This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft File: QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft (raw, json) Hash identifier: zl2Rk2SylrKyr0F5JowQM2IcLn1hTema4EfRqKvC81s= Subject key identifier: E8:D5:11:97:18:D6:AC:61:95:F2:F7:72:8A:09:3B:8B:17:1E:D8:9A Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft Manifest number: 0C82 Signing time: Thu 04 Dec 2025 18:20:25 +0000 Manifest this update: Thu 04 Dec 2025 18:20:24 +0000 Manifest next update: Thu 11 Dec 2025 18:20:24 +0000 Files and hashes: 1: QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl (hash: 3o5FF6iIm0a/W99nI8+Gwd//OnCcmMukKccn79g8eaY=) 2: 8CC1AF1417DC11EE959DE671C4F9AE02.roa (hash: 7+0RKtv/QFqUJhAIU0jwK/kD2sQJylo8+nExaHdj0YU=) 3: 8DB5B2BC17DC11EE959DE671C4F9AE02.roa (hash: mXW/o+2lA5CH8jN2VyvKEwBUBouEpc3dMmyPpKEoHZM=) 4: 8CA2C07889D111EFAFEB2609C4F9AE02.roa (hash: 7eWRkSZdf992QxbF3h3c0q+aJY3RkuNNtdN+bDuFcbA=) 5: 65A78BCE535F11EE9BC85F83C4F9AE02.roa (hash: JS8uyA5ZDD31OuyzTdeFf/XwQTyv6XqrH8RkgQ1lshw=) 6: A0F26482C9F211EF986EE370C4F9AE02.roa (hash: WvJTTw2h2x8eNtvB9hnnw/qG2i/35vtgBc53uEDUyyE=) 7: AABA617A78B811F0A62F9B28C4F9AE02.roa (hash: JtPXx1WRgsbzmrsNLInF92woE+rUeMA5vr5GiqEQHmw=) 8: 8BF60AF817DC11EE959DE671C4F9AE02.roa (hash: LVCceArjrNx9uJHc32TrQrfuXNf5yNmqL+LVGTZ/kcg=) 9: 67F68132535F11EE9BC85F83C4F9AE02.roa (hash: 93zu71Bbjz/nav2+CvE7DZaoexH+Z1OOLkl6NHafn3s=) 10: 8D2CC3EE17DC11EE959DE671C4F9AE02.roa (hash: zctn/DI/I3BOanvNBzpc9IpPDcrqCUE0GkQVT4ki+nE=) 11: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (hash: fnkMj+nr5Q7iQNfww9b8AyH+pO8Tw9U80LkD+4bYx0w=) 12: 6688CA76535F11EE9BC85F83C4F9AE02.roa (hash: 2TDhWa5aEDfj/OSlXTwrUwhI6/Fx1H9p120AVX8QFaw=) 13: 67023924535F11EE9BC85F83C4F9AE02.roa (hash: auKtqb5gzHutedVTKNtnJRubcnvktJVt0VqmZO9kd5I=) 14: 9B3FF0EC1F6D11F0BBEE756AC4F9AE02.roa (hash: oIlNxA/X4w99Dtq7i69xwEidK0QOO+TfD/eZvN+32J0=) 15: 678847C6535F11EE9BC85F83C4F9AE02.roa (hash: tQ4cyb3heb45htZx1h245p6eBfZ/hq4FrcBUNHIJiPo=) 16: 8B707C6C17DC11EE959DE671C4F9AE02.roa (hash: FBcOfIAiLQzUwARh2vRnAPUlJE7QYwm514/u+ntzHTg=) 17: 48E219C209C311EEA9D88A34C4F9AE02.roa (hash: SfxwUXkZ6scs6b9stvrkH0M3EDnjNSsIuRA3moh8vhQ=) 18: 8AD3E23A17DC11EE959DE671C4F9AE02.roa (hash: Y/n3NB4Jr09jG3Cs+pVr+0yWJBuRJo/kO/On8tf2V5E=) 19: 8EADC8C617DC11EE959DE671C4F9AE02.roa (hash: CD4VpLZIjAnREdFcpXUGct5U+Mw4EMKjpjAEDuYsKeI=) 20: 8F1DD9E017DC11EE959DE671C4F9AE02.roa (hash: yQvc3ntNpG7BJNIHH6+Ojk1HrYYp15Nu10dcUFhCOA8=) 21: 041A5B042C6911F098B91B76C4F9AE02.roa (hash: I5wPyYqqdfF0mXRXOECwyg6iI7z8KBKDKIwaF8mL0MA=) 22: 9005E6F417DC11EE959DE671C4F9AE02.roa (hash: ht52TuAJDLY4uwUtrNchRV8xkg3G9MLjO4Fq4TB9fIk=) 23: 651E60A6535F11EE9BC85F83C4F9AE02.roa (hash: YhNbhFzO7WHU8UmccgfY4hoJ4t2k4JoW/bwFa0YyNSk=) 24: 8E2676DC17DC11EE959DE671C4F9AE02.roa (hash: ba+G7MIs0RgCQosv/d6yBO5KvwyRloGnmrJta7ui9GM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Dec 4 18:20:24 2025 GMT Not After : Dec 11 18:20:24 2025 GMT Subject: CN=6931d0e9-46a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:61:04:bc:7d:48:39:b1:23:87:a1:1c:2f: 7d:6d:0d:09:97:69:e0:b3:fa:ba:d5:38:f1:63:11: ef:ae:96:cd:0a:a4:8f:07:24:91:3f:30:f1:57:65: 92:57:9d:61:a9:aa:6a:13:1b:78:8e:4a:2c:59:66: 6a:69:2b:f4:f2:b4:ef:73:0d:6b:df:32:5f:b7:e5: 17:1b:47:0c:49:05:4c:93:69:93:27:8b:41:8c:6d: 1e:81:b8:d6:4d:03:5a:ca:69:62:39:9c:b6:4c:f4: f3:c7:a4:60:ee:e7:a4:da:68:7b:40:fe:df:49:9e: 45:b5:5a:a3:b6:0e:3c:84:36:f3:0b:c3:4f:fc:6d: 9e:5b:32:cf:a2:00:85:0e:75:c2:69:ec:69:39:56: 1c:eb:8a:df:81:d4:dd:23:4d:8b:35:00:bd:dc:e3: c7:42:77:22:ce:6a:63:d5:c3:2a:97:cf:4d:07:27: ea:c4:23:bc:9b:f2:b7:ec:88:d6:74:f0:d3:5d:cd: c2:df:29:50:ad:4c:1f:8c:f3:48:01:44:5a:9c:d3: 54:03:0b:e0:78:67:a5:9d:18:44:ba:7c:04:c6:2c: ff:54:46:17:56:28:01:7b:b5:a0:a5:03:66:e3:51: b2:01:22:ba:6d:ae:4e:a5:dc:42:3c:e5:03:7b:76: e8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:D5:11:97:18:D6:AC:61:95:F2:F7:72:8A:09:3B:8B:17:1E:D8:9A X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:8e:bf:0e:1c:3f:0e:b8:b7:98:9d:9f:0c:af:76:e2:bc:a4: bd:dd:11:af:9a:be:85:80:93:68:c6:22:52:3c:d9:d0:e2:61: 6f:6a:17:da:4c:62:18:bb:de:54:79:51:db:20:a7:9f:d4:c3: 5f:93:7d:69:e7:66:c8:79:f1:0b:01:57:b1:f2:f5:7f:cf:90: 02:10:06:fc:ed:7f:88:33:f4:89:9a:45:4e:0b:ca:7f:47:c6: dd:a5:80:8e:12:e7:f1:91:63:54:74:12:48:dc:c2:fc:99:da: 8c:27:d7:4d:a6:3a:a1:53:87:a6:1b:dc:a3:69:c8:57:9d:ac: ae:ab:a9:ec:ee:09:38:28:d8:01:7c:92:8b:ae:a1:08:ee:12: c9:1b:47:82:c6:e7:5d:82:3a:d8:02:ba:25:c1:85:4e:ed:e2: 5d:0b:93:ab:3e:c3:45:c4:b6:1b:8c:19:f0:b7:a4:a0:fd:4a: b6:4a:10:60:4b:14:2b:a5:bb:15:dc:9b:a4:15:a7:28:88:6c: b2:0b:b0:bd:0e:89:67:e4:29:33:e1:3d:1d:80:04:e0:3d:5d: d2:05:83:7d:3b:98:b7:d9:42:42:c2:fe:fd:a6:df:bb:76:9c: 2b:aa:b7:7c:5f:f8:44:bd:54:08:07:2f:0d:c0:b9:46:12:dd: d9:6a:84:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMjA0MTgyMDI0WhcNMjUxMjExMTgyMDI0WjAYMRYwFAYD VQQDEw02OTMxZDBlOS00NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWBhBLx9SDmxI4ehHC99bQ0Jl2ngs/q61TjxYxHvrpbNCqSPBySRPzDxV2WS V51hqapqExt4jkosWWZqaSv08rTvcw1r3zJft+UXG0cMSQVMk2mTJ4tBjG0egbjW TQNaymliOZy2TPTzx6Rg7uek2mh7QP7fSZ5FtVqjtg48hDbzC8NP/G2eWzLPogCF DnXCaexpOVYc64rfgdTdI02LNQC93OPHQncizmpj1cMql89NByfqxCO8m/K37IjW dPDTXc3C3ylQrUwfjPNIAURanNNUAwvgeGelnRhEunwExiz/VEYXVigBe7WgpQNm 41GyASK6ba5OpdxCPOUDe3bogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjVEZcY 1qxhlfL3cooJO4sXHtiaMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC9CRTg4NDZEMjM1RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4 bkhEX3libWJZTHZzMGRjN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGjr8OHD8OuLeYnZ8Mr3bivKS93RGvmr6FgJNoxiJSPNnQ4mFvahfa TGIYu95UeVHbIKef1MNfk31p52bIefELAVex8vV/z5ACEAb87X+IM/SJmkVOC8p/ R8bdpYCOEufxkWNUdBJI3ML8mdqMJ9dNpjqhU4emG9yjachXnayuq6ns7gk4KNgB fJKLrqEI7hLJG0eCxuddgjrYArolwYVO7eJdC5OrPsNFxLYbjBnwt6Sg/Uq2ShBg SxQrpbsV3JukFacoiGyyC7C9Doln5Ckz4T0dgATgPV3SBYN9O5i32UJCwv79pt+7 dpwrqrd8X/hEvVQIBy8NwLlGEt3ZaoTO -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:38 2025 by rpki-client