This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          QNc98dEubOjiTmxPCtaSWMlA1e/NzwT8MmijhP17oOA=
Subject key identifier:   A6:3A:1D:36:E9:C6:29:4A:D2:60:76:A2:C5:95:29:71:E5:BC:43:07
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       49F8
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4946
Signing time:             Fri 30 Jan 2026 15:01:24 +0000
Manifest this update:     Fri 30 Jan 2026 15:01:23 +0000
Manifest next update:     Fri 06 Feb 2026 15:01:23 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: p5NcUrNVQfRmJweUeJ4JOglSKAPCbO+EiI4BewabSBA=)
                          2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=)
                          4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=)
                          5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=)
                          6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=)
                          7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=)
                          8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=)
                          9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 06 Feb 2026 15:01:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 18936 (0x49f8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jan 30 15:01:23 2026 GMT
            Not After : Feb  6 15:01:23 2026 GMT
        Subject: CN=697cc7c3-f217
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:72:4d:b5:8a:84:03:27:9d:17:c2:62:d3:3c:
                    b1:82:fb:f5:f2:40:ac:bf:61:98:97:f8:10:f8:92:
                    d8:1a:2f:34:15:fe:e2:2f:04:e3:ad:e0:fa:c6:32:
                    fb:d0:77:7d:76:73:0a:d8:ae:4c:74:78:c9:d8:47:
                    08:8f:fc:f3:f7:36:c2:59:d5:cd:35:7b:e3:9a:d8:
                    d7:0a:37:9d:2d:1f:2e:76:80:ef:fd:89:ac:51:b3:
                    23:51:2b:ce:8a:67:8d:29:48:70:ae:8f:55:6e:04:
                    8e:b8:14:04:df:75:4d:97:df:5f:32:ab:c4:38:a0:
                    c4:c0:40:64:c5:0a:ac:10:36:0a:df:1b:7c:44:94:
                    62:3f:c7:e6:e6:41:b2:55:ee:97:d6:8f:a9:f6:c9:
                    c5:c6:ae:c3:f8:07:1c:b9:26:51:f8:30:b4:b9:c2:
                    e8:26:93:89:65:d0:34:4c:76:94:61:0f:93:a3:4c:
                    45:99:a1:3e:9d:8f:d8:45:db:80:d1:89:ce:ef:a3:
                    16:b9:05:5f:f1:83:ff:ee:7c:d6:ad:d3:0c:e6:06:
                    79:f7:bc:cf:d9:31:24:2c:34:19:13:07:a7:17:8f:
                    7e:ed:b7:f3:f6:bb:a7:1e:7a:f0:76:4f:36:d2:80:
                    ce:1c:05:32:7d:bf:09:11:fc:0e:30:71:36:c0:ed:
                    c6:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:3A:1D:36:E9:C6:29:4A:D2:60:76:A2:C5:95:29:71:E5:BC:43:07
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:1c:9d:60:c3:8e:00:4e:62:4c:04:ea:fd:a6:c8:cf:d1:56:
         4b:ee:67:ec:2c:bf:a4:6e:f5:23:37:29:55:68:59:d1:d8:0f:
         c7:06:6a:4b:e3:de:39:dd:44:8b:99:f3:bf:40:99:70:ce:4a:
         47:9a:5b:0e:1a:63:67:16:a2:13:08:fc:e6:3a:38:6d:c7:45:
         e3:9b:27:86:38:14:be:03:2e:0d:99:1d:fe:15:83:66:27:f6:
         c2:6c:09:50:90:73:2c:17:bb:42:7f:29:cc:bc:c8:f2:1c:8a:
         0d:1d:fa:2a:a0:8b:b2:a1:f5:7c:f0:01:51:ae:e4:9a:9f:4f:
         d1:95:40:c3:96:2a:3f:33:c3:0a:30:de:14:b1:b4:43:60:56:
         ca:c3:dc:ef:4f:29:99:44:a8:48:c7:4d:4c:8e:c8:a8:a0:67:
         58:75:a5:23:b9:35:5d:a2:91:5d:72:74:63:40:93:7d:a7:b3:
         54:77:e6:7b:50:33:cd:2c:cc:15:ea:71:69:32:75:e6:70:04:
         c7:11:25:0f:8c:0b:7b:34:ac:92:33:87:28:82:78:4a:9c:f8:
         cb:05:79:b2:ac:20:b5:5c:cf:ea:56:c5:9f:98:a1:94:26:ee:
         d5:33:92:ab:7a:00:c4:d0:ef:5a:a3:bd:ae:8b:78:bf:f7:66:
         ad:f0:1e:13
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgICSfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjYwMTMwMTUwMTIzWhcNMjYwMjA2MTUwMTIzWjAYMRYwFAYD
VQQDDA02OTdjYzdjMy1mMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtnJNtYqEAyedF8Ji0zyxgvv18kCsv2GYl/gQ+JLYGi80Ff7iLwTjreD6xjL7
0Hd9dnMK2K5MdHjJ2EcIj/zz9zbCWdXNNXvjmtjXCjedLR8udoDv/YmsUbMjUSvO
imeNKUhwro9VbgSOuBQE33VNl99fMqvEOKDEwEBkxQqsEDYK3xt8RJRiP8fm5kGy
Ve6X1o+p9snFxq7D+AccuSZR+DC0ucLoJpOJZdA0THaUYQ+To0xFmaE+nY/YRduA
0YnO76MWuQVf8YP/7nzWrdMM5gZ597zP2TEkLDQZEwenF49+7bfz9runHnrwdk82
0oDOHAUyfb8JEfwOMHE2wO3GMwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKY6HTbp
xilK0mB2osWVKXHlvEMHMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE
MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN
hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB
BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBhHJ1gw44ATmJMBOr9psjP0VZL7mfsLL+k
bvUjNylVaFnR2A/HBmpL49453USLmfO/QJlwzkpHmlsOGmNnFqITCPzmOjhtx0Xj
myeGOBS+Ay4NmR3+FYNmJ/bCbAlQkHMsF7tCfynMvMjyHIoNHfoqoIuyofV88AFR
ruSan0/RlUDDlio/M8MKMN4UsbRDYFbKw9zvTymZRKhIx01MjsiooGdYdaUjuTVd
opFdcnRjQJN9p7NUd+Z7UDPNLMwV6nFpMnXmcATHESUPjAt7NKySM4cognhKnPjL
BXmyrCC1XM/qVsWfmKGUJu7VM5KregDE0O9ao72ui3i/92at8B4T
-----END CERTIFICATE-----
Generated at Sat Jan 31 01:32:13 2026 by rpki-client