This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft File: hav4SAyQlji9zKZTrx5pD1crI-E.mft (raw, json) Hash identifier: FTP0ncekXXNNI3CojOqn9jpC8SOyyamWMvicpkzRLVQ= Subject key identifier: A2:D0:97:EB:75:98:30:C2:ED:7F:38:BD:7C:1D:88:31:63:05:62:C5 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 3519 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft Manifest number: 350F Signing time: Sat 24 Jan 2026 14:46:23 +0000 Manifest this update: Sat 24 Jan 2026 14:46:23 +0000 Manifest next update: Sat 31 Jan 2026 14:46:23 +0000 Files and hashes: 1: hav4SAyQlji9zKZTrx5pD1crI-E.crl (hash: 5gvXUTOdJAr39jCJ9kN8VjybfRoa/cqiPO2236e6EUA=) 2: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (hash: F/YxtB51WnmPfqrklEmeStvP3ev5uQ0VG5cbcJlxSlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 14:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13593 (0x3519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB, serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: Jan 24 14:46:23 2026 GMT Not After : Jan 31 14:46:23 2026 GMT Subject: CN=6974db3f-bd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:c4:6d:86:12:2f:a9:77:0b:c6:e7:e1:b5: 2f:96:3b:cb:47:56:46:ea:f5:47:6a:27:78:51:d1: b2:ec:34:29:d8:22:7b:be:22:9c:14:6f:0b:14:d7: a2:c5:f5:d0:32:91:0b:f5:03:49:c2:18:85:3c:7e: c3:f1:00:e3:b2:08:f3:ff:f5:8e:39:d1:fa:65:13: 85:35:23:6c:3a:96:ee:01:da:56:9e:37:2e:b1:a1: 80:48:a3:4d:b5:ce:5f:0b:b7:93:68:4f:ed:7a:46: 62:bc:ec:19:55:dc:bb:8a:b7:89:bd:d8:39:fa:29: e6:9e:3f:02:9e:62:b3:c4:79:cd:f2:eb:86:0d:d7: 11:8c:cf:be:2f:2f:5d:57:1b:a8:f0:cb:97:88:5b: 76:38:9f:79:33:4a:85:2f:13:e9:83:c9:b5:df:08: 56:f1:df:f2:43:69:01:f4:ab:fc:f0:7b:ed:91:85: e6:1e:76:d2:ac:9d:81:bb:cb:a9:a6:0d:8c:1f:43: 91:79:1e:4b:c9:2f:86:22:0f:68:db:a4:b7:d2:7b: c5:ec:c3:42:37:55:af:ae:80:74:53:81:59:b3:89: 73:26:d9:65:09:df:c6:e0:f0:ba:da:c4:44:69:e6: 82:39:65:35:57:82:ca:a4:2b:d0:b5:ac:65:f4:9a: 57:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D0:97:EB:75:98:30:C2:ED:7F:38:BD:7C:1D:88:31:63:05:62:C5 X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:75:07:12:58:0c:5f:80:89:69:d8:c5:2f:a3:5e:cf:f6:7e: 40:88:18:cd:59:8e:48:44:12:01:7d:be:89:eb:d1:99:66:0e: f4:f0:6c:cb:d1:13:53:88:f3:32:b4:57:ea:5e:4d:cc:9c:37: ba:f7:0b:9d:e2:62:c5:b4:9a:e8:7c:60:5f:d7:ec:62:3a:46: a0:52:03:7c:fa:33:77:65:4d:f6:a0:00:59:05:76:a3:ae:1a: c3:5e:d7:9b:e2:76:d1:ee:f4:f6:f9:0c:6a:bc:82:1d:8e:06: 16:9b:1f:fd:bb:74:05:74:c6:b5:75:7a:65:7a:b5:98:cb:b6: f5:11:b7:70:42:8a:6d:83:6a:5a:5f:86:23:38:d1:83:dc:64: 86:2d:3f:00:dc:0a:21:f8:ab:9a:2f:22:7f:d7:30:61:39:16: 61:60:b0:fd:4f:a8:98:c5:29:8e:df:60:b9:0f:b6:15:60:06: cb:a0:56:ae:5c:11:1a:a6:39:d2:2d:c6:2e:59:20:e6:5d:b3: 66:13:29:6c:54:c1:06:ce:8e:68:57:29:99:19:53:e5:5b:ae: 94:c7:d7:32:d3:e7:26:e0:03:4e:2a:ac:6f:c4:3b:59:0a:f4: 51:9c:db:a1:dc:a1:60:dc:03:67:0d:4b:15:3c:db:38:21:89: ff:04:1c:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjYwMTI0MTQ0NjIzWhcNMjYwMTMxMTQ0NjIzWjAYMRYwFAYD VQQDDA02OTc0ZGIzZi1iZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutnEbYYSL6l3C8bn4bUvljvLR1ZG6vVHaid4UdGy7DQp2CJ7viKcFG8LFNei xfXQMpEL9QNJwhiFPH7D8QDjsgjz//WOOdH6ZROFNSNsOpbuAdpWnjcusaGASKNN tc5fC7eTaE/tekZivOwZVdy7ireJvdg5+inmnj8CnmKzxHnN8uuGDdcRjM++Ly9d Vxuo8MuXiFt2OJ95M0qFLxPpg8m13whW8d/yQ2kB9Kv88HvtkYXmHnbSrJ2Bu8up pg2MH0OReR5LyS+GIg9o26S30nvF7MNCN1WvroB0U4FZs4lzJtllCd/G4PC62sRE aeaCOWU1V4LKpCvQtaxl9JpXpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLQl+t1 mDDC7X84vXwdiDFjBWLFMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDNDQi84MUQ5RTRBMDFEOTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxq aTl6S1pUcng1cEQxY3JJLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmdQcSWAxfgIlp2MUvo17P9n5AiBjNWY5IRBIBfb6J69GZZg708GzL 0RNTiPMytFfqXk3MnDe69wud4mLFtJrofGBf1+xiOkagUgN8+jN3ZU32oABZBXaj rhrDXteb4nbR7vT2+QxqvIIdjgYWmx/9u3QFdMa1dXplerWYy7b1EbdwQoptg2pa X4YjONGD3GSGLT8A3Aoh+KuaLyJ/1zBhORZhYLD9T6iYxSmO32C5D7YVYAbLoFau XBEapjnSLcYuWSDmXbNmEylsVMEGzo5oVymZGVPlW66Ux9cy0+cm4ANOKqxvxDtZ CvRRnNuh3KFg3ANnDUsVPNs4IYn/BByF -----END CERTIFICATE-----Generated at Sun Jan 25 08:20:26 2026 by rpki-client