This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: vqycTA6odYoP/yOvORmxXVDyIbwlrxGL9/lG3+3G8WE= Subject key identifier: D4:53:5A:8F:A4:7D:0A:17:E4:5C:84:3F:8F:8C:BC:71:70:0D:0E:07 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 492E Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 487D Signing time: Wed 26 Nov 2025 03:56:19 +0000 Manifest this update: Wed 26 Nov 2025 03:56:18 +0000 Manifest next update: Wed 03 Dec 2025 03:56:18 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: BTBsP8xkEpGLqtGiJIUJzQ9blvUPVaakoTvWr1ZFdJc=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Dec 2025 03:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18734 (0x492e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Nov 26 03:56:18 2025 GMT Not After : Dec 3 03:56:18 2025 GMT Subject: CN=69267a63-bf44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d9:fe:23:32:40:68:c8:b5:ee:c0:da:fb:71: 65:af:ca:7f:a7:f1:80:2e:b4:d4:76:09:51:a7:6f: 5d:ea:e6:49:4a:8b:e3:5f:8a:1a:9e:cb:92:97:29: d5:73:5f:b2:48:6c:ba:97:47:dd:ff:58:84:56:36: d3:b2:43:c7:eb:73:02:e7:72:4e:3d:df:06:0f:57: 01:83:bc:a4:ab:09:a9:c6:87:19:ee:08:93:d5:4a: 14:31:5e:e2:a2:e9:c2:19:5d:26:16:57:15:36:e4: 1e:cc:bc:aa:11:03:9a:f0:ac:a1:c8:7e:97:c9:b7: 06:66:a4:49:fe:d2:d2:6c:de:66:a2:a9:54:d3:b0: 0e:84:4d:d1:36:d8:2d:30:39:ab:de:1c:d0:18:06: 80:e5:4b:88:bf:13:07:5c:a5:e6:48:2c:9f:8c:20: 2b:ea:bb:a3:de:c0:84:cd:08:bb:d4:fb:e3:a3:17: 31:f5:8f:9e:d3:7a:d4:e2:d3:40:bf:20:38:e1:40: 10:30:07:43:46:4c:1a:21:f2:fe:8e:a4:94:f1:28: 49:37:b1:4b:dd:e7:3c:df:a3:f5:65:00:54:90:a0: 49:b8:0f:66:6b:6b:11:97:50:34:20:62:b5:d7:6d: 6b:10:9e:7f:03:0d:55:ee:be:19:37:1f:a2:25:64: 5f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:53:5A:8F:A4:7D:0A:17:E4:5C:84:3F:8F:8C:BC:71:70:0D:0E:07 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d6:d8:83:2d:66:b5:27:9d:7b:7e:ed:91:fa:5c:ef:b4:3d: db:c6:f5:87:01:70:4f:4f:2d:54:2d:e6:e8:89:22:ec:c5:ca: ea:52:47:1a:2f:0d:1b:1b:7f:6d:49:7e:7d:a2:2e:bb:7d:91: d6:24:cb:ef:e3:51:8d:af:8f:2d:d5:e2:d6:c1:96:0d:88:bb: 60:48:c4:57:a2:dd:55:a2:9d:89:d1:67:79:d5:28:e9:1b:98: da:78:9d:d8:9c:89:62:83:70:87:22:89:fe:2a:9d:0f:6e:b5: 24:57:df:d1:81:7b:20:14:91:57:4f:46:4b:0e:83:57:cd:d7: 02:c2:18:06:4d:6a:e2:14:f7:40:6a:bc:81:46:ab:69:6b:27: 5a:c8:02:a6:8a:1a:81:58:ae:4e:79:c7:12:32:e6:d3:97:12: 9d:39:57:e7:64:e6:f9:c7:d3:27:cb:1c:02:06:72:74:90:67: a2:1a:56:52:e7:22:95:6e:7b:6a:bc:68:40:de:48:fd:66:b3: b7:a1:e0:48:6c:a2:64:74:38:d9:7f:ec:f2:4c:9b:83:15:5e: d3:5a:b4:92:d8:eb:11:6e:e7:7e:0f:ab:c5:ff:72:02:20:78: b1:29:97:cb:40:86:87:01:00:51:73:41:35:35:6a:d6:ec:7e: f9:69:52:6f -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMTI2MDM1NjE4WhcNMjUxMjAzMDM1NjE4WjAYMRYwFAYD VQQDEw02OTI2N2E2My1iZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtn+IzJAaMi17sDa+3Flr8p/p/GALrTUdglRp29d6uZJSovjX4oansuSlynV c1+ySGy6l0fd/1iEVjbTskPH63MC53JOPd8GD1cBg7ykqwmpxocZ7giT1UoUMV7i ounCGV0mFlcVNuQezLyqEQOa8KyhyH6XybcGZqRJ/tLSbN5moqlU07AOhE3RNtgt MDmr3hzQGAaA5UuIvxMHXKXmSCyfjCAr6ruj3sCEzQi71Pvjoxcx9Y+e03rU4tNA vyA44UAQMAdDRkwaIfL+jqSU8ShJN7FL3ec836P1ZQBUkKBJuA9ma2sRl1A0IGK1 121rEJ5/Aw1V7r4ZNx+iJWRfcQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFNRTWo+k fQoX5FyEP4+MvHFwDQ4HMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBw1tiDLWa1J517fu2R+lzvtD3bxvWHAXBP Ty1ULeboiSLsxcrqUkcaLw0bG39tSX59oi67fZHWJMvv41GNr48t1eLWwZYNiLtg SMRXot1Vop2J0Wd51SjpG5jaeJ3YnIlig3CHIon+Kp0PbrUkV9/RgXsgFJFXT0ZL DoNXzdcCwhgGTWriFPdAaryBRqtpaydayAKmihqBWK5OeccSMubTlxKdOVfnZOb5 x9MnyxwCBnJ0kGeiGlZS5yKVbntqvGhA3kj9ZrO3oeBIbKJkdDjZf+zyTJuDFV7T WrSS2OsRbud+D6vF/3ICIHixKZfLQIaHAQBRc0E1NWrW7H75aVJv -----END CERTIFICATE-----Generated at Wed Nov 26 09:14:29 2025 by rpki-client