This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: c1jJw2pZJRrihkTls/8Odq9yWDxpiqzRKj0iDoTG9jQ= Subject key identifier: 85:10:9D:03:1B:4D:5F:A8:C9:C7:1B:2D:D8:68:7F:81:75:D1:35:F0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A16 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4964 Signing time: Mon 09 Feb 2026 14:50:10 +0000 Manifest this update: Mon 09 Feb 2026 14:50:10 +0000 Manifest next update: Mon 16 Feb 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 96NCIooCjNdBoHNa0YTNpRs78hvdCeOKxb3aXeAwSMU=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Feb 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18966 (0x4a16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 9 14:50:10 2026 GMT Not After : Feb 16 14:50:10 2026 GMT Subject: CN=6989f422-f3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:f0:2a:7b:75:de:25:fc:b9:0e:6e:a4:45: 2e:ba:98:76:c7:69:28:55:64:e3:b5:4d:15:e4:02: f8:aa:d1:71:0e:53:57:6c:09:31:66:f6:bc:5f:0f: 39:40:22:1d:38:85:0d:2e:8d:92:47:fa:71:47:9b: 59:da:8f:57:0e:05:a4:b0:8d:e1:9d:34:b7:31:78: 4b:96:9f:0d:fc:0f:0f:1e:e3:5b:94:dc:57:0f:c5: ae:96:c6:04:91:1d:7c:e6:a5:f7:39:db:04:e9:2f: 4c:93:b6:97:fa:99:9c:89:a9:17:37:91:b7:6b:78: a1:0a:7c:bd:61:d4:85:b9:08:7a:07:be:91:5d:4f: 5e:03:f5:a6:ac:56:d9:5a:54:b7:c8:c3:b2:a3:a5: 4e:f2:be:a3:83:c2:6c:00:73:fb:dd:5d:cb:2d:93: 93:1e:2d:94:c8:38:10:80:e8:f0:1b:ae:b4:ae:b9: 38:5f:60:85:9a:1e:8b:11:b5:72:86:97:9e:92:35: f2:61:c1:28:ef:5a:ca:09:3a:22:6e:53:95:a5:03: d6:64:b5:e0:2b:63:9f:66:bb:9e:fa:52:8d:4d:eb: df:4a:78:39:2e:bd:f7:8b:b9:dd:88:f9:c4:d7:8e: bf:8f:c0:ee:91:d7:03:db:58:c9:f5:1d:3a:5f:59: 81:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:10:9D:03:1B:4D:5F:A8:C9:C7:1B:2D:D8:68:7F:81:75:D1:35:F0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2e:27:1e:f5:e0:a1:36:5f:01:96:74:c8:e7:62:66:0f:87: 1a:1d:84:64:85:3a:09:07:e6:d6:8c:19:56:95:94:fe:36:53: 12:08:b7:26:34:15:86:c3:85:ba:81:23:ef:60:2d:95:f7:58: 27:61:57:5d:1a:13:c0:ee:93:af:c1:ee:fa:2d:db:50:45:4f: 4c:b4:0a:d9:2c:7f:52:a6:6d:2b:5d:b5:fb:b4:f0:3a:fe:0f: be:0c:54:92:80:a9:83:2d:83:b1:2c:84:09:5d:67:b2:cf:35: b9:3a:b7:11:97:2b:30:03:fb:3f:d8:21:07:5e:91:b1:e3:7a: cd:1c:64:03:14:3e:76:ba:95:8f:69:2a:62:f6:3e:6a:b2:00: 32:f6:9b:82:28:98:ee:b7:c2:c1:95:f3:95:bf:97:1e:c9:76: aa:8d:5b:c7:4f:3b:f6:75:ad:b9:29:80:37:f5:5e:cb:ce:43: e0:e0:91:71:06:b3:e9:b4:97:75:7e:94:f4:0e:1b:df:1f:69: a8:c2:b6:9a:4d:56:ce:b1:d7:b1:49:b0:cc:7b:ec:99:64:9e: a2:2a:2a:24:7e:6e:a2:d9:42:6c:e6:fc:1b:fb:d1:e7:a9:75: 95:40:c0:44:d8:1b:70:05:76:f7:b0:f3:bf:15:30:80:0a:ac: 09:a3:9b:f9 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICShYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjA5MTQ1MDEwWhcNMjYwMjE2MTQ1MDEwWjAYMRYwFAYD VQQDDA02OTg5ZjQyMi1mM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+TwKnt13iX8uQ5upEUuuph2x2koVWTjtU0V5AL4qtFxDlNXbAkxZva8Xw85 QCIdOIUNLo2SR/pxR5tZ2o9XDgWksI3hnTS3MXhLlp8N/A8PHuNblNxXD8WulsYE kR185qX3OdsE6S9Mk7aX+pmciakXN5G3a3ihCny9YdSFuQh6B76RXU9eA/WmrFbZ WlS3yMOyo6VO8r6jg8JsAHP73V3LLZOTHi2UyDgQgOjwG660rrk4X2CFmh6LEbVy hpeekjXyYcEo71rKCToiblOVpQPWZLXgK2OfZrue+lKNTevfSng5Lr33i7ndiPnE 146/j8DukdcD21jJ9R06X1mB3QIDAQABo4IChzCCAoMwHQYDVR0OBBYEFIUQnQMb TV+oyccbLdhof4F10TXwMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA+Lice9eChNl8BlnTI52JmD4caHYRkhToJ B+bWjBlWlZT+NlMSCLcmNBWGw4W6gSPvYC2V91gnYVddGhPA7pOvwe76LdtQRU9M tArZLH9Spm0rXbX7tPA6/g++DFSSgKmDLYOxLIQJXWeyzzW5OrcRlyswA/s/2CEH XpGx43rNHGQDFD52upWPaSpi9j5qsgAy9puCKJjut8LBlfOVv5ceyXaqjVvHTzv2 da25KYA39V7LzkPg4JFxBrPptJd1fpT0DhvfH2mowraaTVbOsdexSbDMe+yZZJ6i Kiokfm6i2UJs5vwb+9HnqXWVQMBE2BtwBXb3sPO/FTCACqwJo5v5 -----END CERTIFICATE-----Generated at Tue Feb 10 02:25:39 2026 by rpki-client