This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: kt0MTK46InRXhIUc5OAvg0FALT7QkROnNlKm70ej0cI= Subject key identifier: DE:14:21:5F:EC:E3:94:D9:54:10:E6:21:CE:D5:4E:21:69:EB:6E:B8 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49DB Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4929 Signing time: Wed 21 Jan 2026 02:50:11 +0000 Manifest this update: Wed 21 Jan 2026 02:50:10 +0000 Manifest next update: Wed 28 Jan 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: XC1X/O0WmIMG3WJBkufZMJ2NH+r+YB3sZu1qN1Y7Pg0=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18907 (0x49db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 21 02:50:10 2026 GMT Not After : Jan 28 02:50:10 2026 GMT Subject: CN=69703ee2-771e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6f:83:22:5b:4e:a8:e4:d3:02:70:97:62:29: cd:e5:98:ce:56:ee:3b:21:59:b1:9e:15:f7:4c:95: ae:5a:4e:a4:c8:82:91:8c:5a:f5:e5:66:dd:55:43: 04:c0:12:68:92:bc:c1:54:0a:3f:f8:94:76:0f:c4: 28:67:f8:29:56:93:fd:b1:22:9d:b7:d8:61:c4:83: b6:37:4a:5b:8d:ca:51:ce:75:a7:75:91:9a:c5:8f: d8:5c:f1:87:e2:cc:cb:b3:f6:87:c2:9b:f0:ef:32: 82:9c:9b:09:ea:02:ae:7b:aa:18:e8:de:9b:38:13: ca:ee:22:e9:96:c3:d5:48:6f:3a:ee:66:bb:aa:4d: c4:bf:0c:f7:21:37:6f:8f:18:a7:58:09:11:ad:ff: 79:86:a5:0e:98:6f:e2:9f:fa:1f:fc:56:89:06:a6: d5:11:9d:af:b7:32:06:6d:f0:6e:b8:cb:6c:df:2f: 36:91:35:62:88:fb:63:e4:dc:2b:0a:c1:8a:13:6d: 37:c9:0a:1c:ac:36:ed:c9:cd:a6:10:83:84:6a:80: 1e:0a:80:cc:32:2c:b8:22:af:01:f4:6d:8f:f4:4a: 6d:07:16:6b:b8:ea:a9:cb:a6:b2:78:fb:8c:9d:91: d9:0e:71:24:0b:2d:fc:ad:93:2a:b9:e7:0a:10:96: 73:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:14:21:5F:EC:E3:94:D9:54:10:E6:21:CE:D5:4E:21:69:EB:6E:B8 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:46:5f:6c:16:d2:0b:f4:7e:3e:92:09:7c:eb:41:7b:d5:34: ea:af:1e:a4:ed:91:b4:b5:8d:52:fe:a5:4a:52:34:34:5d:ff: 78:fa:0f:bf:aa:91:b4:f4:c6:fc:97:5f:2e:dd:f2:6b:99:60: 9a:a8:f4:3f:e5:5f:e8:58:4e:bf:31:b9:67:ef:92:b3:72:2b: e2:68:91:5d:a7:6e:34:d6:44:ab:c1:52:e1:0e:73:8f:61:e3: ed:36:ea:25:34:63:5a:9f:f2:01:e8:4a:03:24:55:41:86:b6: af:59:d0:50:23:ed:85:a4:3d:e4:5a:3c:54:6f:d3:8f:b3:7c: ef:04:43:f3:c8:21:c2:75:1b:21:b1:ac:73:c5:6f:f0:1a:ec: 0d:74:b2:b8:da:a4:59:f8:f1:b1:38:b2:37:c1:77:62:e9:88: 59:62:93:df:25:01:66:ce:d4:cc:0a:9b:b8:0f:62:89:db:b5: c9:b8:f9:31:9f:5b:9b:12:2e:53:5f:97:d1:0a:fa:50:c8:6e: 4c:45:06:12:b1:0d:0d:6e:fe:93:2d:f0:e8:15:f8:88:f3:25: 2f:80:2a:32:4d:62:e1:fd:f1:02:6a:20:04:bd:96:3d:49:6a: dc:25:5d:94:2d:72:f0:8e:f9:58:fe:6d:fe:53:20:2e:ba:43: 2e:96:bd:93 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTIxMDI1MDEwWhcNMjYwMTI4MDI1MDEwWjAYMRYwFAYD VQQDDA02OTcwM2VlMi03NzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5G+DIltOqOTTAnCXYinN5ZjOVu47IVmxnhX3TJWuWk6kyIKRjFr15WbdVUME wBJokrzBVAo/+JR2D8QoZ/gpVpP9sSKdt9hhxIO2N0pbjcpRznWndZGaxY/YXPGH 4szLs/aHwpvw7zKCnJsJ6gKue6oY6N6bOBPK7iLplsPVSG867ma7qk3Evwz3ITdv jxinWAkRrf95hqUOmG/in/of/FaJBqbVEZ2vtzIGbfBuuMts3y82kTViiPtj5Nwr CsGKE203yQocrDbtyc2mEIOEaoAeCoDMMiy4Iq8B9G2P9EptBxZruOqpy6ayePuM nZHZDnEkCy38rZMquecKEJZz2QIDAQABo4IChzCCAoMwHQYDVR0OBBYEFN4UIV/s 45TZVBDmIc7VTiFp6264MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCNRl9sFtIL9H4+kgl860F71TTqrx6k7ZG0 tY1S/qVKUjQ0Xf94+g+/qpG09Mb8l18u3fJrmWCaqPQ/5V/oWE6/Mbln75Kzcivi aJFdp2401kSrwVLhDnOPYePtNuolNGNan/IB6EoDJFVBhravWdBQI+2FpD3kWjxU b9OPs3zvBEPzyCHCdRshsaxzxW/wGuwNdLK42qRZ+PGxOLI3wXdi6YhZYpPfJQFm ztTMCpu4D2KJ27XJuPkxn1ubEi5TX5fRCvpQyG5MRQYSsQ0Nbv6TLfDoFfiI8yUv gCoyTWLh/fECaiAEvZY9SWrcJV2ULXLwjvlY/m3+UyAuukMulr2T -----END CERTIFICATE-----Generated at Wed Jan 21 08:10:30 2026 by rpki-client