This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Hueeyva3Bn6nphP3pjH7VxjWV2BYsUbpf33yVPAFeS4= Subject key identifier: 84:B9:4B:1A:54:C5:A5:C0:DA:F6:AC:65:10:6A:B3:49:54:56:2D:C4 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4976 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 48C4 Signing time: Thu 18 Dec 2025 02:50:10 +0000 Manifest this update: Thu 18 Dec 2025 02:50:10 +0000 Manifest next update: Thu 25 Dec 2025 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: JCekQJb4gmlijl5sNx2fsHc2F0T0WT1WOGjraYrzyT4=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18806 (0x4976) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 18 02:50:10 2025 GMT Not After : Dec 25 02:50:10 2025 GMT Subject: CN=69436be2-e888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b1:85:34:45:40:8d:fd:de:76:98:79:b1:fd: 39:5c:5c:4d:b6:7f:ac:5c:e4:2e:ba:e5:ac:25:30: a9:a3:d1:64:a8:9e:7d:79:c9:fc:17:81:38:c2:65: 30:b8:1e:26:4a:22:44:b1:82:fa:a1:35:70:5b:72: 24:1d:b5:7a:28:2b:b5:fb:aa:b2:cb:17:74:30:37: 2c:b1:1c:a8:4e:2f:04:bd:8e:0d:03:fb:bb:a1:da: f7:6a:6f:98:0a:12:37:fe:9f:32:5f:54:9c:ef:46: e0:ec:f0:a4:66:f0:0c:34:83:a4:d4:c5:2e:28:49: 03:7d:84:77:0b:81:7e:a9:c2:be:32:97:93:1a:11: 34:53:80:ad:8d:52:28:d4:a6:09:2b:a3:90:50:10: 7e:ed:67:62:7c:08:2d:3c:a9:f9:84:81:96:99:29: ed:03:9e:01:19:66:e4:9a:83:06:ba:a4:25:8a:48: 85:a3:7c:96:09:1d:28:c4:c5:7c:19:9f:a5:62:9b: 0f:05:ba:62:39:10:25:da:06:74:e9:61:fa:2b:27: f1:89:a9:6a:a0:3f:ad:77:6a:ae:0a:2c:46:b4:31: bb:7f:ed:0d:2a:7f:68:dc:fd:63:b0:7b:7d:d1:c3: e0:90:86:8b:4a:85:da:d1:5d:1c:61:f2:fe:4d:7e: 3e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B9:4B:1A:54:C5:A5:C0:DA:F6:AC:65:10:6A:B3:49:54:56:2D:C4 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:32:f4:fb:d7:e5:b1:cb:89:ec:81:36:4f:53:18:50:a4:20: 40:10:4a:d4:5c:7f:7a:54:04:a0:9a:a0:09:18:3a:0d:d2:51: 34:5d:e0:90:b4:84:d8:d9:a0:32:6f:e4:a2:2c:27:1d:33:f2: f5:01:00:d7:6d:62:d6:02:14:e8:5f:a8:b6:96:24:6d:ab:f4: af:63:04:79:97:9d:ca:42:9d:fe:a3:d3:6d:bd:2a:2e:dc:e2: 21:1a:85:6e:7e:99:3e:68:84:71:7a:39:42:ab:31:f8:e2:a2: 13:69:38:cb:80:23:b8:7c:26:cc:4b:af:75:11:57:2d:87:50: 69:3f:5d:b1:98:95:f2:e3:be:14:f4:a1:4a:36:5f:94:b6:9d: 05:ac:f5:4a:48:4f:e2:ee:80:ce:f6:b3:b7:3f:60:70:76:d5: 1b:19:fe:98:ee:a0:ae:29:3d:55:2e:f6:00:23:7c:e4:9e:4b: 89:88:cf:62:e8:a6:81:d3:b5:28:89:17:a4:eb:e1:46:d3:ea: a0:9f:d2:26:09:af:13:9a:1c:22:01:d7:11:75:cc:da:b3:d2: 12:c7:6d:41:a9:ee:d4:4b:1f:e2:98:b0:06:d6:ab:ff:16:d0: 37:d9:7a:cb:1b:56:b8:95:da:d5:3e:3b:25:f2:88:1c:b7:c4: 1b:62:a1:76 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjE4MDI1MDEwWhcNMjUxMjI1MDI1MDEwWjAYMRYwFAYD VQQDDA02OTQzNmJlMi1lODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbGFNEVAjf3edph5sf05XFxNtn+sXOQuuuWsJTCpo9FkqJ59ecn8F4E4wmUw uB4mSiJEsYL6oTVwW3IkHbV6KCu1+6qyyxd0MDcssRyoTi8EvY4NA/u7odr3am+Y ChI3/p8yX1Sc70bg7PCkZvAMNIOk1MUuKEkDfYR3C4F+qcK+MpeTGhE0U4CtjVIo 1KYJK6OQUBB+7WdifAgtPKn5hIGWmSntA54BGWbkmoMGuqQlikiFo3yWCR0oxMV8 GZ+lYpsPBbpiORAl2gZ06WH6KyfxialqoD+td2quCixGtDG7f+0NKn9o3P1jsHt9 0cPgkIaLSoXa0V0cYfL+TX4+iQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFIS5SxpU xaXA2vasZRBqs0lUVi3EMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA7MvT71+Wxy4nsgTZPUxhQpCBAEErUXH96 VASgmqAJGDoN0lE0XeCQtITY2aAyb+SiLCcdM/L1AQDXbWLWAhToX6i2liRtq/Sv YwR5l53KQp3+o9NtvSou3OIhGoVufpk+aIRxejlCqzH44qITaTjLgCO4fCbMS691 EVcth1BpP12xmJXy474U9KFKNl+Utp0FrPVKSE/i7oDO9rO3P2BwdtUbGf6Y7qCu KT1VLvYAI3zknkuJiM9i6KaB07UoiRek6+FG0+qgn9ImCa8TmhwiAdcRdczas9IS x21Bqe7USx/imLAG1qv/FtA32XrLG1a4ldrVPjsl8ogct8QbYqF2 -----END CERTIFICATE-----Generated at Thu Dec 18 17:34:41 2025 by rpki-client