This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: aYMlS6bAUYz/kFUBzRJWsPby6YDyMvgv9TOkLagSwW0= Subject key identifier: 84:28:E3:DD:32:AD:B4:37:61:1C:01:8E:5D:A0:64:65:05:1D:FB:86 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49D2 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4920 Signing time: Sun 18 Jan 2026 02:50:11 +0000 Manifest this update: Sun 18 Jan 2026 02:50:10 +0000 Manifest next update: Sun 25 Jan 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: HBDXeW4dJOxZhiZAf7UHbsY6VFTLuVH9E6zUD72hEIE=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 Jan 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18898 (0x49d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 18 02:50:10 2026 GMT Not After : Jan 25 02:50:10 2026 GMT Subject: CN=696c4a62-c489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d1:95:a5:88:ba:ee:f5:43:de:3c:dc:b8:80: b9:d9:93:6c:3f:55:26:72:52:9d:c4:e0:c8:51:af: cc:c1:64:7d:ff:1f:fc:4d:7f:45:09:1d:5a:7b:e9: f4:0a:9b:54:69:a8:9b:0a:32:61:92:eb:00:ea:c5: 0c:3a:92:93:54:34:6f:c9:60:de:dd:36:1c:cd:70: 76:e5:c2:61:d6:73:96:48:5e:6f:0c:5a:8b:ed:1a: df:f6:32:c6:67:04:51:ed:42:30:95:de:5d:51:7e: 3c:7f:e4:58:23:77:e5:cf:03:a6:e8:4b:76:b7:94: eb:c4:3f:67:82:ec:df:4d:44:2a:9a:30:95:4d:c9: 44:15:f7:17:ea:5f:4e:8f:9c:31:13:46:d0:7f:1c: 29:11:e1:04:69:f7:f2:74:f8:e2:70:62:6e:c0:f3: 9e:63:ef:b2:1b:5e:00:55:d5:70:63:08:ac:6c:cc: bf:97:fe:9e:22:2e:f9:ad:9c:4e:7d:02:7c:eb:dd: 8a:da:bc:21:cd:40:a7:b8:13:89:d9:df:5a:bb:50: 0b:36:55:5f:8b:16:f9:e1:55:79:b1:19:75:5a:1f: bd:30:a9:24:93:5b:85:32:0c:73:bd:30:fe:bd:68: 38:be:7e:bd:0b:4d:4c:dd:bc:7a:4d:37:9f:d9:57: 21:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:28:E3:DD:32:AD:B4:37:61:1C:01:8E:5D:A0:64:65:05:1D:FB:86 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:c8:4d:d1:46:f4:1a:2f:df:7f:2f:27:37:4c:4a:f5:5b:4d: 3c:df:bf:b3:45:b8:99:05:0d:80:bf:ef:55:46:9d:5a:fb:ba: a9:4c:50:52:e8:42:8f:7c:0d:96:e5:d0:6a:0e:f2:45:b4:2d: cc:64:78:b1:35:c4:b4:ea:6c:45:b6:9f:c2:10:fc:7b:f8:50: f0:58:df:d0:7d:d1:f0:3c:16:f6:fd:22:0d:87:65:63:d8:b7: 89:58:3f:1f:1f:f0:0f:c5:59:cd:61:66:c4:1b:37:de:00:cb: 1a:19:04:ec:12:bc:9a:67:7e:1e:c0:df:51:89:1f:a8:4b:70: b0:fc:0e:ca:89:ad:05:cf:64:97:01:41:84:a6:ac:3e:6f:2a: 5b:ae:67:e5:f9:35:02:de:13:76:67:d0:98:50:9a:90:aa:ce: 74:59:3a:27:a5:86:97:2c:76:12:ba:c4:2e:13:3e:e0:72:c2: 38:a1:58:f3:df:6c:32:e7:e8:d6:62:da:44:61:52:0d:b5:ee: 7a:7d:d6:d7:a6:06:39:1e:81:be:02:9f:ca:d9:32:40:12:66: 86:a1:7a:55:ee:48:3e:ba:26:89:70:16:54:3c:2b:86:2a:19: ea:0d:44:e2:4b:64:3d:0f:43:7c:a5:c8:e8:5b:81:46:db:b9: 22:21:ac:b2 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTE4MDI1MDEwWhcNMjYwMTI1MDI1MDEwWjAYMRYwFAYD VQQDDA02OTZjNGE2Mi1jNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9GVpYi67vVD3jzcuIC52ZNsP1UmclKdxODIUa/MwWR9/x/8TX9FCR1ae+n0 CptUaaibCjJhkusA6sUMOpKTVDRvyWDe3TYczXB25cJh1nOWSF5vDFqL7Rrf9jLG ZwRR7UIwld5dUX48f+RYI3flzwOm6Et2t5TrxD9nguzfTUQqmjCVTclEFfcX6l9O j5wxE0bQfxwpEeEEaffydPjicGJuwPOeY++yG14AVdVwYwisbMy/l/6eIi75rZxO fQJ8692K2rwhzUCnuBOJ2d9au1ALNlVfixb54VV5sRl1Wh+9MKkkk1uFMgxzvTD+ vWg4vn69C01M3bx6TTef2Vch/wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFIQo490y rbQ3YRwBjl2gZGUFHfuGMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCmyE3RRvQaL99/Lyc3TEr1W00837+zRbiZ BQ2Av+9VRp1a+7qpTFBS6EKPfA2W5dBqDvJFtC3MZHixNcS06mxFtp/CEPx7+FDw WN/QfdHwPBb2/SINh2Vj2LeJWD8fH/APxVnNYWbEGzfeAMsaGQTsEryaZ34ewN9R iR+oS3Cw/A7Kia0Fz2SXAUGEpqw+bypbrmfl+TUC3hN2Z9CYUJqQqs50WTonpYaX LHYSusQuEz7gcsI4oVjz32wy5+jWYtpEYVINte56fdbXpgY5HoG+Ap/K2TJAEmaG oXpV7kg+uiaJcBZUPCuGKhnqDUTiS2Q9D0N8pcjoW4FG27kiIayy -----END CERTIFICATE-----Generated at Sun Jan 18 07:23:28 2026 by rpki-client