This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: MCJwPxJTafP2TZi2XtyrFFgXgVfr+4M3FHZQyZWegw0= Subject key identifier: 7C:23:D6:6F:FE:CE:6E:F4:B0:D6:3F:C3:45:36:A8:43:18:45:33:73 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49F9 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4947 Signing time: Sat 31 Jan 2026 02:50:10 +0000 Manifest this update: Sat 31 Jan 2026 02:50:10 +0000 Manifest next update: Sat 07 Feb 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 0/haql9oFYmsrFp2xfiApg9tAw4K5nN1Y99xPxWh+Sg=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Feb 2026 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18937 (0x49f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 31 02:50:10 2026 GMT Not After : Feb 7 02:50:10 2026 GMT Subject: CN=697d6de2-3de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:7b:33:cd:45:90:a0:87:92:d7:2a:4d:b8: b0:81:e5:0a:f7:0f:fa:9a:de:66:eb:2a:ee:d2:7d: 99:a8:c0:4b:50:e0:9e:da:5c:c0:ec:d0:6b:ac:13: 59:70:40:27:be:1a:26:36:58:cd:04:1d:61:c8:b8: 3e:ed:82:9a:11:85:cb:4d:99:12:5d:e4:e8:53:fd: d1:b2:42:d8:91:60:6f:54:41:ef:42:f5:e5:39:81: de:d7:52:ef:e2:91:f1:9b:c2:9d:3d:3b:10:6f:7d: e6:63:b0:54:67:99:e0:a8:c8:b1:06:44:85:f0:1c: 23:a8:c7:04:84:11:bf:d8:ca:3e:95:65:7e:6b:6b: 65:5a:87:75:5d:a9:50:3e:43:1f:d0:ee:3a:37:2e: ff:3f:2f:da:d5:91:d7:eb:b2:bb:fa:08:ca:de:67: bc:ee:19:65:3c:b5:da:4a:98:77:42:1a:6c:9f:8e: 06:d6:9a:14:09:ff:c4:32:fc:2c:fb:1c:0d:bd:26: 7d:0b:75:2e:f6:2a:15:db:da:2f:43:02:ac:51:7b: d1:ce:c8:6c:56:a3:f0:96:f1:2e:3b:e1:3d:21:2d: 97:58:01:42:e0:d4:55:3a:90:d9:23:ed:63:d8:13: a7:f0:e1:bb:70:c2:b3:dc:30:98:f3:7f:13:3a:25: 10:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:23:D6:6F:FE:CE:6E:F4:B0:D6:3F:C3:45:36:A8:43:18:45:33:73 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:69:30:69:69:15:8d:f8:44:fd:4a:ec:02:20:ef:8a:40:3f: 7a:f3:c3:ad:05:58:36:7b:85:c9:07:79:dd:5f:7d:78:59:bb: e1:a2:d8:1b:d1:33:f8:82:90:4c:44:07:b0:39:5b:9f:fa:a6: 0f:0d:41:9b:a9:fa:42:a6:a0:79:cf:29:23:81:86:3c:93:47: 4a:f2:82:74:33:6d:79:1c:c3:af:56:eb:9a:8f:0b:0e:36:2f: 19:e8:75:de:6b:0b:77:e5:1d:18:13:c0:b9:55:9b:93:06:d8: 97:fd:a3:92:cc:27:86:42:38:8a:69:1c:92:93:12:13:18:b2: 16:80:97:e9:fe:47:b6:1d:4f:fc:0d:c7:a0:49:5f:1f:9f:43: 4c:25:6c:13:f2:e6:19:52:47:42:89:e3:94:7e:4d:94:2e:56: 94:67:1e:36:42:00:a9:74:2b:8f:42:09:68:e7:b8:00:4b:38: e8:76:2a:31:a4:c2:18:1e:6c:c2:60:95:1d:21:c9:00:e8:42: ac:11:f2:db:82:26:0c:a5:a1:df:16:7d:c0:d1:31:de:0d:b0: f4:9b:2c:e4:10:08:55:f7:f6:37:17:96:37:25:13:fd:dd:d7: 7b:18:dd:17:bc:dc:2f:09:f9:06:b8:fc:7a:e3:51:30:60:ef: 1a:bd:ee:00 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTMxMDI1MDEwWhcNMjYwMjA3MDI1MDEwWjAYMRYwFAYD VQQDDA02OTdkNmRlMi0zZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWN7M81FkKCHktcqTbiwgeUK9w/6mt5m6yru0n2ZqMBLUOCe2lzA7NBrrBNZ cEAnvhomNljNBB1hyLg+7YKaEYXLTZkSXeToU/3RskLYkWBvVEHvQvXlOYHe11Lv 4pHxm8KdPTsQb33mY7BUZ5ngqMixBkSF8BwjqMcEhBG/2Mo+lWV+a2tlWod1XalQ PkMf0O46Ny7/Py/a1ZHX67K7+gjK3me87hllPLXaSph3Qhpsn44G1poUCf/EMvws +xwNvSZ9C3Uu9ioV29ovQwKsUXvRzshsVqPwlvEuO+E9IS2XWAFC4NRVOpDZI+1j 2BOn8OG7cMKz3DCY838TOiUQRQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFHwj1m/+ zm70sNY/w0U2qEMYRTNzMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCcaTBpaRWN+ET9SuwCIO+KQD9688OtBVg2 e4XJB3ndX314Wbvhotgb0TP4gpBMRAewOVuf+qYPDUGbqfpCpqB5zykjgYY8k0dK 8oJ0M215HMOvVuuajwsONi8Z6HXeawt35R0YE8C5VZuTBtiX/aOSzCeGQjiKaRyS kxITGLIWgJfp/ke2HU/8DcegSV8fn0NMJWwT8uYZUkdCieOUfk2ULlaUZx42QgCp dCuPQglo57gASzjodioxpMIYHmzCYJUdIckA6EKsEfLbgiYMpaHfFn3A0THeDbD0 myzkEAhV9/Y3F5Y3JRP93dd7GN0XvNwvCfkGuPx641EwYO8ave4A -----END CERTIFICATE-----Generated at Sat Jan 31 09:53:02 2026 by rpki-client