This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: NM4sXa+bT8Dw5TRn1Wue2qMTrnHneQB0Pr2DYBGeum0= Subject key identifier: 27:9A:E2:5C:79:05:43:3A:27:6D:E6:F5:D0:BB:0F:A7:90:BB:C3:1B Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4950 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 489F Signing time: Sun 07 Dec 2025 02:50:11 +0000 Manifest this update: Sun 07 Dec 2025 02:50:10 +0000 Manifest next update: Sun 14 Dec 2025 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: AtSWaT9povB+q8SlP/8kSfT077o1iquXY30/QBbFHeI=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18768 (0x4950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 7 02:50:10 2025 GMT Not After : Dec 14 02:50:10 2025 GMT Subject: CN=6934eb62-fa7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:0e:06:01:c3:0d:63:18:e2:25:a9:9f:7d: c9:9f:61:a3:af:7e:df:85:48:b2:46:14:70:7b:6d: 04:e7:d1:a3:50:87:b5:33:82:86:cb:50:d9:fa:a6: a9:08:2a:28:46:47:00:3a:10:83:e2:5e:f7:8e:12: ea:70:97:9f:0c:4c:40:86:05:6d:a3:4c:e4:f5:b6: dd:05:f6:63:46:54:35:74:f1:25:f0:1a:b7:b2:6b: dc:99:6c:03:48:7d:24:99:64:77:20:7c:3e:87:33: e9:a5:aa:62:35:ef:52:6c:bb:3d:ad:4c:b3:17:58: b8:32:85:cf:9a:f2:94:bd:fe:54:50:29:4e:93:01: c3:7b:25:cf:9c:c3:59:9d:0a:9c:6c:f1:2d:09:15: 43:ca:b6:e9:73:65:51:fc:28:e8:6c:f1:cc:85:82: e8:f4:b0:76:07:42:4c:38:b8:45:9e:df:45:bc:24: 57:e0:2c:2b:8f:32:69:f4:4d:74:f1:10:c0:f5:3b: bb:b8:83:c4:a2:c2:fe:18:b5:d1:5f:e2:0c:e8:2c: db:94:ae:45:e2:6e:10:80:a1:f1:35:ba:25:8b:3e: 07:65:ce:5c:63:c1:26:1c:56:d4:ba:0d:00:8a:76: 38:98:65:27:3b:18:85:2d:47:56:72:21:81:ca:25: 5f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9A:E2:5C:79:05:43:3A:27:6D:E6:F5:D0:BB:0F:A7:90:BB:C3:1B X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:cb:81:80:18:dd:55:63:a6:2a:b3:be:ae:46:a2:2d:45:70: 54:b2:b7:c1:b5:3f:87:83:dd:b6:d5:f5:c1:b2:31:d0:c3:c3: b6:93:b8:22:8e:f9:e9:2b:3d:86:fa:2c:91:d4:f1:58:91:0f: 19:40:ae:2b:0d:08:57:4a:a5:06:2f:d0:56:b9:1e:1c:ba:02: e8:2a:06:db:26:e6:50:0e:d9:35:ec:7e:34:00:90:3d:cf:77: 24:d2:06:7c:60:15:41:5f:eb:86:48:b6:4b:10:e7:17:7d:33: dd:ed:42:32:fe:27:15:6f:15:01:8f:95:7b:da:1e:41:b8:10: 69:29:50:79:3c:f3:23:d8:37:90:52:bd:0a:91:22:a9:d1:34: 39:4e:41:26:ce:f3:97:02:15:05:ae:e9:d2:15:e5:e5:d5:c7: ab:a5:e8:e4:0c:b3:68:70:0d:4f:64:4e:84:6d:a0:a6:02:25: c4:68:46:e6:1f:29:f6:4c:df:38:0c:ed:dc:94:4f:48:af:1d: db:28:af:c9:96:ac:03:24:a8:2e:92:30:05:17:46:be:7a:d9: f0:e6:e2:8e:6f:4b:11:d4:4a:3d:92:04:6f:0a:26:95:f5:e3: 97:71:f0:90:95:c0:d8:9e:d1:50:f0:fa:ca:cf:a0:2e:95:e3: 1e:9d:e9:e3 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjA3MDI1MDEwWhcNMjUxMjE0MDI1MDEwWjAYMRYwFAYD VQQDEw02OTM0ZWI2Mi1mYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqgOBgHDDWMY4iWpn33Jn2Gjr37fhUiyRhRwe20E59GjUIe1M4KGy1DZ+qap CCooRkcAOhCD4l73jhLqcJefDExAhgVto0zk9bbdBfZjRlQ1dPEl8Bq3smvcmWwD SH0kmWR3IHw+hzPppapiNe9SbLs9rUyzF1i4MoXPmvKUvf5UUClOkwHDeyXPnMNZ nQqcbPEtCRVDyrbpc2VR/CjobPHMhYLo9LB2B0JMOLhFnt9FvCRX4CwrjzJp9E10 8RDA9Tu7uIPEosL+GLXRX+IM6CzblK5F4m4QgKHxNboliz4HZc5cY8EmHFbUug0A inY4mGUnOxiFLUdWciGByiVf6wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFCea4lx5 BUM6J23m9dC7D6eQu8MbMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBdy4GAGN1VY6Yqs76uRqItRXBUsrfBtT+H g9221fXBsjHQw8O2k7gijvnpKz2G+iyR1PFYkQ8ZQK4rDQhXSqUGL9BWuR4cugLo KgbbJuZQDtk17H40AJA9z3ck0gZ8YBVBX+uGSLZLEOcXfTPd7UIy/icVbxUBj5V7 2h5BuBBpKVB5PPMj2DeQUr0KkSKp0TQ5TkEmzvOXAhUFrunSFeXl1cerpejkDLNo cA1PZE6EbaCmAiXEaEbmHyn2TN84DO3clE9Irx3bKK/JlqwDJKgukjAFF0a+etnw 5uKOb0sR1Eo9kgRvCiaV9eOXcfCQlcDYntFQ8PrKz6AuleMenenj -----END CERTIFICATE-----Generated at Sun Dec 7 15:55:51 2025 by rpki-client