$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: JCsg8or/+mtCkQ+tL/7Rpsj59EDd1s76Jg169UG4bz8= Subject key identifier: 64:55:84:04:CE:05:2B:72:45:A3:B9:C6:8A:A0:35:75:C5:3F:97:E6 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AEA Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A2F Signing time: Wed 15 Apr 2026 02:50:12 +0000 Manifest this update: Wed 15 Apr 2026 02:50:11 +0000 Manifest next update: Wed 22 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: F5NtL7yypv0+oPfa1NJ0qsZE249ktTJyF9/IdCydspQ=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19178 (0x4aea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 15 02:50:11 2026 GMT Not After : Apr 22 02:50:11 2026 GMT Subject: CN=69defce3-5461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:07:d3:5d:90:b8:5f:42:66:9e:70:f2:c5:1e: e5:b3:d5:95:e8:ff:f9:4a:a0:eb:d0:38:8e:34:43: c0:3a:d1:12:2c:d0:1f:c2:1a:30:dc:6e:0a:51:8b: 69:ed:26:e9:b4:37:d0:89:36:4b:ad:80:31:48:ad: 06:bc:65:07:84:56:c2:cd:79:ea:63:1c:02:f2:5d: 47:93:db:a6:46:38:df:f1:28:bb:e1:70:e2:eb:39: 4e:5d:8a:d7:53:dd:e8:87:16:f0:3f:ac:0b:48:2c: f4:3f:dc:4a:80:15:58:30:19:8e:af:b9:fa:52:28: 13:e2:bf:a9:d7:fe:21:06:c2:87:d6:b5:28:49:af: ef:b8:04:7c:42:33:c8:ad:2b:43:e7:4a:f2:fe:c5: 2c:ce:d9:ff:8b:8c:a6:77:d4:e3:9e:36:bd:b9:38: a4:8e:53:7b:e5:5b:a2:4c:35:11:eb:48:2b:2c:c5: d3:78:f3:52:eb:41:35:9f:6a:1f:a5:6d:41:6b:0e: 63:27:93:51:05:42:b6:fd:a2:d9:d5:c7:45:99:53: 45:d2:d6:f5:9a:90:f2:74:19:84:2e:f2:da:20:a4: 14:b3:3a:7b:ff:19:59:90:e0:8f:7a:30:72:24:b1: 92:02:9e:eb:8e:9f:04:68:e8:be:e5:ec:1c:b0:56: 4e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:55:84:04:CE:05:2B:72:45:A3:B9:C6:8A:A0:35:75:C5:3F:97:E6 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:05:37:45:5c:0a:2d:09:3e:dc:ce:01:2e:8a:6d:2c:02:d8: f3:68:97:cb:f0:3c:18:83:3e:7c:be:57:3f:f9:d9:a9:50:80: 5c:9c:09:c8:08:19:31:17:37:6d:04:93:57:27:28:5e:2d:39: ab:dc:2a:13:6d:6b:a4:5c:c6:1f:c4:eb:9a:3d:3f:f0:22:65: 3b:41:a0:c9:5c:f1:f2:1b:08:77:19:b9:84:3d:15:c6:db:85: 69:9c:c8:34:5d:be:bb:54:f6:62:b6:e7:d3:4e:2a:68:f7:87: 43:eb:07:77:e0:7b:82:ca:20:73:d7:28:6f:0c:4e:46:c5:60: b9:4f:3b:5e:84:70:c9:0d:56:d9:88:fe:7f:fd:0b:1d:5d:65: c0:bb:f6:87:f9:c3:e5:ff:ae:d0:95:a9:ec:73:d9:d3:46:b0: 4c:56:fe:37:48:37:f6:0d:71:2b:8a:6a:29:87:3d:86:23:17: d9:6f:77:94:ad:2a:88:d0:1b:d2:d9:aa:a0:e0:48:4b:d6:b5: 9f:17:83:51:c1:26:27:02:ec:92:c6:78:a3:cc:11:92:56:6c: a0:23:18:46:8e:24:d2:a3:4f:af:2c:4d:6a:f4:91:7d:73:01: 11:49:bf:ff:e8:58:da:3a:af:33:ab:06:65:56:33:95:b2:4c: 7f:bc:d9:ef -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDE1MDI1MDExWhcNMjYwNDIyMDI1MDExWjAYMRYwFAYD VQQDEw02OWRlZmNlMy01NDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wfTXZC4X0JmnnDyxR7ls9WV6P/5SqDr0DiONEPAOtESLNAfwhow3G4KUYtp 7SbptDfQiTZLrYAxSK0GvGUHhFbCzXnqYxwC8l1Hk9umRjjf8Si74XDi6zlOXYrX U93ohxbwP6wLSCz0P9xKgBVYMBmOr7n6UigT4r+p1/4hBsKH1rUoSa/vuAR8QjPI rStD50ry/sUsztn/i4ymd9Tjnja9uTikjlN75VuiTDUR60grLMXTePNS60E1n2of pW1Baw5jJ5NRBUK2/aLZ1cdFmVNF0tb1mpDydBmELvLaIKQUszp7/xlZkOCPejBy JLGSAp7rjp8EaOi+5ewcsFZOtwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGRVhATO BStyRaO5xoqgNXXFP5fmMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAFgU3RVwKLQk+3M4BLoptLALY82iXy/A8GIM+fL5XP/nZ qVCAXJwJyAgZMRc3bQSTVycoXi05q9wqE21rpFzGH8Trmj0/8CJlO0GgyVzx8hsI dxm5hD0VxtuFaZzINF2+u1T2Yrbn004qaPeHQ+sHd+B7gsogc9cobwxORsVguU87 XoRwyQ1W2Yj+f/0LHV1lwLv2h/nD5f+u0JWp7HPZ00awTFb+N0g39g1xK4pqKYc9 hiMX2W93lK0qiNAb0tmqoOBIS9a1nxeDUcEmJwLsksZ4o8wRklZsoCMYRo4k0qNP ryxNavSRfXMBEUm//+hY2jqvM6sGZVYzlbJMf7zZ7w== -----END CERTIFICATE-----Generated at Wed Apr 15 14:53:25 2026 by rpki-client