This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: HWOPT6S5OygVzov8UHnIdt+eaeA9mXNcwPMXimpOPwI= Subject key identifier: EE:D4:06:8C:DF:A5:19:60:57:B8:65:B6:DC:23:C9:E1:11:5D:AC:E5 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49CE Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 491C Signing time: Fri 16 Jan 2026 14:50:12 +0000 Manifest this update: Fri 16 Jan 2026 14:50:11 +0000 Manifest next update: Fri 23 Jan 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: sk0Cn5VCxDqS8NnEmfulNhK9BpD7iuLo5Jwvyhwu4hU=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18894 (0x49ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 16 14:50:11 2026 GMT Not After : Jan 23 14:50:11 2026 GMT Subject: CN=696a5024-1dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:2f:23:36:08:70:5e:b8:cb:79:08:b2:91: c4:6f:90:91:6a:53:61:f7:70:82:38:cd:a8:f2:6b: 1d:a6:60:f9:29:9c:6c:b5:d9:c1:e3:bf:1b:8f:1f: a0:72:9f:34:7f:73:f1:83:e6:2d:7a:80:04:6a:29: f9:62:ac:02:05:f5:15:1e:26:5d:f3:fc:f1:12:01: 90:f4:e0:8e:a9:74:cc:99:e9:9c:ed:af:da:27:fe: 74:6e:08:d7:f3:e7:3e:3a:cb:a9:a5:cd:01:df:d5: 3f:1a:3e:20:82:06:63:78:29:ab:e1:aa:0e:13:09: 60:55:31:a9:2a:c2:e7:7e:a0:65:9f:27:50:8e:81: 01:06:93:bc:8e:13:5e:75:8b:00:21:dd:a9:2b:4f: dd:04:ef:52:6b:2b:75:86:53:6d:46:c6:22:fd:a4: 5a:dd:9e:d3:80:65:0a:ee:db:bb:5a:01:07:c3:c1: 13:6a:09:6d:98:46:17:e7:7c:7d:16:86:c6:8c:8d: b5:e7:6d:eb:87:85:74:07:9b:67:be:85:3c:dc:70: 92:82:79:12:17:3d:69:72:cc:4a:f6:57:de:b2:aa: 00:7c:6d:9e:5d:85:e3:c9:69:02:d0:aa:19:d6:38: 57:a1:fa:cc:06:11:41:ad:e4:61:90:64:4e:c8:aa: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D4:06:8C:DF:A5:19:60:57:B8:65:B6:DC:23:C9:E1:11:5D:AC:E5 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1c:42:be:6c:a0:84:15:5b:92:56:57:7f:fb:90:27:35:9d: 86:5d:4d:64:80:8e:22:ef:00:e9:59:99:8b:18:87:aa:ce:d2: 94:ac:80:b5:ed:a2:b8:d5:a8:1c:1a:c1:8a:50:1c:46:9d:3f: 6e:04:35:ef:50:53:9c:da:ce:79:12:f6:91:56:87:f5:99:75: e0:06:33:99:d2:46:3f:78:17:b2:6f:b3:4a:68:13:b2:bd:50: c2:99:5b:6d:8e:3d:8c:f1:d5:f3:95:63:7b:03:a5:88:3b:82: 8c:47:52:30:85:20:0c:13:3e:f4:5e:2f:cf:de:18:db:93:2a: e8:38:8a:e6:4f:35:f2:7b:db:6f:a1:92:65:40:89:a0:84:36: 9a:7a:6f:ba:80:1b:3e:7b:f2:bb:68:6d:92:59:a5:50:cd:01: db:4f:31:33:7f:ca:32:e2:eb:c5:83:59:28:dd:b3:7a:c8:bf: 9b:0a:25:d8:4b:41:6e:67:f5:3d:86:92:86:16:b5:32:d3:da: 64:64:fa:d2:ec:01:9f:33:d1:07:28:e6:98:90:71:4d:8e:81: 3f:6b:be:50:bd:0d:2e:0f:31:2e:1c:dc:ff:c1:1d:64:6d:a0: e2:c9:72:02:6d:a4:ca:f0:c2:83:3b:71:aa:d0:2b:54:b7:3d: 47:6e:f6:d6 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTE2MTQ1MDExWhcNMjYwMTIzMTQ1MDExWjAYMRYwFAYD VQQDDA02OTZhNTAyNC0xZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iovIzYIcF64y3kIspHEb5CRalNh93CCOM2o8msdpmD5KZxstdnB478bjx+g cp80f3Pxg+YteoAEain5YqwCBfUVHiZd8/zxEgGQ9OCOqXTMmemc7a/aJ/50bgjX 8+c+Osuppc0B39U/Gj4gggZjeCmr4aoOEwlgVTGpKsLnfqBlnydQjoEBBpO8jhNe dYsAId2pK0/dBO9Sayt1hlNtRsYi/aRa3Z7TgGUK7tu7WgEHw8ETagltmEYX53x9 FobGjI21523rh4V0B5tnvoU83HCSgnkSFz1pcsxK9lfesqoAfG2eXYXjyWkC0KoZ 1jhXofrMBhFBreRhkGROyKpRZwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFO7UBozf pRlgV7hlttwjyeERXazlMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAYHEK+bKCEFVuSVld/+5AnNZ2GXU1kgI4i 7wDpWZmLGIeqztKUrIC17aK41agcGsGKUBxGnT9uBDXvUFOc2s55EvaRVof1mXXg BjOZ0kY/eBeyb7NKaBOyvVDCmVttjj2M8dXzlWN7A6WIO4KMR1IwhSAMEz70Xi/P 3hjbkyroOIrmTzXye9tvoZJlQImghDaaem+6gBs+e/K7aG2SWaVQzQHbTzEzf8oy 4uvFg1ko3bN6yL+bCiXYS0FuZ/U9hpKGFrUy09pkZPrS7AGfM9EHKOaYkHFNjoE/ a75QvQ0uDzEuHNz/wR1kbaDiyXICbaTK8MKDO3Gq0CtUtz1HbvbW -----END CERTIFICATE-----Generated at Fri Jan 16 18:16:03 2026 by rpki-client