APF

API Publishing Function

Services →
Introduced in Rel-15

APF is the 3GPP network function that securely exposes standardized northbound APIs to authorized third-party Application Functions, acting as a controlled gateway for service exposure and network capability consumption.

Category
Services
Introduced
Rel-15
Where
Services › IMS
Specifications
5 specs
APF Description Purpose Related Classification Detected Changes Specifications

Description

The API Publishing Function (APF) is a critical component within the 3GPP Service-Based Architecture (SBA), specifically defined under the Common API Framework (CAPIF) for 5G systems. It operates as a central entity responsible for managing and publishing the availability of standardized network Application Programming Interfaces (APIs) to external consumers, known as Application Functions (AFs). The APF maintains a comprehensive catalogue of available APIs, detailing their functionalities, versions, and the service endpoints (represented by API Invokers) where they can be accessed. It acts as the primary discovery point for AFs seeking to utilize 3GPP network capabilities, such as Quality of Service (QoS) control, location information, network status monitoring, or charging interactions.

Architecturally, the APF is a logical function that can be deployed as part of a CAPIF core function or within a specific domain. It interfaces with other CAPIF core functions, notably the API Publishing Function (itself for management), the API Invoker Management Function (AIMF) which manages the entities that host the API endpoints, and relies on the CAPIF security functions for authentication and authorization. The APF does not directly handle API invocation traffic; instead, it publishes the information necessary for an AF to discover and subsequently invoke an API at the correct endpoint (the API Invoker). This publication includes technical details like the API name, version, protocol, data formats, and the network address of the serving API Invoker.

The operation of the APF is governed by policies and involves several key procedures. When a new API is deployed or an existing one is updated, the API provider (e.g., a Network Function like the NEF or PCF) registers its API with the APF through the API publishing interface. The APF validates this registration against policies and updates its catalogue. An AF seeking to discover available APIs queries the APF, typically after mutual authentication. The APF responds with a filtered list of APIs that the AF is authorized to see and use, based on the AF's credentials and subscription. This discovery process is foundational for enabling a dynamic, scalable ecosystem where network capabilities can be offered as a service.

Its role in the network is that of an enabler for secure and manageable service exposure. By centralizing API publication, the APF provides a single point of truth for API availability, simplifies discovery for application developers, and allows network operators to maintain control over which capabilities are exposed and to whom. It is a key enabler for vertical market segmentation, network slicing service exposure, and the integration of 5G networks with enterprise IT systems and third-party cloud applications, forming the backbone of the programmable network paradigm.

Purpose & Motivation

The APF was created to address the critical need for standardized, secure, and manageable exposure of 3GPP network capabilities to external applications. Prior to its specification in 3GPP Release 15, service exposure mechanisms were often proprietary, fragmented, and lacked a unified security framework. This made it difficult and risky for mobile network operators to open their networks to third-party developers and vertical industries (e.g., automotive, healthcare, manufacturing), stifling innovation and the creation of new revenue streams beyond basic connectivity.

The introduction of the APF, as part of the broader CAPIF, was motivated by the 5G vision of supporting diverse use cases and industry verticals. These verticals require programmable access to specific network functions—like guaranteed latency, reliable bandwidth, or device location—to build specialized applications. The APF solves the problem of how these external entities can dynamically discover what network services are available, understand how to access them, and be authenticated to do so. It provides the necessary governance layer, ensuring that exposure is not an ad-hoc process but a managed service with proper authentication, authorization, auditing, and lifecycle management of the published APIs.

By establishing a common framework for API publication and discovery, the APF reduces integration complexity for both network operators and application providers. It addresses the limitations of previous non-standardized approaches by providing a scalable, policy-driven model that supports commercial agreements, API versioning, and centralized logging. This enables a thriving ecosystem where network capabilities can be consumed as a service, which is fundamental for realizing the full economic and technological potential of 5G and future generations of mobile networks.

Classification

Part ofCAPIF
Related approachesNEF

Detected Changes Across Releases

from 3GPP Change Requests

Specific changes extracted from the „Change history“ tables of 3GPP specifications (105 CRs across 5 releases). Complements the general historical overview above with the evidence-based evolution of this function.

Rel-15 14 changes

In Release 15, the APF (API Publishing Function) was introduced as the entity enabling API providers to publish their Service APIs' information to facilitate discovery by API invokers. This function supports publishing mechanisms for both PLMN and third-party service APIs, including the ability to restrict discovery based on configured policies and to associate Serving Area Information with the APIs. The APF operates within the new Common API Framework (CAPIF), which provides authentication and authorization for API publishers and is applicable to both EPS and 5GS systems.

  • Corrections for CAPIF-1e and CAPIF-2e TS 23.222CR0002
  • Configuration items for CAPIF TS 23.222CR0007
  • Update to CAPIF relationship with 3GPP EPS and 5GS TS 23.222CR0008
  • CAPIF utilization by service APIs TS 23.222CR0010
  • Changes to CAPIF Publish Service API clause TS 29.222CR0003
  • Changes to CAPIF Events API clause TS 29.222CR0004

+ 8 more changes

Rel-16 18 changes

In Release 16, the APF function was extended to support CAPIF interconnection, enabling API publishing and discovery across different trust domains, including third-party providers. This introduced new procedures for publishing service APIs with serving area information and for managing APIs within an interconnected architecture. The updates also aligned APF operations for topology hiding and security within these expanded multi-domain environments.

  • CAPIF interconnection requirements TS 23.222CR0018
  • Integrated CAPIF with 3GPP EPS and 5GS network exposure TS 23.222CR0021
  • Functional architecture for CAPIF interconnection TS 23.222CR0033
  • API publish and API discover for CAPIF interconnection TS 23.222CR0035
  • Service API discover for CAPIF interconnection TS 23.222CR0051
  • Updates to APF procedures for 3rd party trust domain TS 23.222CR0055

+ 12 more changes

Rel-17 7 changes

In Release 17, the APF (API Publishing Function) was enhanced to support the PATCH method for updating published API resources, providing a more efficient partial update mechanism. The release also introduced support for API redirection and mandatory error codes to improve API invocation reliability and error handling. Furthermore, corrections were made to the data type of the APF identifier and to resource URIs to ensure consistency and accuracy in API definitions.

  • Support PATCH for the update of an APF published API resource TS 29.222CR0226
  • Clarification of Service-based interfaces interaction within CAPIF TS 23.222CR0079
  • Support redirection and mandatory error codes for CAPIF APIs TS 29.222CR0207
  • Resource URI correction on CAPIF APIs TS 29.222CR0210
  • Correction for CAPIF interconnection IEs TS 23.222CR0075
  • Correcting the data type of the APF identifier TS 29.222CR0237

+ 1 more changes

Rel-18 31 changes

In Release 18, the APF (API Publishing Function) was enhanced to support new deployment models and operational scenarios, specifically for Standalone Non-Public Networks (SNPN) and RNAA (RAN as an API) scenarios. The updates included architectural and functional model refinements to align CAPIF provider domains with SNPN trust domains and to support extensibility requirements from external groups like ETSI MEC. Furthermore, new procedures were added, such as a service API status monitoring capability and an enhanced service procedure for updating API subscriptions.

  • Additional CAPIF architectural requirements for SNA TS 23.222CR0090
  • CAPIF business relationship updates for SNA TS 23.222CR0091
  • CAPIF functional model updates for SNA TS 23.222CR0092
  • CAPIF extensibility as requested by ETSI ISG MEC TS 23.222CR0096
  • Solve CAPIF extensibility EN TS 23.222CR0099
  • Support CAPIF in SNPN TS 23.222CR0109

+ 25 more changes

Rel-19 35 changes

In Release 19, the APF (API Publishing Function) was enhanced to support CAPIF interconnection, enabling service API publishing, retrieval, update, and unpublish procedures across interconnected CAPIF provider domains. It also gained the capability to publish Network Slice Information as part of the service API information to support API discovery based on slice identifiers. Furthermore, new event mechanisms were introduced for service API lifecycle management and to support API invoker onboarding criteria.

  • CAPIF interconnection TS 23.222CR0201
  • Update to API invoker Roles in CAPIF TS 23.222CR0202
  • Additional CAPIF Interconnection-related requirements TS 23.222CR0231
  • Solving ENs on CAPIF interconnection TS 23.222CR0248
  • Correction on Revocation on CAPIF interconnection TS 23.222CR0255
  • Proposal for AEF instantiation support in CAPIF TS 23.222CR0261

+ 29 more changes

Explore further

Broader topics and technologies where APF plays a role.

Topics
Authentication (5G-AKA, EAP)Service Based ArchitectureMEC (Edge Computing)LTE / LTE-AdvancedPolicy & ChargingLawful Intercept
Technologies
LTE5G

Defining Specifications

3GPP specifications that define or reference APF, with the latest known release. Sourced from the 3GPP document catalog — see methodology.

SpecificationTitleRelease
TS 23.222 vj80 Common API Framework for 3GPP Northbound APIs Rel-19
TS 23.700 vk00 XR Services Application Enablement Layer Rel-20
TR 23.958 vj00 EDGEAPP alignment with ETSI MEC and GSMA OP Rel-19
TS 28.879 vj10 OAM for Service Management Exposure Study Rel-19
TS 29.222 vj40 Common API Framework (CAPIF) for 3GPP Northbound APIs Rel-19