This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: fpLqmvbc/c+T4oNgeCXzYcZpu+Mg1t/AKlYbYapwkjk= Subject key identifier: 3B:36:96:8C:04:E5:92:4D:DC:61:11:00:54:3A:DC:19:2F:04:5A:7A Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 497D Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 48CB Signing time: Sat 20 Dec 2025 14:50:10 +0000 Manifest this update: Sat 20 Dec 2025 14:50:10 +0000 Manifest next update: Sat 27 Dec 2025 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 8+HRSokdmLsP5QmBf//tsOANZdo8Wrqf/k/PNOrVxzc=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: 7cJnEBVLmqaTtSBdj3Qn+bODYO9Cd6sZH5D2PaBPTpY=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18813 (0x497d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Dec 20 14:50:10 2025 GMT Not After : Dec 27 14:50:10 2025 GMT Subject: CN=6946b7a2-8e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a0:1d:61:57:22:ce:f6:33:13:38:d2:9f:ad: 68:95:ac:23:d2:80:2a:3f:48:5f:65:b2:7b:ab:21: 54:18:93:98:c5:a5:16:1b:cf:ae:16:11:76:93:bc: 3d:02:3d:bf:99:00:a7:b7:f2:87:2c:c1:f4:84:de: d8:1a:dd:c3:59:21:44:aa:78:4e:a2:05:d3:a8:98: 80:8b:20:20:eb:81:91:82:ce:0d:d4:a9:6b:25:32: 90:1e:5b:ac:39:a0:e3:7c:06:57:15:cf:b9:98:cd: a4:51:8e:57:1a:0b:c8:be:e2:89:54:35:72:75:6b: 89:95:52:7d:23:ac:78:1f:58:59:7b:f7:c3:aa:d2: 98:9a:7c:c5:50:3d:42:70:09:50:91:8f:d6:73:3f: 44:a9:f4:e0:6c:bd:6e:27:9f:e8:0c:41:5c:ac:3a: 18:70:55:9f:20:44:db:80:c8:07:be:4d:4e:18:da: 15:32:23:2f:0f:4d:a8:f6:47:39:fb:6c:f7:97:fd: 52:3b:cd:69:c2:1e:a0:39:3d:9a:94:51:73:a6:ae: 9c:80:1a:45:5b:88:6a:8c:36:44:2e:07:de:87:57: fb:06:86:27:b1:8f:50:d6:47:6c:a9:15:37:bc:77: 2e:8e:4c:e2:ed:99:6c:4c:82:92:4e:a3:fa:a7:29: c1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:36:96:8C:04:E5:92:4D:DC:61:11:00:54:3A:DC:19:2F:04:5A:7A X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:11:82:dc:30:5f:66:1b:ca:ba:af:45:ca:55:4a:9d:64:59: e5:64:83:de:b4:84:f4:db:ac:cf:20:bf:a8:b9:a3:e7:cc:f9: 79:12:b1:2c:34:6c:87:f8:c9:be:4f:9e:81:ea:ee:c2:a3:f3: a7:d9:40:90:9d:b4:a2:3b:2f:93:47:55:a7:3b:7c:68:b2:00: 8c:d0:df:12:4c:18:f5:ba:5e:3c:0b:fe:6b:3d:41:01:bd:bc: a3:cd:f4:22:75:00:82:a0:f9:42:74:d7:50:53:60:43:0a:ad: ef:10:83:cb:d7:ba:1c:b3:63:6a:83:d2:49:03:df:eb:be:b4: 8f:e1:b5:89:bf:c0:50:af:26:0f:4f:b9:81:30:c3:51:52:a8: a8:ff:6b:bd:5a:d8:d5:d0:45:6f:9d:64:6d:d8:48:b6:2d:a6: 69:5a:1f:35:63:3a:df:cc:04:22:e8:fc:f9:45:a4:ac:7f:9d: 13:25:06:2c:c8:dc:49:88:8f:c1:42:3a:a2:e4:8f:f0:79:c8: 1f:c2:58:f6:43:e9:ff:41:df:a1:c9:f4:7e:29:90:e1:ba:c8: 69:e5:0e:86:f0:0a:f8:c5:0c:f7:46:fd:9c:69:66:f2:bc:5b: bf:f3:7a:88:65:91:76:93:5b:1d:bf:98:f1:a0:4b:bb:3e:5e: da:64:9a:71 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMjIwMTQ1MDEwWhcNMjUxMjI3MTQ1MDEwWjAYMRYwFAYD VQQDDA02OTQ2YjdhMi04ZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaAdYVcizvYzEzjSn61olawj0oAqP0hfZbJ7qyFUGJOYxaUWG8+uFhF2k7w9 Aj2/mQCnt/KHLMH0hN7YGt3DWSFEqnhOogXTqJiAiyAg64GRgs4N1KlrJTKQHlus OaDjfAZXFc+5mM2kUY5XGgvIvuKJVDVydWuJlVJ9I6x4H1hZe/fDqtKYmnzFUD1C cAlQkY/Wcz9EqfTgbL1uJ5/oDEFcrDoYcFWfIETbgMgHvk1OGNoVMiMvD02o9kc5 +2z3l/1SO81pwh6gOT2alFFzpq6cgBpFW4hqjDZELgfeh1f7BoYnsY9Q1kdsqRU3 vHcujkzi7ZlsTIKSTqP6pynBCwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFDs2lowE 5ZJN3GERAFQ63BkvBFp6MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA0EYLcMF9mG8q6r0XKVUqdZFnlZIPetIT0 26zPIL+ouaPnzPl5ErEsNGyH+Mm+T56B6u7Co/On2UCQnbSiOy+TR1WnO3xosgCM 0N8STBj1ul48C/5rPUEBvbyjzfQidQCCoPlCdNdQU2BDCq3vEIPL17ocs2Nqg9JJ A9/rvrSP4bWJv8BQryYPT7mBMMNRUqio/2u9WtjV0EVvnWRt2Ei2LaZpWh81Yzrf zAQi6Pz5RaSsf50TJQYsyNxJiI/BQjqi5I/wecgfwlj2Q+n/Qd+hyfR+KZDhushp 5Q6G8Ar4xQz3Rv2caWbyvFu/83qIZZF2k1sdv5jxoEu7Pl7aZJpx -----END CERTIFICATE-----Generated at Sat Dec 20 22:24:18 2025 by rpki-client