This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: FX4xj7Ga9Xe9ebhOmEfGOq11wfinP6+IBa1TdUig68M= Subject key identifier: 51:48:FE:C5:FF:39:83:06:11:31:FE:3A:D7:49:F8:46:62:F5:45:25 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49F3 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4941 Signing time: Thu 29 Jan 2026 02:50:11 +0000 Manifest this update: Thu 29 Jan 2026 02:50:11 +0000 Manifest next update: Thu 05 Feb 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ZDdsDRpPd3UVITrWKhHUxpleyPiP8KZ5J1JhVQJ0d9I=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18931 (0x49f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 29 02:50:11 2026 GMT Not After : Feb 5 02:50:11 2026 GMT Subject: CN=697acae3-05e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e8:2e:81:19:2e:a5:15:1d:78:11:7c:91:57: 7b:a3:42:72:df:83:44:29:ac:f0:b6:fd:73:18:3f: 4b:a0:3c:a8:a1:e5:fd:5e:e9:cc:5a:63:83:d1:b3: 2f:3d:72:87:70:0e:49:a5:88:a0:f6:b3:01:8b:e6: 30:d0:62:81:3d:5c:22:91:00:5b:8f:5e:11:be:cc: ce:f1:f0:e8:69:8b:ba:b5:12:c4:1b:39:5e:36:47: 75:47:25:18:24:b9:10:b4:e3:96:0c:c0:d2:e9:da: dc:7d:0b:35:ac:74:ab:57:f6:ea:e6:ee:71:01:9f: e7:3b:85:75:79:41:18:7a:8b:a2:b4:18:96:7f:7c: 59:5d:55:0c:ab:61:d7:92:08:cf:d3:89:0e:92:7a: 0f:6b:90:67:33:1a:45:f6:35:cb:1e:eb:93:79:a8: 82:10:97:12:b2:68:aa:2c:fb:3c:85:8d:dc:c9:88: ae:71:d4:7b:ef:0e:44:9f:f8:97:5a:e6:3f:61:a0: 8a:2e:af:07:35:07:a3:6f:3d:2b:a4:5f:21:20:fb: 5d:dc:29:3a:6e:a6:32:fa:08:72:72:db:c5:e7:25: 7f:00:b1:86:37:f6:39:87:0e:d8:54:ba:79:0d:20: 2d:33:de:91:47:07:e3:1c:cb:45:42:3c:c3:ba:20: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:48:FE:C5:FF:39:83:06:11:31:FE:3A:D7:49:F8:46:62:F5:45:25 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c2:6e:cc:12:9a:66:a2:9c:93:79:bf:31:41:d8:e0:f2:bb: de:f0:00:84:1e:ec:8d:73:9e:00:74:25:58:ce:c4:ac:6b:63: 21:5f:1e:ec:b8:3d:98:36:4d:39:30:05:0c:0f:f3:cc:d3:82: 65:d8:dc:c4:ed:ab:de:ff:f3:94:3a:f7:d5:0c:e8:7b:ca:e6: 07:e8:04:d5:6f:70:6b:06:80:42:36:a7:8c:fd:c4:32:ff:79: e7:02:d3:9d:bf:db:5d:59:da:a1:a8:e3:a1:a9:fa:19:1f:5c: 32:c8:74:3a:86:d9:c6:e4:b9:1b:e0:5e:96:73:9a:c8:b3:86: 04:82:e8:2b:ba:9e:af:87:f0:25:3a:dd:1c:ca:23:b4:0e:02: c5:57:40:f0:69:42:01:9b:18:b1:a4:14:aa:6b:63:7b:2d:71: d1:8a:d6:69:ac:19:7a:1e:c9:bd:e2:d2:83:da:26:01:df:b7: 44:fe:fc:7b:54:10:ea:94:5f:1d:41:ae:e4:3a:b8:4a:8a:21: 94:e6:28:94:23:aa:92:d1:2f:1d:1d:68:09:9b:42:71:65:f0: 67:3e:61:b9:11:95:ec:4b:45:38:04:0d:84:ba:9c:88:88:ba: 07:f8:6f:97:29:b3:68:d4:1f:92:3a:af:2b:7d:7b:5c:fe:e2: 73:7a:99:06 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTI5MDI1MDExWhcNMjYwMjA1MDI1MDExWjAYMRYwFAYD VQQDDA02OTdhY2FlMy0wNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAregugRkupRUdeBF8kVd7o0Jy34NEKazwtv1zGD9LoDyooeX9XunMWmOD0bMv PXKHcA5JpYig9rMBi+Yw0GKBPVwikQBbj14RvszO8fDoaYu6tRLEGzleNkd1RyUY JLkQtOOWDMDS6drcfQs1rHSrV/bq5u5xAZ/nO4V1eUEYeouitBiWf3xZXVUMq2HX kgjP04kOknoPa5BnMxpF9jXLHuuTeaiCEJcSsmiqLPs8hY3cyYiucdR77w5En/iX WuY/YaCKLq8HNQejbz0rpF8hIPtd3Ck6bqYy+ghyctvF5yV/ALGGN/Y5hw7YVLp5 DSAtM96RRwfjHMtFQjzDuiAMZQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFFFI/sX/ OYMGETH+OtdJ+EZi9UUlMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBuwm7MEppmopyTeb8xQdjg8rve8ACEHuyN c54AdCVYzsSsa2MhXx7suD2YNk05MAUMD/PM04Jl2NzE7ave//OUOvfVDOh7yuYH 6ATVb3BrBoBCNqeM/cQy/3nnAtOdv9tdWdqhqOOhqfoZH1wyyHQ6htnG5Lkb4F6W c5rIs4YEgugrup6vh/AlOt0cyiO0DgLFV0DwaUIBmxixpBSqa2N7LXHRitZprBl6 Hsm94tKD2iYB37dE/vx7VBDqlF8dQa7kOrhKiiGU5iiUI6qS0S8dHWgJm0JxZfBn PmG5EZXsS0U4BA2EupyIiLoH+G+XKbNo1B+SOq8rfXtc/uJzepkG -----END CERTIFICATE-----Generated at Thu Jan 29 10:52:10 2026 by rpki-client