This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: NRBxVViiecjfPzhlsCf8VJktSBgiA0+Ab3d8WRJ/D/c= Subject key identifier: F5:9B:A3:DA:BA:4C:E4:5A:F3:A2:85:15:01:21:1A:57:45:30:2F:F6 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 49E7 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4935 Signing time: Sun 25 Jan 2026 02:50:11 +0000 Manifest this update: Sun 25 Jan 2026 02:50:11 +0000 Manifest next update: Sun 01 Feb 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: gmOYRuoWpsAdoc9bLetfzVJioYk4AOPkW5oiq2HwV+s=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 8: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Feb 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18919 (0x49e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jan 25 02:50:11 2026 GMT Not After : Feb 1 02:50:11 2026 GMT Subject: CN=697584e3-f1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fe:73:4f:96:22:a4:72:d3:12:c6:0b:26:70: 8e:7d:87:d2:5b:7e:69:80:b3:aa:51:71:79:17:24: 69:f5:a9:9a:e8:d9:a0:83:0e:3b:a4:b9:d7:ba:67: 00:29:5d:65:5c:a1:b2:ff:df:ef:40:8e:31:98:11: ea:14:18:44:18:c5:28:e4:4e:1c:9a:05:4d:e7:22: 8b:50:13:c5:56:87:cf:30:0a:74:02:f5:2d:15:dc: 77:be:c6:08:54:26:30:0f:79:66:d1:01:f1:8d:82: 76:3f:f6:59:7e:3a:06:cf:ec:e1:5f:7c:ea:0e:7e: d8:51:e3:c8:b4:6a:b3:04:aa:6f:f5:a3:71:89:04: 4e:2e:dc:57:49:55:82:f9:4f:47:35:60:86:b4:60: 79:bd:37:23:bb:75:57:9a:ea:5d:ae:0f:20:e1:b5: 77:c9:56:3e:cc:f7:33:13:31:9e:ab:18:a0:04:f2: ee:0d:d5:e6:21:91:64:0f:f6:e6:a2:42:8f:7f:9f: d5:d4:5d:7d:d8:d5:30:9d:46:53:a0:65:fc:fa:5d: d8:75:78:3c:d5:05:a2:c3:d1:35:d4:42:57:a2:0e: a7:a0:73:0b:27:d4:08:6a:b3:22:9f:02:58:2a:80: 0e:4b:4c:c7:39:61:90:f7:27:6b:20:7f:c6:da:18: 6f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9B:A3:DA:BA:4C:E4:5A:F3:A2:85:15:01:21:1A:57:45:30:2F:F6 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b4:ab:cd:61:c6:0e:f3:4d:f9:18:c6:fa:2d:d2:c5:cf:df: 5c:2f:18:94:65:3b:e6:37:75:f0:15:22:41:4a:bf:ad:be:b6: 8c:1d:61:72:98:b2:34:76:a0:07:3b:d3:37:4a:34:77:2c:d1: 09:92:a6:3c:13:86:f3:e9:a8:ef:ba:8b:1f:20:b1:8a:0e:f0: 7e:95:28:9a:03:05:fb:bd:f8:e0:d1:3f:5d:ed:7e:6e:f8:fc: 54:b1:b3:23:fd:94:ac:3e:1b:2e:38:8f:ea:f0:70:10:24:01: 63:6e:a0:68:e0:77:7d:2f:33:e4:f4:1b:84:e4:ee:6d:a0:1b: a5:32:12:56:56:73:d7:34:fd:5d:46:d3:c6:08:69:76:36:23: 0f:24:10:35:ec:d6:9f:e8:0d:0d:6f:ff:38:a1:76:5b:60:dc: 58:45:00:dd:b6:76:73:b8:8a:cb:e3:45:52:0e:74:84:f8:a8: de:7d:01:a8:2d:47:39:e7:c6:00:31:83:ff:c6:bb:7b:d3:8f: 8b:e3:62:e3:0a:ad:a7:c0:e5:1a:20:05:ef:17:e5:a2:fd:ec: 8f:16:fe:5a:26:1d:5f:e0:78:64:5b:a4:8b:97:cd:c7:de:7d: 5c:48:76:ab:49:64:8d:88:d2:bd:30:0c:77:5b:6b:b2:16:dd: 83:aa:c1:06 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMTI1MDI1MDExWhcNMjYwMjAxMDI1MDExWjAYMRYwFAYD VQQDDA02OTc1ODRlMy1mMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/5zT5YipHLTEsYLJnCOfYfSW35pgLOqUXF5FyRp9ama6Nmggw47pLnXumcA KV1lXKGy/9/vQI4xmBHqFBhEGMUo5E4cmgVN5yKLUBPFVofPMAp0AvUtFdx3vsYI VCYwD3lm0QHxjYJ2P/ZZfjoGz+zhX3zqDn7YUePItGqzBKpv9aNxiQROLtxXSVWC +U9HNWCGtGB5vTcju3VXmupdrg8g4bV3yVY+zPczEzGeqxigBPLuDdXmIZFkD/bm okKPf5/V1F192NUwnUZToGX8+l3YdXg81QWiw9E11EJXog6noHMLJ9QIarMinwJY KoAOS0zHOWGQ9ydrIH/G2hhvowIDAQABo4IChzCCAoMwHQYDVR0OBBYEFPWbo9q6 TORa86KFFQEhGldFMC/2MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCRtKvNYcYO8035GMb6LdLFz99cLxiUZTvm N3XwFSJBSr+tvraMHWFymLI0dqAHO9M3SjR3LNEJkqY8E4bz6ajvuosfILGKDvB+ lSiaAwX7vfjg0T9d7X5u+PxUsbMj/ZSsPhsuOI/q8HAQJAFjbqBo4Hd9LzPk9BuE 5O5toBulMhJWVnPXNP1dRtPGCGl2NiMPJBA17Naf6A0Nb/84oXZbYNxYRQDdtnZz uIrL40VSDnSE+KjefQGoLUc558YAMYP/xrt704+L42LjCq2nwOUaIAXvF+Wi/eyP Fv5aJh1f4HhkW6SLl83H3n1cSHarSWSNiNK9MAx3W2uyFt2DqsEG -----END CERTIFICATE-----Generated at Sun Jan 25 06:07:51 2026 by rpki-client