This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: mOO95DKI+D59lLlU0W+H7TYf12vWpaN1I2xCwyC++7s= Subject key identifier: 86:CF:87:9D:D8:4D:23:AD:18:3D:16:8F:B7:C4:05:06:0A:01:14:84 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49EA Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4938 Signing time: Mon 26 Jan 2026 02:50:11 +0000 Manifest this update: Mon 26 Jan 2026 02:50:11 +0000 Manifest next update: Mon 02 Feb 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 9nqtYoSS0fBGSy9fCd6sIqdYxIWGzDXONF/A+RKg74I=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Feb 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18922 (0x49ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 26 02:50:11 2026 GMT Not After : Feb 2 02:50:11 2026 GMT Subject: CN=6976d663-ac68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2b:90:e5:0e:ef:69:54:23:79:0e:0a:28:72: 95:6a:a3:e2:75:ca:14:c0:f2:d9:db:68:61:64:7a: 12:86:16:88:1a:dd:85:4c:da:77:1f:e6:c6:43:8b: 6f:b3:8d:71:43:20:f6:85:b4:da:cd:35:65:1c:39: 83:43:75:47:6f:ad:31:58:e3:7c:26:01:5a:a9:de: 60:e5:bc:97:01:d1:13:42:8a:a0:4d:33:df:90:5f: 08:23:45:46:e2:e3:a7:0c:d1:4b:e6:ec:a3:8b:60: c3:81:aa:65:34:22:62:22:c1:b1:24:7b:c6:1e:ac: 47:11:6e:77:0b:98:ea:a0:ac:f1:48:86:f8:23:2c: 26:b7:64:f9:a6:fe:32:3a:75:ae:4f:72:7e:99:10: 27:36:be:18:91:00:35:b2:dd:7f:86:6f:9f:cb:7c: cb:13:78:20:be:95:65:e7:91:86:4f:1d:bb:d8:3f: c4:38:bc:b2:b7:6c:15:d0:19:c6:da:d2:77:10:86: d3:28:01:13:50:29:cb:c5:ae:d9:20:17:7b:c3:3c: 20:47:78:af:e7:19:f4:2c:83:2c:da:74:a8:35:2e: 28:de:41:a2:eb:05:5f:97:9d:eb:b1:71:23:77:13: dd:4b:48:93:24:27:dd:18:b6:4e:7d:15:20:a2:3e: 77:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CF:87:9D:D8:4D:23:AD:18:3D:16:8F:B7:C4:05:06:0A:01:14:84 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:4e:39:5f:d4:e9:09:a3:e0:89:90:35:d3:75:19:02:8a:20: b0:a5:a7:2d:1c:0c:aa:09:e8:af:15:de:7d:ac:51:e1:7a:b7: 12:5d:34:06:36:3e:fa:85:9b:71:c6:3c:ea:8b:89:f3:2d:b9: 76:af:70:c2:39:a6:a9:a9:39:62:ae:ab:2d:f6:f0:85:41:4d: 24:95:f8:9c:32:62:0b:75:b9:dd:61:b0:fe:61:17:db:1d:b6: cf:f6:b0:23:03:a4:6e:b1:a0:ac:c3:c7:b1:82:eb:ad:34:2b: e0:53:c5:a4:02:97:06:c1:ee:b9:be:4a:a8:9b:37:25:39:7e: 02:ee:3c:e7:5c:5b:06:78:b9:11:cf:60:c2:0f:c2:25:6a:73: a0:47:c1:29:46:44:c3:01:69:78:e6:c8:20:54:28:3c:1b:18: c7:5e:d4:b8:3c:f4:00:2e:9e:53:eb:f7:55:ee:8f:25:42:e1: f6:5e:34:12:a2:0f:28:77:ef:cb:c7:e6:2b:3e:4a:6e:19:dd: 0d:74:50:cd:fa:19:15:91:1c:81:69:f4:b8:bc:17:03:8d:2f: 4f:a2:17:40:48:0b:ae:97:07:b8:e8:63:01:ee:dc:7d:c1:ef: 8a:4a:05:7a:03:8e:52:a2:5f:6f:9c:c2:ed:7f:8a:cb:ff:34: d0:fb:ab:ed -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTI2MDI1MDExWhcNMjYwMjAyMDI1MDExWjAYMRYwFAYD VQQDDA02OTc2ZDY2My1hYzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SuQ5Q7vaVQjeQ4KKHKVaqPidcoUwPLZ22hhZHoShhaIGt2FTNp3H+bGQ4tv s41xQyD2hbTazTVlHDmDQ3VHb60xWON8JgFaqd5g5byXAdETQoqgTTPfkF8II0VG 4uOnDNFL5uyji2DDgaplNCJiIsGxJHvGHqxHEW53C5jqoKzxSIb4Iywmt2T5pv4y OnWuT3J+mRAnNr4YkQA1st1/hm+fy3zLE3ggvpVl55GGTx272D/EOLyyt2wV0BnG 2tJ3EIbTKAETUCnLxa7ZIBd7wzwgR3iv5xn0LIMs2nSoNS4o3kGi6wVfl53rsXEj dxPdS0iTJCfdGLZOfRUgoj53KQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFIbPh53Y TSOtGD0Wj7fEBQYKARSEMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQANTjlf1OkJo+CJkDXTdRkCiiCwpactHAyq CeivFd59rFHhercSXTQGNj76hZtxxjzqi4nzLbl2r3DCOaapqTlirqst9vCFQU0k lficMmILdbndYbD+YRfbHbbP9rAjA6RusaCsw8exguutNCvgU8WkApcGwe65vkqo mzclOX4C7jznXFsGeLkRz2DCD8IlanOgR8EpRkTDAWl45sggVCg8GxjHXtS4PPQA Lp5T6/dV7o8lQuH2XjQSog8od+/Lx+YrPkpuGd0NdFDN+hkVkRyBafS4vBcDjS9P ohdASAuulwe46GMB7tx9we+KSgV6A45Sol9vnMLtf4rL/zTQ+6vt -----END CERTIFICATE-----Generated at Mon Jan 26 10:37:59 2026 by rpki-client