This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: RNv/+oTJzwOmdGclYiLC2fTg0xIKm52pUCzjI3rH+kU= Subject key identifier: 74:4C:DC:DE:83:88:93:41:E9:57:85:5D:10:E3:85:78:32:6E:DC:A0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49B0 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 48FE Signing time: Tue 06 Jan 2026 14:50:10 +0000 Manifest this update: Tue 06 Jan 2026 14:50:10 +0000 Manifest next update: Tue 13 Jan 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ryeQyHKRhLfQSKdry61Bx+oQrVnwV99C+9ejdmdPLIk=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 3: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 Jan 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18864 (0x49b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 6 14:50:10 2026 GMT Not After : Jan 13 14:50:10 2026 GMT Subject: CN=695d2122-371d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c7:c0:bb:a8:9a:91:f6:18:f0:31:15:69:d9: 97:15:ea:b8:b5:53:41:3d:41:47:de:9c:02:41:54: da:a7:b0:97:51:54:02:db:a6:f2:db:48:38:56:6d: d4:a0:35:5a:6d:04:a3:d4:66:be:02:35:6b:9c:39: 63:6f:7d:01:d6:0d:c8:38:2e:11:27:f5:fe:d5:f7: 24:e6:04:28:0b:30:35:c6:19:4f:74:aa:e8:ff:1a: 57:7c:76:b1:fb:fe:01:b6:eb:ae:2c:51:fd:1c:63: f6:69:59:92:c7:b8:6f:fe:11:63:5b:e3:2c:ef:8a: 48:07:0e:a7:39:f3:92:07:c6:6a:36:03:1f:a5:2f: 8e:62:fc:18:ea:34:04:be:9f:51:14:45:f1:08:07: 65:f6:53:82:97:ec:fa:eb:58:23:f8:ef:04:a8:14: 59:58:5a:d2:88:ca:a3:27:15:3d:76:8c:a2:e1:cf: 2e:9c:5a:97:39:ae:a9:a7:87:94:b6:f2:70:e3:33: a4:ff:c7:6d:e3:d5:9c:55:b9:fa:00:a0:27:ef:8f: aa:2a:0b:f5:d9:ff:7b:fb:b1:a9:04:43:d1:b0:ee: 4a:6e:2e:06:ff:97:d6:87:e3:50:43:50:c0:21:b6: 4c:19:bb:87:1e:5e:47:7a:79:f2:e4:91:9c:64:80: 1d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:4C:DC:DE:83:88:93:41:E9:57:85:5D:10:E3:85:78:32:6E:DC:A0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:e6:f2:2d:cb:96:7a:df:99:31:a2:ed:1b:46:c9:6c:b8:3f: d9:b2:bb:fb:fc:73:31:cf:eb:fa:d4:52:5f:39:ae:76:39:88: 7d:66:1e:0e:a7:dd:94:08:b1:f9:33:b3:81:c8:a4:13:72:a2: ec:2a:9f:e9:e7:d5:60:11:ec:26:82:fb:c5:e4:f2:ac:1e:de: d1:37:d7:83:83:b1:9c:af:96:dc:f5:ab:a6:ed:dd:75:b4:0e: 03:02:11:3f:e8:ee:3e:b5:ac:87:25:e2:79:d5:fc:bd:c7:90: ec:0c:cc:4c:7c:76:a7:5c:54:92:43:ee:6e:53:6d:54:90:9a: 47:05:44:83:a1:ed:57:b4:4a:36:dc:2e:cb:4f:84:37:c2:f6: 83:48:50:4e:49:aa:0d:5f:5b:89:a5:20:94:21:fb:54:52:b7: 8c:8d:5f:63:3e:b2:f6:8e:d6:f1:fd:e6:36:13:92:3b:8f:33: 5f:24:fc:54:62:50:10:70:e5:8b:70:23:1a:8c:bb:ab:fe:c7: 52:02:ad:84:73:fd:3a:fd:57:fc:78:2a:72:14:2d:73:e8:1e: 0c:f2:f3:30:8a:19:1d:0a:0e:02:02:4b:c2:c9:8c:88:53:e0: 63:2f:da:e4:ed:db:33:92:5a:c9:2e:29:99:37:47:aa:c4:c1: ac:ef:f8:52 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTA2MTQ1MDEwWhcNMjYwMTEzMTQ1MDEwWjAYMRYwFAYD VQQDDA02OTVkMjEyMi0zNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycfAu6iakfYY8DEVadmXFeq4tVNBPUFH3pwCQVTap7CXUVQC26by20g4Vm3U oDVabQSj1Ga+AjVrnDljb30B1g3IOC4RJ/X+1fck5gQoCzA1xhlPdKro/xpXfHax +/4BtuuuLFH9HGP2aVmSx7hv/hFjW+Ms74pIBw6nOfOSB8ZqNgMfpS+OYvwY6jQE vp9RFEXxCAdl9lOCl+z661gj+O8EqBRZWFrSiMqjJxU9doyi4c8unFqXOa6pp4eU tvJw4zOk/8dt49WcVbn6AKAn74+qKgv12f97+7GpBEPRsO5Kbi4G/5fWh+NQQ1DA IbZMGbuHHl5Henny5JGcZIAdowIDAQABo4IChzCCAoMwHQYDVR0OBBYEFHRM3N6D iJNB6VeFXRDjhXgybtygMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCP5vIty5Z635kxou0bRslsuD/Zsrv7/HMx z+v61FJfOa52OYh9Zh4Op92UCLH5M7OByKQTcqLsKp/p59VgEewmgvvF5PKsHt7R N9eDg7Gcr5bc9aum7d11tA4DAhE/6O4+tayHJeJ51fy9x5DsDMxMfHanXFSSQ+5u U21UkJpHBUSDoe1XtEo23C7LT4Q3wvaDSFBOSaoNX1uJpSCUIftUUreMjV9jPrL2 jtbx/eY2E5I7jzNfJPxUYlAQcOWLcCMajLur/sdSAq2Ec/06/Vf8eCpyFC1z6B4M 8vMwihkdCg4CAkvCyYyIU+BjL9rk7dszklrJLimZN0eqxMGs7/hS -----END CERTIFICATE-----Generated at Wed Jan 7 00:12:10 2026 by rpki-client