This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 7i0lRFlFFMVpa7+USYUIaWjYlrkwwd1ENfMbeafeIzQ= Subject key identifier: 71:EB:67:6B:70:85:D7:1D:6E:F7:86:B3:C1:53:1A:08:11:29:4A:80 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49FE Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 494C Signing time: Sun 01 Feb 2026 15:03:51 +0000 Manifest this update: Sun 01 Feb 2026 15:03:51 +0000 Manifest next update: Sun 08 Feb 2026 15:03:51 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: oRt+mvupMl+HAPRtk+y7RoLhAB9cDj+wiyPPro7GQf4=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Feb 2026 15:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18942 (0x49fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 1 15:03:51 2026 GMT Not After : Feb 8 15:03:51 2026 GMT Subject: CN=697f6b57-7dc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:69:93:4b:64:fb:d7:bb:8a:8e:83:ad:20:59: d0:9a:2f:8b:c8:8c:33:04:0c:f9:17:77:55:98:08: 7c:7d:21:96:0a:b1:6f:86:96:1b:0d:10:d1:93:09: c6:cc:14:aa:24:00:78:6f:83:28:42:16:0e:6d:0d: 49:b6:0f:62:85:9a:bf:af:d7:43:0b:9d:ed:6c:02: b3:8a:7c:8c:4a:24:91:b6:cc:94:df:db:fa:0f:a9: 02:25:3a:67:93:87:23:ea:ba:d9:d8:24:0a:91:19: 67:9b:d5:7d:f0:22:5e:37:4d:d3:33:f8:55:70:14: 87:c8:cf:54:34:7b:71:b6:16:9e:97:3c:f6:19:8b: 2b:e7:86:5c:31:a3:d3:aa:8a:be:ed:05:c7:56:fb: 4c:cf:c8:65:06:23:62:59:db:30:88:89:f9:5b:0a: ee:29:d1:02:f2:c9:fc:a6:c0:32:ea:a4:67:12:5e: c6:7f:30:03:20:97:ba:0e:98:af:d8:6b:0b:b7:c3: 31:3b:d0:f4:37:bf:3e:c5:7a:f0:6f:75:46:f7:b6: bf:61:02:57:9d:cb:a3:25:60:89:f8:40:99:38:32: 22:70:fd:bd:b7:e6:3f:f6:dc:0a:b9:d1:b3:40:8f: b5:5d:36:50:27:d3:31:44:65:50:a3:02:2f:ea:24: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EB:67:6B:70:85:D7:1D:6E:F7:86:B3:C1:53:1A:08:11:29:4A:80 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ad:b9:96:e1:c5:d3:83:a6:9b:5c:e5:4f:ae:9f:27:45:ec: 0b:d0:a4:cf:ec:2e:09:e4:4f:e4:ee:ba:d7:ab:13:55:f5:97: 90:30:18:f8:96:e5:15:c4:12:af:a1:15:7a:ed:2e:de:8f:26: 3f:06:2d:ff:e1:ac:89:2d:7b:49:1a:2e:e3:72:00:09:7a:b7: 85:e8:5a:6d:42:88:f8:2e:1a:3b:f4:c2:41:44:b7:ac:c0:d6: b1:35:ae:60:03:06:c0:1a:49:14:73:c7:8c:00:13:e4:20:ac: 04:2e:45:92:ca:fe:12:59:02:bc:60:af:9c:ee:ee:59:e1:53: 65:0d:a4:1d:57:c0:6e:da:0f:3f:64:f9:7e:39:48:8a:e1:01: 40:a1:72:b3:80:e9:19:0f:06:69:f2:00:70:2d:ff:29:9c:d2: 4d:f1:a1:bf:00:80:58:8a:08:be:f4:13:d2:8e:4d:06:c5:ad: e2:76:7c:7d:57:f2:64:20:d9:c4:f3:d9:f8:e5:e0:86:be:53: 8f:46:4d:e2:85:dc:e4:69:ff:87:73:3f:e1:c5:46:f0:98:0a: 97:3b:1b:a3:3f:f4:b8:fb:51:16:20:b0:ff:56:e2:93:9e:17: 0a:3b:6a:a9:c9:c3:80:0c:67:53:ae:f8:ef:ed:7c:dc:9e:75: 67:40:34:6e -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjAxMTUwMzUxWhcNMjYwMjA4MTUwMzUxWjAYMRYwFAYD VQQDDA02OTdmNmI1Ny03ZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mmTS2T717uKjoOtIFnQmi+LyIwzBAz5F3dVmAh8fSGWCrFvhpYbDRDRkwnG zBSqJAB4b4MoQhYObQ1Jtg9ihZq/r9dDC53tbAKzinyMSiSRtsyU39v6D6kCJTpn k4cj6rrZ2CQKkRlnm9V98CJeN03TM/hVcBSHyM9UNHtxthaelzz2GYsr54ZcMaPT qoq+7QXHVvtMz8hlBiNiWdswiIn5WwruKdEC8sn8psAy6qRnEl7GfzADIJe6Dpiv 2GsLt8MxO9D0N78+xXrwb3VG97a/YQJXncujJWCJ+ECZODIicP29t+Y/9twKudGz QI+1XTZQJ9MxRGVQowIv6iRuqwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFHHrZ2tw hdcdbveGs8FTGggRKUqAMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQArrbmW4cXTg6abXOVPrp8nRewL0KTP7C4J 5E/k7rrXqxNV9ZeQMBj4luUVxBKvoRV67S7ejyY/Bi3/4ayJLXtJGi7jcgAJereF 6FptQoj4Lho79MJBRLeswNaxNa5gAwbAGkkUc8eMABPkIKwELkWSyv4SWQK8YK+c 7u5Z4VNlDaQdV8Bu2g8/ZPl+OUiK4QFAoXKzgOkZDwZp8gBwLf8pnNJN8aG/AIBY igi+9BPSjk0Gxa3idnx9V/JkINnE89n45eCGvlOPRk3ihdzkaf+Hcz/hxUbwmAqX OxujP/S4+1EWILD/VuKTnhcKO2qpycOADGdTrvjv7XzcnnVnQDRu -----END CERTIFICATE-----Generated at Sun Feb 1 22:49:30 2026 by rpki-client