This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: t3KRJF9IqLjWg06j7CxI1oFITErjKpVkJMBp4C4BMl0= Subject key identifier: E4:01:8C:08:E1:93:35:35:3A:E8:73:87:A5:1A:AA:23:D3:21:64:4B Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49FB Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4949 Signing time: Sat 31 Jan 2026 14:50:11 +0000 Manifest this update: Sat 31 Jan 2026 14:50:11 +0000 Manifest next update: Sat 07 Feb 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: iEz8F8MdtW0vm3fPBatSYGBxZauy76TJpA6MiQv2UIs=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Feb 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18939 (0x49fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 31 14:50:11 2026 GMT Not After : Feb 7 14:50:11 2026 GMT Subject: CN=697e16a3-7f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:76:2e:7b:5e:e4:e3:a7:4b:6f:06:66:35:05: 8a:42:89:07:e0:86:fb:5d:33:76:41:1c:7c:b3:9f: 86:c6:c7:94:78:4a:a5:e7:15:e4:99:78:e2:36:b4: 09:db:d7:85:d0:e7:fb:8d:39:70:19:ce:56:cc:88: 48:08:20:42:e0:4d:8c:b9:1c:9d:b0:98:b8:02:4f: 30:ed:bc:9e:6c:c6:fd:d8:7c:2f:1e:ba:ea:c1:b6: c9:6f:49:64:88:8f:90:95:d1:ac:c3:e8:ac:3e:b6: 6d:7f:f6:d2:17:26:aa:4b:7e:38:83:0a:79:06:91: 1a:7d:ae:11:63:c1:83:3d:56:93:b1:b9:64:02:f9: ec:f7:f4:5e:90:94:35:5a:32:99:32:a7:31:52:58: 1c:16:73:9b:b4:81:9d:66:88:6a:29:59:be:e6:dd: c2:14:23:b0:f3:c3:cc:62:a9:f0:0d:3a:a4:5b:32: 28:94:a2:40:60:51:ed:7b:70:9c:8c:2d:69:1e:f7: 1d:ba:cc:e3:cb:43:09:b3:82:44:61:18:ac:bc:25: 94:51:52:ab:7b:d9:4c:88:63:80:a6:42:3b:7a:82: 41:b9:66:dc:eb:a5:ac:75:cb:94:00:6b:e6:cd:ce: 9a:7b:c4:38:4c:66:7b:d0:5b:51:00:17:47:6c:5e: aa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:01:8C:08:E1:93:35:35:3A:E8:73:87:A5:1A:AA:23:D3:21:64:4B X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:3f:3f:6f:36:aa:be:49:2d:62:f2:b9:c9:f2:41:73:80:60: 2d:61:ea:20:fe:7b:75:f5:e2:da:4f:61:08:6c:d6:09:bf:28: 59:40:6c:c9:34:31:7c:cd:72:63:5b:76:5f:df:30:5c:e3:2f: 43:71:44:01:c6:8d:63:81:c9:48:8e:a6:cd:26:9e:41:ba:31: bd:70:84:25:9c:62:12:d6:ea:23:e7:d2:14:cf:cf:e8:c6:0f: 25:59:dd:f6:57:89:35:2e:9c:76:3a:02:25:4c:24:00:1b:1e: 24:56:84:d4:4e:bd:25:07:94:6b:53:0b:b9:e5:62:8f:89:ff: e9:52:c6:13:16:31:ed:5d:a4:ee:7c:78:ac:66:d9:30:46:28: 73:4e:cb:67:a8:0e:60:98:01:e5:5c:20:d9:0f:55:64:ea:a8: bb:7c:c7:60:14:bc:57:35:92:09:a4:87:40:05:b4:fd:20:db: 6e:d3:80:a4:58:7b:2a:fb:1d:a7:e1:2c:de:2d:3b:7b:c7:1c: ae:4c:27:8c:56:23:19:ce:07:2a:5f:3e:eb:cc:06:de:b9:72: 19:70:1f:22:d9:60:b3:4e:eb:1c:2d:7f:a6:98:0b:5f:93:9a: 2c:de:0e:6c:e0:95:e5:76:73:6e:33:0f:b0:c7:91:f4:7c:69: b4:be:66:42 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTMxMTQ1MDExWhcNMjYwMjA3MTQ1MDExWjAYMRYwFAYD VQQDDA02OTdlMTZhMy03ZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXYue17k46dLbwZmNQWKQokH4Ib7XTN2QRx8s5+GxseUeEql5xXkmXjiNrQJ 29eF0Of7jTlwGc5WzIhICCBC4E2MuRydsJi4Ak8w7byebMb92HwvHrrqwbbJb0lk iI+QldGsw+isPrZtf/bSFyaqS344gwp5BpEafa4RY8GDPVaTsblkAvns9/RekJQ1 WjKZMqcxUlgcFnObtIGdZohqKVm+5t3CFCOw88PMYqnwDTqkWzIolKJAYFHte3Cc jC1pHvcduszjy0MJs4JEYRisvCWUUVKre9lMiGOApkI7eoJBuWbc66WsdcuUAGvm zc6ae8Q4TGZ70FtRABdHbF6qgQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFOQBjAjh kzU1Ouhzh6UaqiPTIWRLMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQADPz9vNqq+SS1i8rnJ8kFzgGAtYeog/nt1 9eLaT2EIbNYJvyhZQGzJNDF8zXJjW3Zf3zBc4y9DcUQBxo1jgclIjqbNJp5BujG9 cIQlnGIS1uoj59IUz8/oxg8lWd32V4k1Lpx2OgIlTCQAGx4kVoTUTr0lB5RrUwu5 5WKPif/pUsYTFjHtXaTufHisZtkwRihzTstnqA5gmAHlXCDZD1Vk6qi7fMdgFLxX NZIJpIdABbT9INtu04CkWHsq+x2n4SzeLTt7xxyuTCeMViMZzgcqXz7rzAbeuXIZ cB8i2WCzTuscLX+mmAtfk5os3g5s4JXldnNuMw+wx5H0fGm0vmZC -----END CERTIFICATE-----Generated at Sun Feb 1 03:48:01 2026 by rpki-client