This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: zwDUpFoUX/S51W+EBnJivshPSLk5E1Z4FzS7AncuX4k= Subject key identifier: 02:D1:C1:1D:D6:56:7F:42:A1:FB:43:03:28:89:2C:C8:B9:EB:A5:75 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49C2 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4910 Signing time: Mon 12 Jan 2026 14:50:11 +0000 Manifest this update: Mon 12 Jan 2026 14:50:10 +0000 Manifest next update: Mon 19 Jan 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: APoPei+zckeBYSxNkuUjF01pfiJLJ7YMYA92yeRIKAM=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 Jan 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18882 (0x49c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 12 14:50:10 2026 GMT Not After : Jan 19 14:50:10 2026 GMT Subject: CN=69650a23-4a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:c7:7d:d3:68:67:1c:f3:97:c9:fa:70:e4: 36:3a:4d:56:3f:08:ce:07:81:48:8a:d4:54:bc:34: 76:1f:dd:9d:5e:f3:4b:c2:58:70:96:8b:a3:61:01: 96:f1:dd:18:6d:de:8b:ad:e3:c9:50:f6:81:17:7a: cb:e1:bd:af:f2:96:bc:72:d3:2a:22:01:99:89:26: 95:ed:0c:63:60:a5:3f:f1:cd:11:ee:cc:e5:af:b6: e2:26:3b:a5:5b:2f:b8:ef:9e:26:d0:1e:16:74:22: 96:e7:20:85:63:26:aa:3c:75:a7:59:e8:9a:8f:2e: 73:b7:19:e5:13:60:71:dd:0f:ae:0f:fc:26:e3:cf: 29:10:fc:c2:c8:ff:dd:ff:63:8f:fe:cc:6c:44:ae: 4d:3c:62:30:e0:2a:59:e7:83:5d:dd:ad:4a:81:95: df:78:f2:d5:36:3c:b9:cc:18:b7:b2:2f:69:7b:25: 78:60:a8:50:b0:4c:1b:7d:98:ec:0f:aa:37:9e:d2: 8e:cf:8a:62:a1:04:54:8f:be:4d:82:d2:50:7b:05: 81:d3:5c:fe:72:09:23:fd:e0:0b:c3:06:a4:14:8c: 6a:b7:37:e5:8c:c9:bf:61:e6:c5:f0:78:c6:6b:d5: a7:56:bb:49:1a:16:79:52:74:16:7a:4d:d6:f7:7a: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:D1:C1:1D:D6:56:7F:42:A1:FB:43:03:28:89:2C:C8:B9:EB:A5:75 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:83:0e:4f:cd:60:71:75:1d:5a:89:47:f7:a9:ae:9c:25:26: 79:84:6a:8c:6b:7b:8e:2f:7d:0e:6f:41:ce:4d:c0:24:5b:ef: ad:42:c6:40:40:c0:c3:08:17:0a:6d:8b:67:c7:4d:71:ee:08: d6:cc:4e:e1:23:81:02:bb:e5:0b:9f:6b:04:09:b4:4e:bc:2a: 57:a1:ac:27:25:b7:fb:9c:cf:08:96:de:b7:d1:59:be:46:2f: 2a:d4:95:83:3e:9d:72:dc:27:b6:b5:96:42:5b:8f:0d:3a:59: 4a:9d:80:ac:b5:80:cf:de:86:bf:9f:ea:2c:82:02:e3:02:52: cc:6e:5b:d8:c1:12:57:81:77:e5:f6:89:ba:bc:f5:35:a0:1a: 77:e8:ae:4d:ec:a5:9d:bf:7d:68:8c:20:97:70:bf:f1:90:b0: 1d:03:6b:9a:93:7b:2e:bd:65:48:f5:fd:00:72:3c:20:ba:25: 3a:d2:1a:0a:82:43:bb:c7:b5:8b:21:48:31:ae:da:d2:cb:72: d9:46:3e:84:21:49:5e:bf:ee:0c:b9:bf:c3:58:89:df:8a:fa: ca:ee:33:19:23:92:62:9e:40:31:3a:6e:4f:82:d1:62:16:25: 57:b6:f0:82:c6:e2:56:3f:0a:0d:48:bc:d7:6c:17:b2:cd:91: a3:55:af:9c -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICScIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTEyMTQ1MDEwWhcNMjYwMTE5MTQ1MDEwWjAYMRYwFAYD VQQDDA02OTY1MGEyMy00YTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv7HfdNoZxzzl8n6cOQ2Ok1WPwjOB4FIitRUvDR2H92dXvNLwlhwloujYQGW 8d0Ybd6LrePJUPaBF3rL4b2v8pa8ctMqIgGZiSaV7QxjYKU/8c0R7szlr7biJjul Wy+4754m0B4WdCKW5yCFYyaqPHWnWeiajy5ztxnlE2Bx3Q+uD/wm488pEPzCyP/d /2OP/sxsRK5NPGIw4CpZ54Nd3a1KgZXfePLVNjy5zBi3si9peyV4YKhQsEwbfZjs D6o3ntKOz4pioQRUj75NgtJQewWB01z+cgkj/eALwwakFIxqtzfljMm/YebF8HjG a9WnVrtJGhZ5UnQWek3W93ocfwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFALRwR3W Vn9CoftDAyiJLMi566V1MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCigw5PzWBxdR1aiUf3qa6cJSZ5hGqMa3uO L30Ob0HOTcAkW++tQsZAQMDDCBcKbYtnx01x7gjWzE7hI4ECu+ULn2sECbROvCpX oawnJbf7nM8Ilt630Vm+Ri8q1JWDPp1y3Ce2tZZCW48NOllKnYCstYDP3oa/n+os ggLjAlLMblvYwRJXgXfl9om6vPU1oBp36K5N7KWdv31ojCCXcL/xkLAdA2uak3su vWVI9f0AcjwguiU60hoKgkO7x7WLIUgxrtrSy3LZRj6EIUlev+4Mub/DWInfivrK 7jMZI5JinkAxOm5PgtFiFiVXtvCCxuJWPwoNSLzXbBeyzZGjVa+c -----END CERTIFICATE-----Generated at Tue Jan 13 01:50:08 2026 by rpki-client