This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: SKWOAgaIs6Sfld5/xwAQWXzQ9taop/NRy/m9Azv/loY= Subject key identifier: 97:28:C7:AF:5B:93:57:1A:18:B7:5F:1B:64:EA:95:D5:D3:BA:64:F9 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49DE Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 492C Signing time: Thu 22 Jan 2026 02:50:11 +0000 Manifest this update: Thu 22 Jan 2026 02:50:11 +0000 Manifest next update: Thu 29 Jan 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 4HzoEPO7vFQ2W8nB3A+/VpEi4LV26dBBln+cXapaWG4=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18910 (0x49de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 22 02:50:11 2026 GMT Not After : Jan 29 02:50:11 2026 GMT Subject: CN=69719063-dbea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fc:6b:fe:7f:24:2f:a3:20:2f:49:a2:b3:60: ba:c8:4c:25:b2:97:6c:c1:e8:da:90:77:9d:84:f6: 41:17:05:07:98:4b:a3:33:5e:fb:ca:7e:cb:d8:4e: c6:82:65:26:05:ad:ca:40:c5:42:98:0f:06:01:74: 6a:b9:74:14:a2:0d:e9:99:c9:ea:e1:37:35:75:43: 93:56:fa:4d:df:55:54:b2:59:fe:6f:e7:9b:fe:15: d9:e2:6c:3e:77:90:2c:e2:fd:44:3f:5e:63:80:56: d8:07:f6:33:3e:1e:f2:63:86:ed:66:22:11:8a:1d: ba:22:0f:bf:a6:b4:ff:1f:87:23:e0:b3:44:82:b0: c4:90:60:65:99:32:eb:2c:1a:a8:61:e0:ad:62:3f: 1c:05:7f:c2:61:af:46:05:20:f6:0e:0b:0b:bf:53: f8:61:19:e3:b7:38:b2:64:23:b6:a1:c5:97:d9:d9: 4e:dc:c4:c0:45:f4:b5:d4:af:2d:39:1d:80:68:d0: 67:88:1a:17:e8:7a:b7:2a:0e:53:73:34:93:61:90: 78:1f:fb:17:33:aa:d4:0a:55:c2:66:78:4f:0d:75: ba:63:dd:52:08:94:1d:55:bb:75:f4:88:2a:40:14: 98:c2:eb:80:05:c5:f6:5f:6a:f9:91:22:39:d4:c1: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:28:C7:AF:5B:93:57:1A:18:B7:5F:1B:64:EA:95:D5:D3:BA:64:F9 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ca:fc:6e:af:96:75:1b:f9:84:1a:48:78:2c:76:26:8a:07: 51:0b:e2:0e:4b:7c:12:df:a0:0b:bd:71:25:ee:22:b4:90:ea: ed:55:f6:7b:e6:a6:85:a3:56:60:c7:1d:7f:04:b6:e6:d7:10: 28:ed:ec:c1:4a:b2:55:3b:f2:72:ae:20:8e:a3:04:da:1a:a4: 80:46:b4:e8:2c:2c:f8:8f:1d:56:10:a5:92:33:b5:2c:00:f3: b7:13:d7:db:bf:b8:a1:a7:b0:c9:60:6a:1f:8c:8c:ef:d7:ae: 38:15:90:cf:51:b9:7f:a0:8e:ea:aa:35:a8:85:7e:c7:2d:70: 31:ec:8e:6a:bd:70:bf:da:6c:b6:6d:6e:97:25:22:1b:08:6a: bc:be:a6:95:77:2b:f3:c8:1d:a9:95:94:cc:9a:bd:ba:d8:a2: c9:16:52:fd:fe:b3:d0:73:68:65:66:3d:54:cf:b8:ca:bd:6a: 7f:2d:2e:1e:c4:b6:f5:2f:1c:03:44:2a:2b:5d:7a:79:be:20: 2a:54:ba:8d:a8:b1:9f:fe:d9:a6:4f:64:31:4a:61:e5:4e:36: e2:bf:20:cf:3e:27:5b:44:fe:91:43:10:a3:b7:59:b2:2d:39: 23:1f:36:d6:a1:f6:98:05:e0:41:1a:74:ba:5a:22:56:0a:ec: fb:ef:4c:c4 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTIyMDI1MDExWhcNMjYwMTI5MDI1MDExWjAYMRYwFAYD VQQDDA02OTcxOTA2My1kYmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/xr/n8kL6MgL0mis2C6yEwlspdswejakHedhPZBFwUHmEujM177yn7L2E7G gmUmBa3KQMVCmA8GAXRquXQUog3pmcnq4Tc1dUOTVvpN31VUsln+b+eb/hXZ4mw+ d5As4v1EP15jgFbYB/YzPh7yY4btZiIRih26Ig+/prT/H4cj4LNEgrDEkGBlmTLr LBqoYeCtYj8cBX/CYa9GBSD2DgsLv1P4YRnjtziyZCO2ocWX2dlO3MTARfS11K8t OR2AaNBniBoX6Hq3Kg5TczSTYZB4H/sXM6rUClXCZnhPDXW6Y91SCJQdVbt19Igq QBSYwuuABcX2X2r5kSI51MEanwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFJcox69b k1caGLdfG2TqldXTumT5MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCPyvxur5Z1G/mEGkh4LHYmigdRC+IOS3wS 36ALvXEl7iK0kOrtVfZ75qaFo1Zgxx1/BLbm1xAo7ezBSrJVO/JyriCOowTaGqSA RrToLCz4jx1WEKWSM7UsAPO3E9fbv7ihp7DJYGofjIzv1644FZDPUbl/oI7qqjWo hX7HLXAx7I5qvXC/2my2bW6XJSIbCGq8vqaVdyvzyB2plZTMmr262KLJFlL9/rPQ c2hlZj1Uz7jKvWp/LS4exLb1LxwDRCorXXp5viAqVLqNqLGf/tmmT2QxSmHlTjbi vyDPPidbRP6RQxCjt1myLTkjHzbWofaYBeBBGnS6WiJWCuz770zE -----END CERTIFICATE-----Generated at Thu Jan 22 09:00:28 2026 by rpki-client