This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: sk6G5pxxeJ7yL4oPnBzUrMUKbCo0sLlLEG1JNuH7vBA= Subject key identifier: C0:0B:38:11:8E:A5:60:31:C5:09:D0:65:82:2C:36:3D:D6:A7:52:49 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49CB Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4919 Signing time: Thu 15 Jan 2026 14:50:11 +0000 Manifest this update: Thu 15 Jan 2026 14:50:10 +0000 Manifest next update: Thu 22 Jan 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: m0qRSLjFfHiqu2YLPga/TqcajOom6ziJJepZmRt9erk=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18891 (0x49cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 15 14:50:10 2026 GMT Not After : Jan 22 14:50:10 2026 GMT Subject: CN=6968fea3-87e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:51:c3:84:07:fb:bd:94:ab:06:71:20:89:10: 0f:c6:bb:21:2e:af:33:95:40:ed:01:45:10:91:d0: fa:3c:01:61:a8:ae:d5:6c:6f:47:28:cd:d2:b6:06: f7:5b:4d:83:22:49:ac:84:ac:f8:cb:65:04:1a:80: 63:3e:20:54:6f:fb:92:7f:f0:43:e5:c0:e3:9b:5e: f3:bd:d8:a9:53:b1:80:16:94:12:7b:3e:5e:42:2e: 4a:c7:64:47:75:ae:2a:74:fe:0d:f1:9f:f6:1e:4c: 64:d3:02:b9:9e:2d:5c:3b:9d:80:e7:17:c4:f1:6c: 66:83:66:ce:2e:27:fa:aa:48:9d:5e:33:b0:4c:c3: 0f:97:5f:13:9b:a7:ef:44:4c:7d:89:74:77:1b:fa: f7:ae:07:75:cb:7b:69:fb:e0:18:00:33:c4:24:34: fe:9d:26:99:b6:eb:94:ed:00:14:f0:10:50:bc:61: f3:84:cc:c4:b0:a7:c2:2f:d0:5f:9f:74:f2:c3:86: f6:b1:2c:11:76:58:b3:24:a8:42:bf:8d:0a:68:0b: 5b:3d:34:64:a8:2b:c5:77:4b:f2:dc:c7:eb:ec:0a: 9b:3c:30:f9:61:c4:44:f8:df:a5:c4:42:6f:77:67: f4:03:49:22:13:1d:a3:0a:a1:79:cf:b6:f5:24:0e: cd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0B:38:11:8E:A5:60:31:C5:09:D0:65:82:2C:36:3D:D6:A7:52:49 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:77:19:79:d9:35:78:88:74:23:73:5c:c3:b6:d6:45:1a:4d: ef:5b:39:d7:89:c3:0c:8e:b3:ef:05:19:da:e6:9f:97:3a:57: e1:34:f6:a9:0b:2e:5a:4e:80:ed:f7:8a:d5:61:c0:57:22:d0: d5:67:60:9c:19:cf:47:47:78:1c:54:26:16:50:cb:76:d8:46: be:f0:cc:46:ac:c6:62:99:2f:08:22:59:32:74:26:ac:75:b1: 43:20:8c:ad:3b:bc:6a:9e:6a:93:75:a4:49:83:73:35:23:b7: 88:9f:63:62:8f:29:ef:e0:3d:7d:5f:68:e1:a4:39:fe:61:60: 8e:ce:56:9e:95:13:57:38:3a:7e:50:ad:b1:ca:b0:f7:b2:8a: 9f:dc:4a:50:00:cc:eb:0e:08:a6:ba:93:2f:88:f9:76:dc:36: 8d:66:aa:73:a5:12:d5:91:2b:e9:25:19:2c:59:0e:7c:d5:40: e0:65:20:52:d4:3f:e9:cb:f8:7a:72:dd:dc:45:d8:77:3b:12: eb:c5:80:60:0b:28:c7:fe:9b:87:4f:2b:87:7a:46:8c:1d:03: 1d:50:51:55:8e:c9:2c:4b:ec:aa:ef:15:5c:2c:5a:37:7e:b5: d3:5e:d8:8d:e3:d6:ea:b8:1d:18:ab:d8:d3:4c:7b:c3:0a:d2: 55:80:8d:80 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICScswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTE1MTQ1MDEwWhcNMjYwMTIyMTQ1MDEwWjAYMRYwFAYD VQQDDA02OTY4ZmVhMy04N2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFHDhAf7vZSrBnEgiRAPxrshLq8zlUDtAUUQkdD6PAFhqK7VbG9HKM3Stgb3 W02DIkmshKz4y2UEGoBjPiBUb/uSf/BD5cDjm17zvdipU7GAFpQSez5eQi5Kx2RH da4qdP4N8Z/2Hkxk0wK5ni1cO52A5xfE8Wxmg2bOLif6qkidXjOwTMMPl18Tm6fv REx9iXR3G/r3rgd1y3tp++AYADPEJDT+nSaZtuuU7QAU8BBQvGHzhMzEsKfCL9Bf n3Tyw4b2sSwRdlizJKhCv40KaAtbPTRkqCvFd0vy3Mfr7AqbPDD5YcRE+N+lxEJv d2f0A0kiEx2jCqF5z7b1JA7NmwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFMALOBGO pWAxxQnQZYIsNj3Wp1JJMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBGdxl52TV4iHQjc1zDttZFGk3vWznXicMM jrPvBRna5p+XOlfhNPapCy5aToDt94rVYcBXItDVZ2CcGc9HR3gcVCYWUMt22Ea+ 8MxGrMZimS8IIlkydCasdbFDIIytO7xqnmqTdaRJg3M1I7eIn2Nijynv4D19X2jh pDn+YWCOzlaelRNXODp+UK2xyrD3soqf3EpQAMzrDgimupMviPl23DaNZqpzpRLV kSvpJRksWQ581UDgZSBS1D/py/h6ct3cRdh3OxLrxYBgCyjH/puHTyuHekaMHQMd UFFVjsksS+yq7xVcLFo3frXTXtiN49bquB0Yq9jTTHvDCtJVgI2A -----END CERTIFICATE-----Generated at Thu Jan 15 17:08:16 2026 by rpki-client