This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: KXGR0o5C/N0GGBrg4usyBwEf4wKhxIgWUhPHF/J/68k= Subject key identifier: 75:CF:4F:B0:B7:3C:9A:07:36:FD:E8:57:91:C4:08:4C:60:2C:CF:17 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: 01D4 Signing time: Fri 19 Dec 2025 02:04:38 +0000 Manifest this update: Fri 19 Dec 2025 02:04:37 +0000 Manifest next update: Fri 26 Dec 2025 02:04:37 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: uvjsHMYpMCToKgO6lkHV+T6hc98jVxqWJ1RYHpmqTlg=) 2: 596841CCA54D11F0BDA77C83C4F9AE02.roa (hash: WOumHbGuRSNgmsYtI00tvSXAxwcM6RyoYIB+0smW1tg=) 3: 31E63B1CA1C011F09810103AC4F9AE02.roa (hash: RFN9XfhuOWaOWLmVZsn6IOgv5uTZS/Q7mdXLAZI6MYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:04:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D, serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: Dec 19 02:04:37 2025 GMT Not After : Dec 26 02:04:37 2025 GMT Subject: CN=6944b2b6-1a65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:6e:ea:b4:e1:a6:22:75:b9:57:f1:ee:5d:b0: 21:aa:c7:25:37:98:a9:54:ac:0e:bc:47:d6:be:87: 7e:f9:1b:f8:5e:6f:6c:84:22:48:9e:8f:57:ca:c1: 28:4d:f8:50:b5:31:d6:04:58:03:b7:90:17:e2:f4: fe:bd:c8:65:17:62:bf:d5:3f:8a:17:ab:b6:61:0c: 26:7f:d6:88:5c:f2:f8:35:f8:00:23:b6:f3:7a:83: 27:66:da:8d:6a:7a:2d:66:68:5c:b6:02:7d:93:5e: cb:88:48:e8:e1:20:a3:8f:27:25:a0:59:83:21:33: 4e:96:f5:3a:7b:ed:62:10:60:39:6a:65:da:9b:67: 95:3b:26:b5:2e:96:f3:46:c9:ad:28:e6:b2:4e:6e: 62:74:36:9d:b2:57:b3:c7:4e:e6:db:05:54:fa:9d: 60:5b:00:06:95:38:09:07:fe:9e:62:2d:53:4b:3b: ea:16:2d:d7:6f:c5:22:66:55:c3:e6:3e:df:65:ff: ee:9c:f5:e9:3c:f0:90:26:5a:91:04:f5:28:d9:9d: 1a:54:18:9c:9d:be:40:e5:5d:3c:5d:45:4a:1c:6e: 46:4e:a0:6a:c8:4c:de:96:4c:a6:d1:9d:39:88:82: 25:8d:1a:a2:ae:8d:1a:84:ea:9f:29:43:68:f4:87: f0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CF:4F:B0:B7:3C:9A:07:36:FD:E8:57:91:C4:08:4C:60:2C:CF:17 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:8b:c7:8f:01:f9:68:25:dd:7c:21:d4:e0:6a:8f:9a:45:d5: bd:71:e7:ad:2b:50:27:78:1e:9d:5a:af:72:13:e2:11:3f:a7: 47:84:58:c6:32:a8:43:48:9d:1d:34:8a:c9:85:29:26:fe:4c: 69:d7:37:42:19:31:cc:a7:00:95:81:48:ac:21:df:6e:51:7f: 3f:24:6c:f4:ef:28:aa:04:b1:7c:8d:13:f7:89:e3:33:f9:0a: 0d:a5:18:8c:1f:bb:1d:d7:96:cf:e9:1f:b1:7b:46:91:17:8e: 2b:7b:49:d8:f4:4a:a3:e7:ef:c0:93:f0:38:0d:f6:b4:f5:89: 91:4c:45:a2:a0:cd:4b:9d:c0:c0:08:a1:21:22:06:cc:81:19: 89:23:61:0e:54:0c:c6:f8:73:8b:fe:b7:0e:5b:c9:83:f1:d7: 28:f6:8f:01:92:11:c1:cb:5a:f3:e4:c9:4c:d6:5e:93:7b:69: b1:1c:7e:17:8e:40:db:fe:44:66:4d:31:22:79:10:cb:dd:c1: 26:d2:48:d6:2a:ec:cf:64:5b:44:eb:e4:9d:84:66:58:b0:2d: 8a:09:be:db:a0:17:ee:e9:aa:ed:ba:0d:8b:f9:59:0e:49:ae: 26:0d:97:8c:35:5d:17:53:7d:cf:5c:34:6d:17:cb:2a:fd:ef: 2c:c9:77:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjUxMjE5MDIwNDM3WhcNMjUxMjI2MDIwNDM3WjAYMRYwFAYD VQQDDA02OTQ0YjJiNi0xYTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+G7qtOGmInW5V/HuXbAhqsclN5ipVKwOvEfWvod++Rv4Xm9shCJIno9XysEo TfhQtTHWBFgDt5AX4vT+vchlF2K/1T+KF6u2YQwmf9aIXPL4NfgAI7bzeoMnZtqN anotZmhctgJ9k17LiEjo4SCjjycloFmDITNOlvU6e+1iEGA5amXam2eVOya1Lpbz RsmtKOayTm5idDadslezx07m2wVU+p1gWwAGlTgJB/6eYi1TSzvqFi3Xb8UiZlXD 5j7fZf/unPXpPPCQJlqRBPUo2Z0aVBicnb5A5V08XUVKHG5GTqBqyEzelkym0Z05 iIIljRqiro0ahOqfKUNo9IfwrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXPT7C3 PJoHNv3oV5HECExgLM8XMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOi8ePAfloJd18IdTgao+aRdW9ceetK1AneB6dWq9yE+IRP6dHhFjG MqhDSJ0dNIrJhSkm/kxp1zdCGTHMpwCVgUisId9uUX8/JGz07yiqBLF8jRP3ieMz +QoNpRiMH7sd15bP6R+xe0aRF44re0nY9Eqj5+/Ak/A4Dfa09YmRTEWioM1LncDA CKEhIgbMgRmJI2EOVAzG+HOL/rcOW8mD8dco9o8BkhHBy1rz5MlM1l6Te2mxHH4X jkDb/kRmTTEieRDL3cEm0kjWKuzPZFtE6+SdhGZYsC2KCb7boBfu6artug2L+VkO Sa4mDZeMNV0XU33PXDRtF8sq/e8syXd2 -----END CERTIFICATE-----Generated at Fri Dec 19 19:22:35 2025 by rpki-client