This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: AkoWwWavVjeU7Sz7fBQqoDaPt+g6eiEirq1qH57Y9W8= Subject key identifier: 57:A8:0F:B5:2C:18:13:09:63:4A:51:6B:11:2E:D1:C5:CE:14:27:54 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49F6 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4944 Signing time: Fri 30 Jan 2026 02:50:10 +0000 Manifest this update: Fri 30 Jan 2026 02:50:10 +0000 Manifest next update: Fri 06 Feb 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: HHdASCBt0bjUfQRlJP/0eM+32iWV7JMNNObOX4JhvCc=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Feb 2026 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18934 (0x49f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 30 02:50:10 2026 GMT Not After : Feb 6 02:50:10 2026 GMT Subject: CN=697c1c62-4240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fd:46:af:d9:b3:eb:f9:ab:93:10:9c:46:6a: 5b:a0:cd:21:6d:a6:21:e7:f6:6a:fb:bd:60:f1:b1: bc:a7:c6:61:8c:10:c3:65:cf:ba:f0:16:be:00:fd: 7a:ae:33:2a:05:74:b3:6f:4f:95:f2:20:fc:30:01: d1:b6:81:8b:ed:44:ad:de:81:16:0f:a9:9d:47:2a: ca:6b:41:bd:a7:2f:47:a9:e9:f6:af:93:0b:b9:b8: 82:08:88:e2:79:32:d1:c9:64:18:38:a5:40:52:95: 2d:16:4e:ba:20:b3:74:c2:22:7c:9e:4f:76:e8:4a: 1c:f4:27:9c:0d:19:4e:23:23:ca:64:8c:ca:91:db: ab:1f:76:57:bf:0a:48:4b:3c:8b:f5:8f:59:3d:fb: 5e:90:14:b3:2a:86:2d:16:ba:5f:79:f7:f3:a8:d5: 00:11:94:43:3b:47:59:fd:f1:8c:73:01:e7:e8:e0: 84:d0:ba:b2:0a:f0:11:61:52:78:de:dc:c8:35:bb: cb:58:50:a8:51:8d:98:3d:a9:3d:36:80:c4:e9:b1: df:80:93:ae:e3:0c:0f:2f:31:bf:6f:0e:2a:9f:78: bb:8c:c2:c5:59:3f:6c:fc:d9:0f:67:4a:89:da:6d: 87:c4:c8:94:8c:fd:c9:ee:31:de:01:a3:4e:91:4c: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A8:0F:B5:2C:18:13:09:63:4A:51:6B:11:2E:D1:C5:CE:14:27:54 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:1f:e7:fb:d2:af:63:d9:5a:b7:23:7b:da:e7:f6:f6:0d:95: 4a:4d:94:4a:e5:a8:4a:28:6c:be:1d:09:d3:a6:6e:92:8f:e9: 42:20:b4:2d:93:cf:d9:89:1a:68:3b:e1:e2:a1:97:b6:71:94: 85:f5:b1:ea:64:b5:29:1a:e4:ad:4b:f4:19:e2:c6:91:0c:97: a6:f2:7d:97:7c:ee:ab:50:3e:ea:c3:0e:f8:d1:a3:0d:10:d9: 09:bf:7c:db:de:a5:08:c4:98:2d:16:e2:d6:3f:ed:6f:90:1d: 16:80:cc:bc:2d:6b:ff:5d:84:89:bc:63:f2:37:60:48:fe:cd: 3b:67:69:56:dc:a1:1e:63:86:e0:78:84:8f:c0:93:0c:d3:ca: 3b:83:d8:f0:e2:e2:80:a5:0f:c5:ce:18:0c:d0:31:50:80:b4: 47:bb:fa:00:69:a8:8a:22:b0:1d:48:07:d9:09:b4:49:0d:7d: 1e:ae:8b:aa:1d:5e:f1:68:03:5b:17:b0:53:d8:b4:8c:6e:c0: a1:54:c4:5e:b9:f2:4a:db:df:8d:9a:e4:29:fe:4f:e8:3d:b7: 7f:b5:9b:70:ed:a7:ef:e5:37:5b:69:60:e4:3b:a6:0e:6b:86: ff:bc:5b:ce:1a:fe:46:b3:cb:9b:1a:04:c7:a8:49:a5:28:b1: b7:cd:02:e2 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTMwMDI1MDEwWhcNMjYwMjA2MDI1MDEwWjAYMRYwFAYD VQQDDA02OTdjMWM2Mi00MjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v1Gr9mz6/mrkxCcRmpboM0hbaYh5/Zq+71g8bG8p8ZhjBDDZc+68Ba+AP16 rjMqBXSzb0+V8iD8MAHRtoGL7USt3oEWD6mdRyrKa0G9py9Hqen2r5MLubiCCIji eTLRyWQYOKVAUpUtFk66ILN0wiJ8nk926Eoc9CecDRlOIyPKZIzKkdurH3ZXvwpI SzyL9Y9ZPftekBSzKoYtFrpfeffzqNUAEZRDO0dZ/fGMcwHn6OCE0LqyCvARYVJ4 3tzINbvLWFCoUY2YPak9NoDE6bHfgJOu4wwPLzG/bw4qn3i7jMLFWT9s/NkPZ0qJ 2m2HxMiUjP3J7jHeAaNOkUywawIDAQABo4IChzCCAoMwHQYDVR0OBBYEFFeoD7Us GBMJY0pRaxEu0cXOFCdUMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAJH+f70q9j2Vq3I3va5/b2DZVKTZRK5ahK KGy+HQnTpm6Sj+lCILQtk8/ZiRpoO+HioZe2cZSF9bHqZLUpGuStS/QZ4saRDJem 8n2XfO6rUD7qww740aMNENkJv3zb3qUIxJgtFuLWP+1vkB0WgMy8LWv/XYSJvGPy N2BI/s07Z2lW3KEeY4bgeISPwJMM08o7g9jw4uKApQ/FzhgM0DFQgLRHu/oAaaiK IrAdSAfZCbRJDX0erouqHV7xaANbF7BT2LSMbsChVMReufJK29+NmuQp/k/oPbd/ tZtw7afv5TdbaWDkO6YOa4b/vFvOGv5Gs8ubGgTHqEmlKLG3zQLi -----END CERTIFICATE-----Generated at Fri Jan 30 13:19:46 2026 by rpki-client