This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: NcOg61yyRb8qZdgXdmBgGVEQ3n3aEs5Bdsedg8fUYtA= Subject key identifier: DC:C7:12:F2:B5:02:0B:BC:1A:A3:96:A5:1A:D7:DB:0C:DD:B7:68:4C Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A07 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4955 Signing time: Wed 04 Feb 2026 14:50:11 +0000 Manifest this update: Wed 04 Feb 2026 14:50:10 +0000 Manifest next update: Wed 11 Feb 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: i10eP9fHvnOOLphwoHmIBJeCNzd1iJuZxbT0rUH8yys=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Feb 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18951 (0x4a07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 4 14:50:10 2026 GMT Not After : Feb 11 14:50:10 2026 GMT Subject: CN=69835ca3-f7d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:37:da:aa:e8:25:2f:7e:f7:c2:20:fd:68:88: 1b:bd:34:91:a4:ce:59:0c:12:ec:e8:f9:fd:bd:90: bf:ee:fa:68:40:4e:c9:7c:c9:31:36:ce:b6:99:2f: 48:8b:bf:88:70:0a:55:aa:9b:5f:71:e5:3b:2a:4a: cd:fe:d2:3b:a4:b8:cd:6d:59:a9:3e:14:01:14:7f: cc:89:f5:7c:37:85:7b:b7:2f:6e:d0:9e:c6:6a:ad: 1f:14:b7:9e:55:84:a6:45:81:23:0e:9b:72:61:71: 2b:cf:34:a9:86:7d:59:b2:83:b5:38:a3:d8:5d:f9: 13:17:9b:40:b5:33:a0:ee:4c:9c:82:25:bc:3d:b7: e0:bb:87:dd:7e:65:b1:d6:be:f8:ce:fe:d1:28:7c: 89:cf:8b:3e:f2:d6:f4:e4:d8:17:18:5f:0d:c2:8c: 62:d7:42:41:4c:4e:a0:96:67:cb:40:27:17:75:38: b4:17:b8:99:bb:49:bb:2b:3c:68:f3:75:4c:67:57: f4:89:c7:4b:ad:e1:f4:f3:af:dc:a0:7d:d5:86:32: 0b:48:39:1e:8a:13:8f:90:99:ea:e5:43:21:22:a4: 00:da:ea:4c:cd:d7:c6:ce:f9:29:26:61:1b:09:cf: 58:8a:71:39:93:ff:34:f2:a9:d9:75:ef:7c:a3:bd: 6a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C7:12:F2:B5:02:0B:BC:1A:A3:96:A5:1A:D7:DB:0C:DD:B7:68:4C X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d7:c5:59:47:3d:ef:b6:66:b2:1f:a2:5d:46:bb:5d:33:19: 84:fc:cd:ee:b4:fe:a4:87:6b:58:2e:5d:75:d2:21:c8:84:76: c8:de:d6:9b:b5:a4:73:be:e3:7e:75:99:90:33:ef:10:89:4d: 88:ef:5f:ec:59:c5:86:40:1d:a9:d3:bf:4f:14:51:3a:ca:d4: 55:52:f8:d9:6c:bb:5c:1c:22:24:d8:3f:18:0c:a1:d5:28:56: 6c:ef:ed:0b:8f:f8:af:ef:b3:0e:af:8a:0e:d9:00:ae:c0:b7: a3:f0:93:74:98:06:0f:19:0d:b2:57:27:5e:92:f1:54:60:ef: 2a:ad:f0:45:6a:19:16:2b:f4:35:c6:10:93:fe:df:32:e5:03: 36:60:e4:b0:9d:03:23:c4:1f:03:30:40:ce:5f:10:bc:af:96: 0a:a2:f1:72:a0:49:50:d7:50:4c:76:04:23:b3:c8:b5:b7:e5: cd:b4:bf:54:46:a0:79:0e:19:74:c0:9e:cd:e4:a6:8d:db:43: e1:17:dd:06:fb:33:39:ab:45:59:0d:20:41:00:cd:b6:c5:cb: 45:42:15:88:56:12:c8:d1:d2:01:dc:f8:93:ec:07:de:f0:72: 05:1d:96:d5:90:c7:96:0a:84:04:f6:ea:9c:53:2d:7c:35:05: 9d:cc:59:73 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjA0MTQ1MDEwWhcNMjYwMjExMTQ1MDEwWjAYMRYwFAYD VQQDDA02OTgzNWNhMy1mN2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jfaquglL373wiD9aIgbvTSRpM5ZDBLs6Pn9vZC/7vpoQE7JfMkxNs62mS9I i7+IcApVqptfceU7KkrN/tI7pLjNbVmpPhQBFH/MifV8N4V7ty9u0J7Gaq0fFLee VYSmRYEjDptyYXErzzSphn1ZsoO1OKPYXfkTF5tAtTOg7kycgiW8Pbfgu4fdfmWx 1r74zv7RKHyJz4s+8tb05NgXGF8Nwoxi10JBTE6glmfLQCcXdTi0F7iZu0m7Kzxo 83VMZ1f0icdLreH086/coH3VhjILSDkeihOPkJnq5UMhIqQA2upMzdfGzvkpJmEb Cc9YinE5k/808qnZde98o71q2QIDAQABo4IChzCCAoMwHQYDVR0OBBYEFNzHEvK1 Agu8GqOWpRrX2wzdt2hMMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCd18VZRz3vtmayH6JdRrtdMxmE/M3utP6k h2tYLl110iHIhHbI3tabtaRzvuN+dZmQM+8QiU2I71/sWcWGQB2p079PFFE6ytRV UvjZbLtcHCIk2D8YDKHVKFZs7+0Lj/iv77MOr4oO2QCuwLej8JN0mAYPGQ2yVyde kvFUYO8qrfBFahkWK/Q1xhCT/t8y5QM2YOSwnQMjxB8DMEDOXxC8r5YKovFyoElQ 11BMdgQjs8i1t+XNtL9URqB5Dhl0wJ7N5KaN20PhF90G+zM5q0VZDSBBAM22xctF QhWIVhLI0dIB3PiT7Afe8HIFHZbVkMeWCoQE9uqcUy18NQWdzFlz -----END CERTIFICATE-----Generated at Wed Feb 4 23:26:27 2026 by rpki-client