e: dc:ad:3b:23:56:9d:c4:bb:9a:a2:98:b2:c1:24:d6: 44:24:b7:bb:5d:8b:ec:99:15:09:fc:25:57:36:9b: 68:22:4f:ad:22:ee:bc:7f:49:df:e6:06:2b:ff:7e: 63:28:b3:42:97:4c:e2:a5:d2:c4:87:19:b4:7f:26: b7:d9:5e:6e:c1:63:03:8b:c5:f0:cc:f7:83:9c:d8: ee:91:17:f7:a1:62:41:67:82:2e:20:7c:66:e4:c9: 4f:44:eb:34:15:81:1d:45:de:9c:19:c3:b6:46:5c: 22:e8:0d:f9:79:b3:a1:23:9b:6d:ad:a7:85:a0:fe: b0:28:31:3e:b1:2e:d2:8c:e1:ee:ab:4b:51:d2:4e: 4c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:29:DC:A0:95:EB:D5:D2:6C:43:68:87:58:3A:4E:B3:A7:F7:35:51 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:49:54:84:11:e0:c4:40:b7:eb:f1:17:e0:e7:ad:0f:b1:b2: 84:49:04:e0:00:8a:67:2b:2a:fb:aa:ac:36:e9:13:a3:5f:9b: 65:ad:4e:c7:c8:10:8c:7c:e2:26:a1:26:3d:d8:e4:fb:e7:54: f9:fe:b9:59:95:97:39:a0:7c:17:47:77:a9:c6:c3:4f:40:e3: b4:08:71:16:21:c8:0e:13:40:e1:85:ca:b0:56:57:e6:a8:85: 85:b0:df:94:7e:00:6a:c7:ef:11:2a:cd:48:00:ec:68:70:6d: 9b:c2:9a:8c:3f:11:a4:a4:de:2e:49:0d:7e:ea:47:ed:52:0d: c3:80:ce:99:79:a1:da:2c:85:37:a1:a8:76:0d:c6:67:7b:fb: 47:c4:7e:86:d8:46:2f:47:e7:aa:b8:4b:8c:79:2a:e0:e9:c9: 0b:8b:db:6d:c7:aa:43:a2:15:d8:ee:33:c2:b5:a8:04:2a:52: f0:c1:92:71:b8:aa:a4:03:c2:81:da:eb:ff:97:5d:06:0c:16: 63:ac:d5:de:08:10:88:eb:9f:4a:3c:67:ff:c7:f1:48:6a:06: eb:e6:83:15:0d:22:5d:b4:8b:c6:6e:9c:98:cd:6d:23:89:8f: 80:45:30:46:46:e0:8b:68:01:22:5b:c0:91:86:ed:dc:b3:5f: bd:79:eb:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjUxMjA2MTQ0NDQ4WhcNMjUxMjEzMTQ0NDQ4WjAYMRYwFAYD VQQDEw02OTM0NDE2MS00YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvm6/z0OHlsCP052KrRHwN99bhMqJYe3dJ5lsRMv8XFduefUcMNZB5p6nGkG iKI896iCCJqaqEEAiWkcazid1DPYSQP2/H11cQj1j0Z/kJGSbiyX/kIG5JwK6m9E cMZ0uDQsbk0qeLCPLEnvR5f8rJLTXE4F0R7crTsjVp3Eu5qimLLBJNZEJLe7XYvs mRUJ/CVXNptoIk+tIu68f0nf5gYr/35jKLNCl0zipdLEhxm0fya32V5uwWMDi8Xw zPeDnNjukRf3oWJBZ4IuIHxm5MlPROs0FYEdRd6cGcO2Rlwi6A35ebOhI5ttraeF oP6wKDE+sS7SjOHuq0tR0k5MaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgp3KCV 69XSbENoh1g6TrOn9zVRMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7SVSEEeDEQLfr8Rfg560PsbKESQTgAIpnKyr7qqw26ROjX5tlrU7H yBCMfOImoSY92OT751T5/rlZlZc5oHwXR3epxsNPQOO0CHEWIcgOE0DhhcqwVlfm qIWFsN+UfgBqx+8RKs1IAOxocG2bwpqMPxGkpN4uSQ1+6kftUg3DgM6ZeaHaLIU3 oah2DcZne/tHxH6G2EYvR+equEuMeSrg6ckLi9ttx6pDohXY7jPCtagEKlLwwZJx uKqkA8KB2uv/l10GDBZjrNXeCBCI659KPGf/x/FIagbr5oMVDSJdtIvGbpyYzW0j iY+ARTBGRuCLaAEiW8CRhu3cs1+9eesI -----END CERTIFICATE-----Generated at Sat Dec 6 17:06:28 2025 by rpki-client