This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: C8HeFhJ19Q/KguPEfvSYDvGBG/LMwj4U3g0fn6wKmm4= Subject key identifier: 01:87:09:D6:1B:F9:99:52:EC:F2:ED:13:80:AF:50:C2:A8:BF:95:F1 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49CF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 491D Signing time: Sat 17 Jan 2026 02:50:11 +0000 Manifest this update: Sat 17 Jan 2026 02:50:10 +0000 Manifest next update: Sat 24 Jan 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: yiby412xGWYBmNdXWlo2aLdPZOxUWLAmsN3lrW22aus=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18895 (0x49cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 17 02:50:10 2026 GMT Not After : Jan 24 02:50:10 2026 GMT Subject: CN=696af8e3-f970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:cd:ba:bc:3a:b8:77:5f:dd:e1:e3:d1:2f:07: 68:b8:4c:9c:d8:41:1b:8e:a9:77:cc:1b:5c:bc:fe: 83:7d:a1:86:71:23:da:a3:84:14:ea:d8:33:87:84: a6:6f:e9:1a:52:7c:9b:03:42:10:71:13:8b:3c:29: b2:1e:b1:42:e1:12:41:b8:5e:da:3c:4a:cd:1f:7a: c9:df:e9:ae:a2:b4:80:42:1b:95:64:c3:c2:1c:b4: e0:54:2e:30:27:37:4f:cc:41:b8:3a:51:af:66:9f: 15:c3:c7:ca:5f:1f:4d:5f:4c:81:c9:c2:27:bd:77: 4a:12:0b:5c:7e:c9:29:47:6d:f0:0b:50:bf:d6:8d: 82:25:d1:56:c8:37:aa:96:6b:0e:48:5f:3b:ab:75: ad:f1:47:6b:2a:af:53:f6:f3:4b:d6:f9:e6:96:2d: 27:47:5e:aa:fe:a6:91:31:3f:f9:ff:2c:24:8f:04: 42:fe:c6:f3:dc:bc:c4:0e:ba:83:11:7c:19:67:7b: f7:5e:b2:3b:50:fb:83:eb:5a:a0:ec:e1:82:38:81: 4b:21:68:1f:f0:0b:fc:17:d7:7c:ea:51:12:70:30: 65:8b:52:5f:a2:2b:d1:18:70:eb:5a:2e:f8:c9:7e: 9d:e4:19:81:10:e7:31:b0:43:97:af:07:67:cb:46: a5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:87:09:D6:1B:F9:99:52:EC:F2:ED:13:80:AF:50:C2:A8:BF:95:F1 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:86:a9:08:ab:dc:cd:0f:96:17:44:cf:4c:b8:07:c4:cc:92: 89:1a:40:ad:50:3a:8b:74:82:b1:5c:49:f3:7c:4c:f6:74:35: 89:eb:7b:53:bc:2c:71:f8:fc:e1:aa:a7:6f:8b:4f:80:af:1c: 2f:70:ff:c2:25:88:db:44:cb:24:84:82:3c:76:be:b2:4a:f4: c1:41:58:b3:91:46:5d:35:eb:41:d7:72:21:df:72:94:e8:ad: a8:34:a6:9b:18:2e:70:ee:ae:db:38:3a:1d:8b:64:ef:7f:b5: a6:90:8a:f2:5a:97:0b:9d:54:2a:3b:4a:97:ea:08:a2:b2:db: d2:e2:5e:fe:64:8d:39:53:ea:ed:93:b9:c0:25:62:f5:57:f9: 4c:2c:5a:29:03:64:01:c4:25:bd:40:07:8d:2f:ed:42:fc:5c: 0c:c0:aa:1d:f7:66:bc:e7:da:d2:70:a6:8f:ce:3e:5e:8b:22: 59:9f:78:6e:83:e0:16:da:49:50:39:be:df:ed:8e:4f:25:25: df:7a:48:06:de:4c:6e:98:cb:73:e1:cb:46:9f:aa:46:2d:fd: f1:94:c9:3a:68:95:69:1d:3e:a3:5a:0b:f7:24:78:98:2e:db: ef:0d:b6:a2:b8:2e:b0:65:16:78:7a:b0:18:0d:7d:f7:79:6e: ac:a9:7d:c4 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTE3MDI1MDEwWhcNMjYwMTI0MDI1MDEwWjAYMRYwFAYD VQQDDA02OTZhZjhlMy1mOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7826vDq4d1/d4ePRLwdouEyc2EEbjql3zBtcvP6DfaGGcSPao4QU6tgzh4Sm b+kaUnybA0IQcROLPCmyHrFC4RJBuF7aPErNH3rJ3+muorSAQhuVZMPCHLTgVC4w JzdPzEG4OlGvZp8Vw8fKXx9NX0yBycInvXdKEgtcfskpR23wC1C/1o2CJdFWyDeq lmsOSF87q3Wt8UdrKq9T9vNL1vnmli0nR16q/qaRMT/5/ywkjwRC/sbz3LzEDrqD EXwZZ3v3XrI7UPuD61qg7OGCOIFLIWgf8Av8F9d86lEScDBli1JfoivRGHDrWi74 yX6d5BmBEOcxsEOXrwdny0alZQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFAGHCdYb +ZlS7PLtE4CvUMKov5XxMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCNhqkIq9zND5YXRM9MuAfEzJKJGkCtUDqL dIKxXEnzfEz2dDWJ63tTvCxx+Pzhqqdvi0+ArxwvcP/CJYjbRMskhII8dr6ySvTB QVizkUZdNetB13Ih33KU6K2oNKabGC5w7q7bODodi2Tvf7WmkIryWpcLnVQqO0qX 6giistvS4l7+ZI05U+rtk7nAJWL1V/lMLFopA2QBxCW9QAeNL+1C/FwMwKod92a8 59rScKaPzj5eiyJZn3hug+AW2klQOb7f7Y5PJSXfekgG3kxumMtz4ctGn6pGLf3x lMk6aJVpHT6jWgv3JHiYLtvvDbaiuC6wZRZ4erAYDX33eW6sqX3E -----END CERTIFICATE-----Generated at Sat Jan 17 07:34:10 2026 by rpki-client