This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: QNc98dEubOjiTmxPCtaSWMlA1e/NzwT8MmijhP17oOA= Subject key identifier: A6:3A:1D:36:E9:C6:29:4A:D2:60:76:A2:C5:95:29:71:E5:BC:43:07 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49F8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4946 Signing time: Fri 30 Jan 2026 15:01:24 +0000 Manifest this update: Fri 30 Jan 2026 15:01:23 +0000 Manifest next update: Fri 06 Feb 2026 15:01:23 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: p5NcUrNVQfRmJweUeJ4JOglSKAPCbO+EiI4BewabSBA=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Feb 2026 15:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18936 (0x49f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 30 15:01:23 2026 GMT Not After : Feb 6 15:01:23 2026 GMT Subject: CN=697cc7c3-f217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:72:4d:b5:8a:84:03:27:9d:17:c2:62:d3:3c: b1:82:fb:f5:f2:40:ac:bf:61:98:97:f8:10:f8:92: d8:1a:2f:34:15:fe:e2:2f:04:e3:ad:e0:fa:c6:32: fb:d0:77:7d:76:73:0a:d8:ae:4c:74:78:c9:d8:47: 08:8f:fc:f3:f7:36:c2:59:d5:cd:35:7b:e3:9a:d8: d7:0a:37:9d:2d:1f:2e:76:80:ef:fd:89:ac:51:b3: 23:51:2b:ce:8a:67:8d:29:48:70:ae:8f:55:6e:04: 8e:b8:14:04:df:75:4d:97:df:5f:32:ab:c4:38:a0: c4:c0:40:64:c5:0a:ac:10:36:0a:df:1b:7c:44:94: 62:3f:c7:e6:e6:41:b2:55:ee:97:d6:8f:a9:f6:c9: c5:c6:ae:c3:f8:07:1c:b9:26:51:f8:30:b4:b9:c2: e8:26:93:89:65:d0:34:4c:76:94:61:0f:93:a3:4c: 45:99:a1:3e:9d:8f:d8:45:db:80:d1:89:ce:ef:a3: 16:b9:05:5f:f1:83:ff:ee:7c:d6:ad:d3:0c:e6:06: 79:f7:bc:cf:d9:31:24:2c:34:19:13:07:a7:17:8f: 7e:ed:b7:f3:f6:bb:a7:1e:7a:f0:76:4f:36:d2:80: ce:1c:05:32:7d:bf:09:11:fc:0e:30:71:36:c0:ed: c6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3A:1D:36:E9:C6:29:4A:D2:60:76:A2:C5:95:29:71:E5:BC:43:07 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1c:9d:60:c3:8e:00:4e:62:4c:04:ea:fd:a6:c8:cf:d1:56: 4b:ee:67:ec:2c:bf:a4:6e:f5:23:37:29:55:68:59:d1:d8:0f: c7:06:6a:4b:e3:de:39:dd:44:8b:99:f3:bf:40:99:70:ce:4a: 47:9a:5b:0e:1a:63:67:16:a2:13:08:fc:e6:3a:38:6d:c7:45: e3:9b:27:86:38:14:be:03:2e:0d:99:1d:fe:15:83:66:27:f6: c2:6c:09:50:90:73:2c:17:bb:42:7f:29:cc:bc:c8:f2:1c:8a: 0d:1d:fa:2a:a0:8b:b2:a1:f5:7c:f0:01:51:ae:e4:9a:9f:4f: d1:95:40:c3:96:2a:3f:33:c3:0a:30:de:14:b1:b4:43:60:56: ca:c3:dc:ef:4f:29:99:44:a8:48:c7:4d:4c:8e:c8:a8:a0:67: 58:75:a5:23:b9:35:5d:a2:91:5d:72:74:63:40:93:7d:a7:b3: 54:77:e6:7b:50:33:cd:2c:cc:15:ea:71:69:32:75:e6:70:04: c7:11:25:0f:8c:0b:7b:34:ac:92:33:87:28:82:78:4a:9c:f8: cb:05:79:b2:ac:20:b5:5c:cf:ea:56:c5:9f:98:a1:94:26:ee: d5:33:92:ab:7a:00:c4:d0:ef:5a:a3:bd:ae:8b:78:bf:f7:66: ad:f0:1e:13 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTMwMTUwMTIzWhcNMjYwMjA2MTUwMTIzWjAYMRYwFAYD VQQDDA02OTdjYzdjMy1mMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnJNtYqEAyedF8Ji0zyxgvv18kCsv2GYl/gQ+JLYGi80Ff7iLwTjreD6xjL7 0Hd9dnMK2K5MdHjJ2EcIj/zz9zbCWdXNNXvjmtjXCjedLR8udoDv/YmsUbMjUSvO imeNKUhwro9VbgSOuBQE33VNl99fMqvEOKDEwEBkxQqsEDYK3xt8RJRiP8fm5kGy Ve6X1o+p9snFxq7D+AccuSZR+DC0ucLoJpOJZdA0THaUYQ+To0xFmaE+nY/YRduA 0YnO76MWuQVf8YP/7nzWrdMM5gZ597zP2TEkLDQZEwenF49+7bfz9runHnrwdk82 0oDOHAUyfb8JEfwOMHE2wO3GMwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKY6HTbp xilK0mB2osWVKXHlvEMHMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBhHJ1gw44ATmJMBOr9psjP0VZL7mfsLL+k bvUjNylVaFnR2A/HBmpL49453USLmfO/QJlwzkpHmlsOGmNnFqITCPzmOjhtx0Xj myeGOBS+Ay4NmR3+FYNmJ/bCbAlQkHMsF7tCfynMvMjyHIoNHfoqoIuyofV88AFR ruSan0/RlUDDlio/M8MKMN4UsbRDYFbKw9zvTymZRKhIx01MjsiooGdYdaUjuTVd opFdcnRjQJN9p7NUd+Z7UDPNLMwV6nFpMnXmcATHESUPjAt7NKySM4cognhKnPjL BXmyrCC1XM/qVsWfmKGUJu7VM5KregDE0O9ao72ui3i/92at8B4T -----END CERTIFICATE-----Generated at Sat Jan 31 01:32:13 2026 by rpki-client