This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: eed2Fi9aSAG5HpwQ9Shu4zgPatdch9/QjvDMlYbEjXE= Subject key identifier: 09:C3:A5:AE:56:7C:B0:82:37:5E:D9:48:5C:4C:52:E3:76:50:44:B2 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49C8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4916 Signing time: Wed 14 Jan 2026 14:50:10 +0000 Manifest this update: Wed 14 Jan 2026 14:50:10 +0000 Manifest next update: Wed 21 Jan 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ASpT2v/Kk6wPOPueiyTZcJGb5q5AtQs+namZuEqNiek=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18888 (0x49c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 14 14:50:10 2026 GMT Not After : Jan 21 14:50:10 2026 GMT Subject: CN=6967ad22-fbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3e:d9:94:e6:b4:b8:06:32:29:6e:f0:51:51: 83:ce:c6:96:b7:13:25:22:58:bc:9b:3e:86:a2:ae: a4:a7:57:22:a3:03:4f:d9:28:8c:f3:fc:07:b1:11: 7f:bc:c0:c4:08:d0:83:b7:b0:25:d3:24:f1:01:66: 4a:95:45:29:b0:68:79:02:cf:11:05:56:71:72:e5: c3:a0:54:48:46:bd:11:45:c5:3c:34:51:9f:c3:58: b6:05:dc:b1:e2:1d:94:ca:ef:65:38:d6:f9:06:c6: b3:26:67:19:b2:d6:4c:0c:01:9c:8b:01:c5:1b:4d: 5a:d6:32:26:08:65:48:28:ed:b2:9f:2f:e0:cb:2a: 73:e8:ef:0f:e6:50:da:16:b3:f2:91:cf:99:f3:26: 4e:b9:68:d6:99:96:da:5b:f7:5a:31:d8:bc:4f:b6: 16:ea:8a:08:dd:2d:e3:96:28:14:44:ef:52:a2:1d: 85:8e:2a:3a:4a:dc:d1:11:44:52:33:a5:f4:f6:c4: ad:51:fb:6e:55:6e:93:d3:6f:a6:ff:f4:4e:61:9d: 3c:d5:f3:b8:a2:fb:fb:c6:12:60:e8:ed:78:00:66: d4:ea:3d:77:c2:8b:b6:fe:cc:15:de:aa:4f:f3:f3: e3:19:88:1f:37:4c:7f:48:e0:5a:68:7c:95:18:2c: 80:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C3:A5:AE:56:7C:B0:82:37:5E:D9:48:5C:4C:52:E3:76:50:44:B2 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cb:9e:69:6a:7c:06:a5:da:b1:b2:49:1e:8d:92:26:08:2b: ab:64:c0:59:45:d8:a5:86:d8:92:8c:27:b2:3b:b5:3d:d2:36: e4:db:83:b9:18:e6:cb:0f:fa:0f:0c:cc:81:62:c4:38:f3:66: 92:4d:ca:1f:6a:bd:1f:0b:c7:e0:7e:41:5d:f1:fc:69:2b:51: f6:61:aa:f7:71:02:30:e0:c2:a1:5e:58:91:c1:e1:aa:fc:83: 73:81:3a:d3:bc:ec:63:e7:70:04:cc:42:91:c2:7a:04:6a:a1: 56:35:37:38:84:5d:bf:92:19:6e:bc:c8:39:2c:74:97:69:26: 04:88:bc:2e:ce:f6:4b:0d:45:b4:80:d9:3a:b3:ef:7c:23:83: 96:0c:2b:88:92:a2:aa:fc:7e:bb:3f:3a:10:66:7f:b6:74:0a: 50:b1:0d:c9:3c:8e:db:9b:9c:1e:06:39:bd:53:07:7e:c7:6e: ba:b9:c3:95:af:16:b3:b3:9c:5c:d1:b1:84:45:33:65:d8:36: c0:53:99:2e:10:1e:7e:f2:69:d8:94:af:57:66:9d:00:38:dd: 8a:dd:75:76:bf:42:fc:16:30:24:5f:73:24:91:58:c6:3d:71: 9c:f2:ec:9e:74:65:48:77:e9:15:09:28:f7:6c:12:62:03:87: d1:ff:3f:33 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICScgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTE0MTQ1MDEwWhcNMjYwMTIxMTQ1MDEwWjAYMRYwFAYD VQQDDA02OTY3YWQyMi1mYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnD7ZlOa0uAYyKW7wUVGDzsaWtxMlIli8mz6Goq6kp1ciowNP2SiM8/wHsRF/ vMDECNCDt7Al0yTxAWZKlUUpsGh5As8RBVZxcuXDoFRIRr0RRcU8NFGfw1i2Bdyx 4h2Uyu9lONb5BsazJmcZstZMDAGciwHFG01a1jImCGVIKO2yny/gyypz6O8P5lDa FrPykc+Z8yZOuWjWmZbaW/daMdi8T7YW6ooI3S3jligURO9Soh2Fjio6StzREURS M6X09sStUftuVW6T02+m//ROYZ081fO4ovv7xhJg6O14AGbU6j13wou2/swV3qpP 8/PjGYgfN0x/SOBaaHyVGCyAZQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFAnDpa5W fLCCN17ZSFxMUuN2UESyMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAJy55panwGpdqxskkejZImCCurZMBZRdil htiSjCeyO7U90jbk24O5GObLD/oPDMyBYsQ482aSTcofar0fC8fgfkFd8fxpK1H2 Yar3cQIw4MKhXliRweGq/INzgTrTvOxj53AEzEKRwnoEaqFWNTc4hF2/khluvMg5 LHSXaSYEiLwuzvZLDUW0gNk6s+98I4OWDCuIkqKq/H67PzoQZn+2dApQsQ3JPI7b m5weBjm9Uwd+x266ucOVrxazs5xc0bGERTNl2DbAU5kuEB5+8mnYlK9XZp0AON2K 3XV2v0L8FjAkX3MkkVjGPXGc8uyedGVId+kVCSj3bBJiA4fR/z8z -----END CERTIFICATE-----Generated at Wed Jan 14 16:42:16 2026 by rpki-client