This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft File: HAF157M3En5uwlH0Og0qxhMRv04.mft (raw, json) Hash identifier: 9sAo2t4fxfgC91Q+jv11EWlfn3OkxfRM3LA9AiPZvHU= Subject key identifier: DF:57:9E:F9:83:04:0E:DE:29:2E:96:67:16:7B:C3:DB:2C:F9:AE:C6 Authority key identifier: 1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E Certificate issuer: /CN=A91E3584/serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft Manifest number: 34E3 Signing time: Thu 04 Dec 2025 14:24:20 +0000 Manifest this update: Thu 04 Dec 2025 14:24:20 +0000 Manifest next update: Thu 11 Dec 2025 14:24:20 +0000 Files and hashes: 1: HAF157M3En5uwlH0Og0qxhMRv04.crl (hash: ZCN78fAJRJVc53Jr/jHH8wyHhrm7l7qM5y2NsBTI2lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3584, serialNumber=1C0175E7B337127E6EC251F43A0D2AC61311BF4E Validity Not Before: Dec 4 14:24:20 2025 GMT Not After : Dec 11 14:24:20 2025 GMT Subject: CN=69319994-695e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:37:ba:d9:db:c3:60:36:a6:4f:54:01:13: 55:5f:2a:f4:40:0a:3d:df:8e:ca:7f:95:43:0c:e8: b7:54:6e:7b:77:db:f8:14:65:6d:2b:c2:0e:ef:fe: 3a:51:02:ae:30:8f:e1:95:e6:e9:7d:08:39:d9:dd: 06:3f:87:fe:ed:b3:97:25:14:e0:61:f0:e5:b7:e8: 27:e2:3f:6f:fd:99:57:3c:a7:56:89:f5:8d:2b:db: a9:72:bc:c0:6f:f3:3a:f0:c5:71:43:17:35:02:83: 32:ef:24:44:8f:e1:83:21:5f:b5:e3:bd:21:08:5e: 89:2b:86:33:d8:6b:44:21:f5:86:8c:e4:a4:9b:4b: ca:16:3f:41:a5:3e:30:a6:00:a7:4a:23:09:87:64: 5d:07:85:54:0e:cf:ef:70:8f:f5:18:99:b7:fb:4b: 63:04:f8:3a:70:99:46:d7:c0:23:f0:d6:2c:24:cd: 88:9f:3b:68:c4:53:aa:71:9b:7e:2c:68:eb:12:17: 3e:fd:1b:34:90:4b:f7:38:19:31:20:bf:05:c8:d2: cd:81:b7:77:60:a9:89:01:b8:0b:82:42:20:4f:46: 2b:71:00:0d:35:44:f9:92:20:2d:0c:e4:6b:94:92: 5a:1f:2e:00:3d:bb:2a:df:17:76:73:c2:c6:22:90: c3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:57:9E:F9:83:04:0E:DE:29:2E:96:67:16:7B:C3:DB:2C:F9:AE:C6 X509v3 Authority Key Identifier: keyid:1C:01:75:E7:B3:37:12:7E:6E:C2:51:F4:3A:0D:2A:C6:13:11:BF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HAF157M3En5uwlH0Og0qxhMRv04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3584/D1A129461D8511E2BB4FA4DC08B02CD2/HAF157M3En5uwlH0Og0qxhMRv04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:c6:f3:8a:7c:10:93:8f:d5:01:39:78:65:ea:ec:d6:24:5e: d5:de:40:59:3f:99:f8:ef:e9:3c:95:17:a0:b8:d5:4c:5f:ff: bd:e2:4e:96:80:9a:1d:cf:bd:c7:15:1c:6b:46:1d:47:26:ee: 68:4e:d0:15:ed:9a:bb:05:20:1d:97:3f:91:30:eb:af:3f:d5: fb:38:5f:15:72:07:00:1c:94:f7:b6:06:81:ab:82:42:82:1f: 0a:76:17:38:1f:e2:c2:fa:de:de:fb:8f:df:3a:4a:ca:a2:5c: 00:78:c7:03:09:cc:85:2e:ca:0a:d5:1d:d2:77:01:20:79:8b: 6d:95:be:3e:fc:bf:42:88:55:a2:7e:5c:41:94:60:c4:f7:27: 09:e5:4d:4c:0a:c8:2e:d8:7b:de:82:6c:4d:05:30:34:18:36: f3:8f:04:af:b7:e8:36:d2:06:24:4d:76:18:d0:93:59:51:dd: f6:fc:03:a5:c6:41:d3:1d:32:07:a1:55:6b:b3:b7:46:72:3b: a0:45:e4:0c:d2:41:0e:0e:be:c1:c5:ff:fb:75:a6:ef:45:cb: 88:06:5e:bf:89:1a:2c:d9:33:bb:2f:7d:ef:6f:e1:44:18:7f: 93:3f:0e:28:8e:1d:51:c0:ad:41:b0:49:1b:db:ce:6b:e5:03: ae:05:90:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM1ODQxMTAvBgNVBAUTKDFDMDE3NUU3QjMzNzEyN0U2RUMyNTFGNDNBMEQyQUM2 MTMxMUJGNEUwHhcNMjUxMjA0MTQyNDIwWhcNMjUxMjExMTQyNDIwWjAYMRYwFAYD VQQDEw02OTMxOTk5NC02OTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyes3utnbw2A2pk9UARNVXyr0QAo9347Kf5VDDOi3VG57d9v4FGVtK8IO7/46 UQKuMI/hlebpfQg52d0GP4f+7bOXJRTgYfDlt+gn4j9v/ZlXPKdWifWNK9upcrzA b/M68MVxQxc1AoMy7yREj+GDIV+1470hCF6JK4Yz2GtEIfWGjOSkm0vKFj9BpT4w pgCnSiMJh2RdB4VUDs/vcI/1GJm3+0tjBPg6cJlG18Aj8NYsJM2InztoxFOqcZt+ LGjrEhc+/Rs0kEv3OBkxIL8FyNLNgbd3YKmJAbgLgkIgT0YrcQANNUT5kiAtDORr lJJaHy4APbsq3xd2c8LGIpDDkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9XnvmD BA7eKS6WZxZ7w9ss+a7GMB8GA1UdIwQYMBaAFBwBdeezNxJ+bsJR9DoNKsYTEb9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzU4NC9EMUExMjk0NjFE ODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0VuNXV3bEgwT2cwcXhoTVJ2 MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hBRjE1N00zRW41dXdsSDBPZzBxeGhNUnYwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzU4NC9EMUExMjk0NjFEODUxMUUyQkI0RkE0REMwOEIwMkNEMi9IQUYxNTdNM0Vu NXV3bEgwT2cwcXhoTVJ2MDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2xvOKfBCTj9UBOXhl6uzWJF7V3kBZP5n47+k8lReguNVMX/+94k6W gJodz73HFRxrRh1HJu5oTtAV7Zq7BSAdlz+RMOuvP9X7OF8VcgcAHJT3tgaBq4JC gh8Kdhc4H+LC+t7e+4/fOkrKolwAeMcDCcyFLsoK1R3SdwEgeYttlb4+/L9CiFWi flxBlGDE9ycJ5U1MCsgu2HvegmxNBTA0GDbzjwSvt+g20gYkTXYY0JNZUd32/AOl xkHTHTIHoVVrs7dGcjugReQM0kEODr7Bxf/7dabvRcuIBl6/iRos2TO7L33vb+FE GH+TPw4ojh1RwK1BsEkb285r5QOuBZC8 -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:15 2025 by rpki-client