This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: gFhaur8HMSfbHsBpNf+fleZOC4I91BBBWl7QCilAEDk= Subject key identifier: CA:42:76:CF:EA:0C:55:92:A6:6C:89:BA:CA:25:D8:AA:4D:FD:5D:F9 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C8A Signing time: Sat 20 Dec 2025 18:31:29 +0000 Manifest this update: Sat 20 Dec 2025 18:31:28 +0000 Manifest next update: Sat 27 Dec 2025 18:31:28 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: ehVhMnvBO/H80anuCL2emO584d46ETfAZOaIQMFu3nw=) 2: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: I5wPyYqqdfF0mXRXOECwyg6iI7z8KBKDKIwaF8mL0MA=) 3: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: yQvc3ntNpG7BJNIHH6+Ojk1HrYYp15Nu10dcUFhCOA8=) 4: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 93zu71Bbjz/nav2+CvE7DZaoexH+Z1OOLkl6NHafn3s=) 5: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: YhNbhFzO7WHU8UmccgfY4hoJ4t2k4JoW/bwFa0YyNSk=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: WvJTTw2h2x8eNtvB9hnnw/qG2i/35vtgBc53uEDUyyE=) 7: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zctn/DI/I3BOanvNBzpc9IpPDcrqCUE0GkQVT4ki+nE=) 8: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: 7+0RKtv/QFqUJhAIU0jwK/kD2sQJylo8+nExaHdj0YU=) 9: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: CD4VpLZIjAnREdFcpXUGct5U+Mw4EMKjpjAEDuYsKeI=) 10: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: Y/n3NB4Jr09jG3Cs+pVr+0yWJBuRJo/kO/On8tf2V5E=) 11: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: 2TDhWa5aEDfj/OSlXTwrUwhI6/Fx1H9p120AVX8QFaw=) 12: AABA617A78B811F0A62F9B28C4F9AE02.roa (hash: JtPXx1WRgsbzmrsNLInF92woE+rUeMA5vr5GiqEQHmw=) 13: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: SfxwUXkZ6scs6b9stvrkH0M3EDnjNSsIuRA3moh8vhQ=) 14: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: auKtqb5gzHutedVTKNtnJRubcnvktJVt0VqmZO9kd5I=) 15: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: ba+G7MIs0RgCQosv/d6yBO5KvwyRloGnmrJta7ui9GM=) 16: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: JS8uyA5ZDD31OuyzTdeFf/XwQTyv6XqrH8RkgQ1lshw=) 17: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: 7eWRkSZdf992QxbF3h3c0q+aJY3RkuNNtdN+bDuFcbA=) 18: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: LVCceArjrNx9uJHc32TrQrfuXNf5yNmqL+LVGTZ/kcg=) 19: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: oIlNxA/X4w99Dtq7i69xwEidK0QOO+TfD/eZvN+32J0=) 20: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: fnkMj+nr5Q7iQNfww9b8AyH+pO8Tw9U80LkD+4bYx0w=) 21: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: mXW/o+2lA5CH8jN2VyvKEwBUBouEpc3dMmyPpKEoHZM=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: ht52TuAJDLY4uwUtrNchRV8xkg3G9MLjO4Fq4TB9fIk=) 23: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: FBcOfIAiLQzUwARh2vRnAPUlJE7QYwm514/u+ntzHTg=) 24: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: tQ4cyb3heb45htZx1h245p6eBfZ/hq4FrcBUNHIJiPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:31:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Dec 20 18:31:28 2025 GMT Not After : Dec 27 18:31:28 2025 GMT Subject: CN=6946eb81-c768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7c:41:36:60:15:5b:c6:08:81:8e:ac:3c:fc: 17:54:2a:c2:51:b5:a2:2e:ec:90:c4:0e:ee:ca:27: 15:2f:15:8a:fe:2b:52:d1:8e:92:e8:ca:cc:1a:b3: 76:cc:81:4e:74:cd:1e:88:e0:9f:76:e9:1f:ef:72: 3b:72:d6:29:09:21:16:94:64:8f:7a:2a:7e:7b:f3: fe:08:ed:89:cc:f4:19:5b:5a:99:e9:6f:d6:79:09: 27:6e:69:a2:06:eb:eb:7c:1a:e0:4c:78:0b:0d:7a: 56:98:09:f7:da:7e:14:af:1d:6a:fa:cc:3d:bb:c5: 19:38:1e:3d:b7:ef:ad:b5:f4:ef:14:e2:c0:c5:c2: 98:cb:9a:b0:04:7d:b7:8d:4d:ef:12:70:92:c3:cf: 78:13:95:bd:0a:c5:9b:75:c8:3b:bf:e0:ed:29:e9: e3:12:b3:47:b8:cf:6f:01:54:8c:fa:94:6b:c3:0a: 65:bb:f6:a6:d3:11:58:3d:dd:ed:cc:6a:ab:27:c3: fa:ab:be:64:c9:1a:c2:3a:9f:19:1d:10:76:ea:a0: 04:a2:3f:9a:f3:2a:86:62:6b:cf:d4:61:1b:ad:74: 63:d3:18:c1:3d:ae:d0:f1:bd:ce:10:9d:96:6e:48: 6d:43:cc:88:3b:e1:21:a8:07:d6:ab:fa:3e:0c:50: be:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:42:76:CF:EA:0C:55:92:A6:6C:89:BA:CA:25:D8:AA:4D:FD:5D:F9 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:7d:f5:37:b6:41:3a:24:dc:94:29:1e:f1:58:67:4e:00:8d: 4d:37:29:91:34:ea:aa:43:87:b1:e1:46:53:f7:74:29:72:0a: 98:35:d2:49:0a:34:d3:c0:95:e7:90:54:ec:cf:f0:fd:aa:b3: 7c:5d:d9:02:55:33:64:41:06:df:22:1a:77:d9:41:b1:98:83: 1c:c6:53:bd:0e:a5:d5:15:9c:a5:5a:05:4a:96:83:38:d8:a1: 94:0a:d2:d8:9e:fd:0e:0a:f0:bd:d4:5d:63:27:71:55:12:15: e1:1e:be:63:da:88:ae:02:cf:56:40:56:46:d0:55:0d:04:c8: 38:7f:7f:45:35:ed:a7:0b:71:52:d8:53:fe:a6:56:2d:39:c0: 93:ea:9a:bb:5e:1b:23:be:5d:19:1f:b2:ba:2a:d0:d8:bb:0a: 86:07:da:d1:86:f8:04:b2:06:f6:b0:e9:45:30:5e:cd:4e:09: cf:da:1c:2d:04:97:a6:f8:cf:03:31:8b:e0:8e:97:15:3d:75: 2a:1e:59:93:e3:c5:b8:9a:29:7b:2b:03:e1:7d:cc:72:f4:5a: 51:fb:1b:63:a6:85:62:fe:8f:8a:10:c4:a6:6c:46:33:b2:44: cc:50:3d:21:12:b5:15:e0:c0:2f:a4:d3:68:16:65:9d:35:32: d6:d4:9d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMjIwMTgzMTI4WhcNMjUxMjI3MTgzMTI4WjAYMRYwFAYD VQQDDA02OTQ2ZWI4MS1jNzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53xBNmAVW8YIgY6sPPwXVCrCUbWiLuyQxA7uyicVLxWK/itS0Y6S6MrMGrN2 zIFOdM0eiOCfdukf73I7ctYpCSEWlGSPeip+e/P+CO2JzPQZW1qZ6W/WeQknbmmi BuvrfBrgTHgLDXpWmAn32n4Urx1q+sw9u8UZOB49t++ttfTvFOLAxcKYy5qwBH23 jU3vEnCSw894E5W9CsWbdcg7v+DtKenjErNHuM9vAVSM+pRrwwplu/am0xFYPd3t zGqrJ8P6q75kyRrCOp8ZHRB26qAEoj+a8yqGYmvP1GEbrXRj0xjBPa7Q8b3OEJ2W bkhtQ8yIO+EhqAfWq/o+DFC+nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpCds/q DFWSpmyJusol2KpN/V35MB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKffU3tkE6JNyUKR7xWGdOAI1NNymRNOqqQ4ex4UZT93QpcgqYNdJJ CjTTwJXnkFTsz/D9qrN8XdkCVTNkQQbfIhp32UGxmIMcxlO9DqXVFZylWgVKloM4 2KGUCtLYnv0OCvC91F1jJ3FVEhXhHr5j2oiuAs9WQFZG0FUNBMg4f39FNe2nC3FS 2FP+plYtOcCT6pq7Xhsjvl0ZH7K6KtDYuwqGB9rRhvgEsgb2sOlFMF7NTgnP2hwt BJem+M8DMYvgjpcVPXUqHlmT48W4mil7KwPhfcxy9FpR+xtjpoVi/o+KEMSmbEYz skTMUD0hErUV4MAvpNNoFmWdNTLW1J0o -----END CERTIFICATE-----Generated at Sat Dec 20 22:49:18 2025 by rpki-client