This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: XBMtdQ0nIahKJlActPR84JzF6pNu91keEM/ig4DGsWY= Subject key identifier: 14:8F:76:AC:E4:3D:01:35:23:97:30:B0:A4:96:04:2E:90:5C:AC:E9 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 496F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 48BD Signing time: Tue 16 Dec 2025 14:50:10 +0000 Manifest this update: Tue 16 Dec 2025 14:50:10 +0000 Manifest next update: Tue 23 Dec 2025 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: MNwbmNIdKPBfD+tyLJRGkdPuv9K6XSnL4Y1vH28wqdY=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18799 (0x496f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 16 14:50:10 2025 GMT Not After : Dec 23 14:50:10 2025 GMT Subject: CN=694171a2-182e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ac:3b:8b:c7:be:d2:ed:1e:77:88:6f:4c:e9: ec:28:ce:ca:c7:21:9f:b5:b8:bd:4a:a9:bf:57:bd: fa:6e:64:da:d4:c2:5e:b7:1a:bf:27:7c:cf:b0:ae: e4:31:db:44:81:24:b0:a1:cd:31:b0:e2:4a:a3:17: 4f:1e:bd:fa:f5:10:d3:5a:a0:78:9c:c6:6b:09:4b: 0a:d0:12:1a:bf:42:17:23:c8:7f:c4:fe:d3:2b:3b: 85:61:23:3b:89:ef:06:ed:de:98:fa:3c:8c:51:26: 86:76:86:ca:e3:20:4d:c5:57:e6:91:82:ba:ad:bd: 55:4c:3e:18:41:df:34:f2:22:be:93:69:dc:90:41: 46:24:df:8d:58:31:3e:c1:a2:f8:2d:e3:33:9d:9b: 4b:6e:5c:b8:ec:53:b5:58:2a:7d:05:85:be:cb:52: 73:fb:94:f0:32:cd:e5:e3:f5:76:3b:bb:8a:d1:c6: c1:aa:1d:5d:61:88:d1:09:9f:44:00:a4:e8:75:46: 0f:e3:a1:ce:dc:eb:91:b7:80:1f:e3:39:51:7e:45: 4b:4a:f4:0e:51:23:6d:93:3b:f5:a4:1f:90:b6:7c: a0:b7:d2:55:bc:35:93:e8:f1:1c:4a:8e:87:14:fb: d2:87:a5:2e:fd:b3:6f:e1:36:fe:6a:ac:97:07:b4: b0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8F:76:AC:E4:3D:01:35:23:97:30:B0:A4:96:04:2E:90:5C:AC:E9 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5d:64:a9:a4:2e:4a:20:24:86:0a:ce:4d:44:87:5f:77:f6: 2a:af:31:1b:29:2c:c4:72:e3:09:88:49:5b:0e:23:04:fb:24: 71:5d:10:7d:e6:8d:a7:a2:87:fb:cb:09:da:05:ed:48:1d:36: be:61:95:90:88:8f:e2:9b:d5:bc:c2:67:81:ca:99:35:fb:48: 46:51:2e:97:90:5a:07:85:85:3d:1a:1d:3d:b4:f6:a4:35:40: f5:a9:db:fb:6e:fa:f5:41:bc:fb:56:93:70:83:5e:4a:00:0a: 1d:79:e8:06:ae:cd:71:3e:f6:f4:e0:e7:a7:11:09:96:4b:5a: a2:1f:8f:10:a6:35:ae:b7:db:30:80:7e:a9:02:a5:8f:e4:dc: 59:c9:83:1a:99:be:2a:ee:19:ab:6f:ec:da:5f:e3:2b:63:e2: 71:77:8a:07:77:73:e2:b9:14:11:9e:62:6a:4d:c3:b6:8e:c7: c0:7d:f0:bf:21:4a:45:c1:89:bc:fb:18:90:e3:e8:39:a1:2a: 92:0d:9a:41:69:49:a0:0f:21:20:89:05:d3:d1:cd:49:6a:a5: 5e:fd:91:03:76:35:74:01:de:1c:3a:2b:19:89:2b:a1:67:9a: d2:6f:94:c8:d9:73:3a:41:ed:a2:09:d3:c4:46:b2:ef:d9:10: fb:18:64:28 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjE2MTQ1MDEwWhcNMjUxMjIzMTQ1MDEwWjAYMRYwFAYD VQQDEw02OTQxNzFhMi0xODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Kw7i8e+0u0ed4hvTOnsKM7KxyGftbi9Sqm/V736bmTa1MJetxq/J3zPsK7k MdtEgSSwoc0xsOJKoxdPHr369RDTWqB4nMZrCUsK0BIav0IXI8h/xP7TKzuFYSM7 ie8G7d6Y+jyMUSaGdobK4yBNxVfmkYK6rb1VTD4YQd808iK+k2nckEFGJN+NWDE+ waL4LeMznZtLbly47FO1WCp9BYW+y1Jz+5TwMs3l4/V2O7uK0cbBqh1dYYjRCZ9E AKTodUYP46HO3OuRt4Af4zlRfkVLSvQOUSNtkzv1pB+Qtnygt9JVvDWT6PEcSo6H FPvSh6Uu/bNv4Tb+aqyXB7SwnwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFBSPdqzk PQE1I5cwsKSWBC6QXKzpMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBDXWSppC5KICSGCs5NRIdfd/YqrzEbKSzE cuMJiElbDiME+yRxXRB95o2noof7ywnaBe1IHTa+YZWQiI/im9W8wmeBypk1+0hG US6XkFoHhYU9Gh09tPakNUD1qdv7bvr1Qbz7VpNwg15KAAodeegGrs1xPvb04Oen EQmWS1qiH48QpjWut9swgH6pAqWP5NxZyYMamb4q7hmrb+zaX+MrY+Jxd4oHd3Pi uRQRnmJqTcO2jsfAffC/IUpFwYm8+xiQ4+g5oSqSDZpBaUmgDyEgiQXT0c1JaqVe /ZEDdjV0Ad4cOisZiSuhZ5rSb5TI2XM6Qe2iCdPERrLv2RD7GGQo -----END CERTIFICATE-----Generated at Tue Dec 16 20:27:30 2025 by rpki-client