This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: xf4iFzH0mI1RWOSgEWxuPORS5prdbrkV4Vqjxk/nw50= Subject key identifier: 6F:7E:83:06:09:91:7D:4E:08:24:99:8C:FA:7C:CD:50:9E:F5:00:A7 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49BF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 490D Signing time: Sun 11 Jan 2026 14:50:11 +0000 Manifest this update: Sun 11 Jan 2026 14:50:10 +0000 Manifest next update: Sun 18 Jan 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: U4bgW5WvQTdRkBwTuHcGT3s3P7UhapKd4RHw4OmVKrw=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18879 (0x49bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 11 14:50:10 2026 GMT Not After : Jan 18 14:50:10 2026 GMT Subject: CN=6963b8a3-9510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0e:c8:0d:66:6b:f2:b5:37:8f:4e:ef:2b:c0: 29:7e:63:ff:74:ea:71:f0:56:61:ed:97:76:8f:ac: 34:c8:8c:e1:c8:8f:62:27:d7:81:2b:eb:ef:d8:8b: f0:3c:d5:be:0e:70:e9:eb:ec:f4:3d:25:be:29:6e: 17:70:0d:5c:a6:b3:3f:22:18:fc:62:f9:ea:5b:3b: ec:fa:39:bd:33:78:c8:c4:bb:cc:92:15:ff:8a:f1: ee:e2:c1:e2:42:fc:31:44:54:cb:c1:d2:1b:ab:bc: 0a:f8:9c:4f:03:de:68:29:2d:58:03:9b:ca:d0:4d: 4f:a4:5a:dd:c2:1e:6e:80:49:fa:f1:2f:d0:7c:d7: 07:11:a2:6b:c6:11:a7:61:53:3f:3c:fc:75:1f:eb: f6:84:fd:10:1a:04:f5:d4:3c:af:e8:d5:cf:a8:96: c7:85:f7:e3:92:34:30:d7:43:f2:b9:19:7b:0b:75: e5:cd:db:e8:ba:bf:a0:d8:65:06:27:9d:97:ab:0f: 42:c2:98:10:4d:53:27:8b:1f:16:b7:33:b9:0a:9f: b0:f0:50:0a:a2:06:3c:ed:a7:88:1d:4a:5f:04:39: 5d:a1:b5:df:3c:f4:4b:22:a2:3f:14:45:90:20:4e: 01:fd:a3:58:5c:1f:e7:44:81:02:e5:94:64:1f:78: a8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7E:83:06:09:91:7D:4E:08:24:99:8C:FA:7C:CD:50:9E:F5:00:A7 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:bb:9c:0c:0a:8c:4a:c8:11:c2:24:d6:1e:c7:11:4a:d9:0e: 53:93:2b:d7:6e:7c:60:4a:e9:3a:0f:a2:ee:23:dd:16:81:54: 80:fc:ca:f5:4c:9a:83:63:df:0d:f3:e5:bc:3b:60:69:73:2d: 1a:2e:58:65:79:0e:da:58:03:fc:b0:e0:a7:61:52:fc:40:2c: 82:ef:34:78:f6:db:c7:14:aa:cb:4d:37:42:3c:9b:5f:31:55: ef:16:a2:d5:d0:9e:55:1b:18:00:0e:65:c2:9b:79:ec:c7:dd: 45:1a:fd:4d:43:62:72:7d:50:e1:f2:bb:57:df:fc:27:98:e1: fe:09:80:f0:cb:fc:b6:c8:23:04:de:77:75:05:44:8e:49:31: b3:f8:a4:52:0d:71:4c:94:7f:14:47:2e:8d:ed:b5:b5:0a:4e: 0c:b3:45:d2:67:67:15:b8:6b:8c:aa:9b:3a:03:b8:00:8e:4a: 28:e4:c2:c0:47:36:08:55:18:00:d5:4b:06:9c:2d:a0:26:70: e6:6d:25:28:15:fd:dd:54:fa:61:d0:59:3e:af:84:72:a4:36: 5e:36:64:54:c3:25:b1:bf:bb:40:3f:7c:fe:4c:6f:33:b7:e4: c6:90:60:12:57:30:55:eb:08:dc:aa:0f:bc:e4:b6:94:1b:0e: 91:a2:2a:90 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTExMTQ1MDEwWhcNMjYwMTE4MTQ1MDEwWjAYMRYwFAYD VQQDDA02OTYzYjhhMy05NTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoA7IDWZr8rU3j07vK8ApfmP/dOpx8FZh7Zd2j6w0yIzhyI9iJ9eBK+vv2Ivw PNW+DnDp6+z0PSW+KW4XcA1cprM/Ihj8YvnqWzvs+jm9M3jIxLvMkhX/ivHu4sHi QvwxRFTLwdIbq7wK+JxPA95oKS1YA5vK0E1PpFrdwh5ugEn68S/QfNcHEaJrxhGn YVM/PPx1H+v2hP0QGgT11Dyv6NXPqJbHhffjkjQw10PyuRl7C3Xlzdvour+g2GUG J52Xqw9CwpgQTVMnix8WtzO5Cp+w8FAKogY87aeIHUpfBDldobXfPPRLIqI/FEWQ IE4B/aNYXB/nRIEC5ZRkH3ioSQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFG9+gwYJ kX1OCCSZjPp8zVCe9QCnMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBqu5wMCoxKyBHCJNYexxFK2Q5TkyvXbnxg Suk6D6LuI90WgVSA/Mr1TJqDY98N8+W8O2Bpcy0aLlhleQ7aWAP8sOCnYVL8QCyC 7zR49tvHFKrLTTdCPJtfMVXvFqLV0J5VGxgADmXCm3nsx91FGv1NQ2JyfVDh8rtX 3/wnmOH+CYDwy/y2yCME3nd1BUSOSTGz+KRSDXFMlH8URy6N7bW1Ck4Ms0XSZ2cV uGuMqps6A7gAjkoo5MLARzYIVRgA1UsGnC2gJnDmbSUoFf3dVPph0Fk+r4RypDZe NmRUwyWxv7tAP3z+TG8zt+TGkGASVzBV6wjcqg+85LaUGw6RoiqQ -----END CERTIFICATE-----Generated at Mon Jan 12 01:47:06 2026 by rpki-client