This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: VF1yWtD4Cxc4VydfJjWTsa3cAnPveTAxoPXkVaJH2EU= Subject key identifier: B3:58:C2:16:33:0D:09:85:16:63:0C:DE:8A:56:1E:E3:CA:35:C8:DD Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4999 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 48E7 Signing time: Tue 30 Dec 2025 02:50:11 +0000 Manifest this update: Tue 30 Dec 2025 02:50:11 +0000 Manifest next update: Tue 06 Jan 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: GMqkbkVc4b1tYAi9WY9j3I0BOJ9SnZIGlsBF7vK+S1E=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 Jan 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18841 (0x4999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 30 02:50:11 2025 GMT Not After : Jan 6 02:50:11 2026 GMT Subject: CN=69533de3-78be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d9:cb:db:34:1a:c0:9c:02:cc:c6:37:5c:41: 1a:c0:53:d3:37:19:f0:a8:ad:d5:b7:eb:de:3c:69: 24:ca:e8:2f:be:e3:93:9d:49:40:54:fe:fa:85:b6: 94:df:a0:73:9e:51:e1:7a:28:ea:a6:b0:41:0b:e9: 14:78:c2:07:4b:77:44:91:9c:a2:d1:f3:62:82:07: 03:10:64:d0:2a:be:bc:94:55:fa:89:cf:28:ee:39: 8f:49:94:6d:02:41:25:56:e8:58:9a:a4:d6:b3:f0: 02:42:91:5d:71:fd:58:65:13:ba:b0:70:3a:c4:f3: b1:a3:d3:c4:9d:26:bb:3f:77:38:c6:04:9f:40:84: 6d:74:dc:e1:d8:39:1d:8c:ec:48:48:16:5f:18:5d: 53:38:3b:de:37:eb:b5:82:5f:e6:c3:61:45:38:b1: 74:c5:74:93:74:d3:07:59:a9:42:c8:e8:8e:1d:18: 27:fd:f6:45:08:a9:7a:52:29:f7:37:f3:bd:6f:7f: 5d:75:7b:18:7f:7d:6b:82:ba:0b:48:ea:ca:eb:34: 53:04:a2:c2:d9:89:49:44:d8:d1:7c:6f:a5:19:be: 1b:36:3d:75:51:f3:a8:57:f4:71:30:5c:1f:03:7b: 86:2c:31:2d:a0:7c:d1:d2:0e:63:fb:b1:7a:e0:98: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:58:C2:16:33:0D:09:85:16:63:0C:DE:8A:56:1E:E3:CA:35:C8:DD X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:fa:a0:57:c4:4a:e5:db:1f:d3:60:c7:fd:aa:9f:fc:9c:d8: 46:3d:fc:b2:ed:a0:ba:fb:22:e2:57:9e:be:92:c0:08:ea:b9: 40:75:64:70:da:e0:ec:83:be:50:3e:ae:05:b1:d7:50:00:1c: c8:c9:7d:56:b6:b0:d1:25:af:af:39:a3:34:38:e8:19:cc:9f: 63:40:bc:e7:71:5b:1e:7e:17:09:51:d7:9e:6a:da:f2:19:9b: 51:92:47:cb:92:69:a4:2c:f8:e5:b7:bf:a4:f9:78:e1:35:c6: cf:8b:99:59:53:8b:34:28:e0:25:92:19:3f:0b:be:ae:b3:17: 25:43:ca:f4:6a:00:f7:4e:39:03:5a:b7:85:fb:ae:a4:04:1c: 39:53:74:0b:f3:b9:49:5a:cd:e3:49:a3:fd:a5:2b:9e:4a:4c: 91:73:c7:94:74:d0:94:a0:1a:c6:d8:34:37:78:8d:76:ab:22: 93:95:c9:d5:c4:98:b4:8e:79:f9:e9:17:ae:76:f6:0b:f7:4a: ef:1c:27:42:df:3d:f0:80:82:aa:92:a8:13:91:34:cf:5f:e3: a3:6b:ee:6d:dc:a2:97:10:7f:75:cb:09:56:aa:8f:d2:46:2b: 39:e5:6e:8b:66:1c:ba:0d:9d:fc:c6:3d:19:74:17:35:3b:4a: 1d:35:e1:eb -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjMwMDI1MDExWhcNMjYwMTA2MDI1MDExWjAYMRYwFAYD VQQDDA02OTUzM2RlMy03OGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dnL2zQawJwCzMY3XEEawFPTNxnwqK3Vt+vePGkkyugvvuOTnUlAVP76hbaU 36BznlHheijqprBBC+kUeMIHS3dEkZyi0fNiggcDEGTQKr68lFX6ic8o7jmPSZRt AkElVuhYmqTWs/ACQpFdcf1YZRO6sHA6xPOxo9PEnSa7P3c4xgSfQIRtdNzh2Dkd jOxISBZfGF1TODveN+u1gl/mw2FFOLF0xXSTdNMHWalCyOiOHRgn/fZFCKl6Uin3 N/O9b39ddXsYf31rgroLSOrK6zRTBKLC2YlJRNjRfG+lGb4bNj11UfOoV/RxMFwf A3uGLDEtoHzR0g5j+7F64JhmKQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFLNYwhYz DQmFFmMM3opWHuPKNcjdMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA0+qBXxErl2x/TYMf9qp/8nNhGPfyy7aC6 +yLiV56+ksAI6rlAdWRw2uDsg75QPq4FsddQABzIyX1WtrDRJa+vOaM0OOgZzJ9j QLzncVsefhcJUdeeatryGZtRkkfLkmmkLPjlt7+k+XjhNcbPi5lZU4s0KOAlkhk/ C76usxclQ8r0agD3TjkDWreF+66kBBw5U3QL87lJWs3jSaP9pSueSkyRc8eUdNCU oBrG2DQ3eI12qyKTlcnVxJi0jnn56ReudvYL90rvHCdC3z3wgIKqkqgTkTTPX+Oj a+5t3KKXEH91ywlWqo/SRis55W6LZhy6DZ38xj0ZdBc1O0odNeHr -----END CERTIFICATE-----Generated at Tue Dec 30 13:00:59 2025 by rpki-client