$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: qOEav8E1T/kaFtclKnYQTJUOrMWqxYdVuzF52zf4Ino= Subject key identifier: 29:F7:66:53:38:09:ED:F4:4E:9D:A8:D5:A3:94:A0:53:48:9F:11:DC Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B0B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A50 Signing time: Sun 26 Apr 2026 02:50:11 +0000 Manifest this update: Sun 26 Apr 2026 02:50:11 +0000 Manifest next update: Sun 03 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: EsXZ/hs7LQkVaEy3h8lD/wc7uMdpvF6V4lgXioeu6js=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 12: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19211 (0x4b0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 26 02:50:11 2026 GMT Not After : May 3 02:50:11 2026 GMT Subject: CN=69ed7d63-2bda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1d:df:ce:e0:2f:94:31:41:47:93:46:c6:5b: 13:63:4e:cc:f1:1a:42:1f:2e:ac:44:97:71:51:e3: 31:3b:d1:a7:5e:20:29:98:6b:ad:7a:5f:a7:d8:65: 4e:2a:55:c7:44:77:6f:49:b4:11:9d:06:cd:cd:2c: 17:42:94:5a:17:f7:4d:c2:01:eb:83:50:ae:4f:4f: 9c:44:62:15:2a:9e:3f:47:4a:fd:9d:76:4b:22:b3: 3e:15:b2:4c:05:a3:35:bc:95:e3:3c:2b:4c:0d:93: 10:6e:4a:6f:14:9a:5a:d6:2f:83:88:b7:30:33:e9: 6a:5d:e6:e7:7a:f6:f8:74:2b:d8:8e:97:b7:df:4d: 48:78:62:e9:c5:2d:bf:93:b8:39:99:e5:d4:93:80: b5:2d:92:75:2e:f7:30:e9:7c:dc:2f:51:5d:3c:6e: 81:5c:67:31:e3:7a:b4:b9:9e:3e:44:13:90:22:ee: f6:9e:f1:2b:0c:35:e7:ea:b0:0d:15:9c:01:fc:b3: 4c:6e:66:89:85:93:70:7b:97:a0:5d:5f:d5:0a:83: f6:5e:0d:60:7d:32:94:98:60:81:11:95:e6:ee:be: 98:93:52:8f:e3:bb:dd:61:cd:f7:c5:25:77:f6:7a: 36:a1:4a:b5:95:15:58:20:79:d2:74:85:06:dd:bc: 21:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F7:66:53:38:09:ED:F4:4E:9D:A8:D5:A3:94:A0:53:48:9F:11:DC X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:bf:51:64:f5:b4:47:b2:72:e1:f7:8a:36:26:ac:dc:3e:17: 8b:3b:99:bd:6e:5d:26:69:0f:77:e2:b1:ff:08:ae:b9:ee:61: d4:b4:81:53:a8:39:58:15:d6:db:4f:ae:20:ae:30:06:a7:44: 86:47:23:53:21:d5:fa:30:15:5f:d0:2a:a6:a1:4a:05:d6:dc: f4:44:7b:4d:a0:0a:f7:5f:07:c9:f3:82:31:75:86:f7:23:1a: be:8e:cb:3c:00:85:e9:90:87:c9:f8:8e:df:a1:96:fd:42:33: af:ae:38:a0:11:3d:dd:65:96:0a:6f:df:06:50:15:2e:a8:5d: 8f:22:96:39:06:03:a7:b5:3c:6a:4c:eb:97:ec:11:2a:47:f8: 08:8e:c6:ff:7e:61:37:19:c7:67:dd:e2:27:66:57:86:ac:0a: 7d:66:c4:23:ea:0a:1f:5a:d8:f4:e5:7c:0e:e0:dc:ff:d9:72: 8e:23:86:97:9b:f0:de:fa:49:15:f1:94:9b:8a:49:1e:f7:2a: b0:1e:21:6a:3c:d9:d2:09:16:c9:3c:47:a2:c0:55:cc:dd:5f: 4a:25:62:32:5b:12:af:b7:6b:1b:19:3a:e0:87:d7:9d:76:b1: 12:95:e0:c3:8a:6a:b1:66:ba:78:cc:eb:05:0b:ad:59:e0:ff: 36:d9:87:7d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI2MDI1MDExWhcNMjYwNTAzMDI1MDExWjAYMRYwFAYD VQQDEw02OWVkN2Q2My0yYmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwR3fzuAvlDFBR5NGxlsTY07M8RpCHy6sRJdxUeMxO9GnXiApmGutel+n2GVO KlXHRHdvSbQRnQbNzSwXQpRaF/dNwgHrg1CuT0+cRGIVKp4/R0r9nXZLIrM+FbJM BaM1vJXjPCtMDZMQbkpvFJpa1i+DiLcwM+lqXebnevb4dCvYjpe3301IeGLpxS2/ k7g5meXUk4C1LZJ1Lvcw6XzcL1FdPG6BXGcx43q0uZ4+RBOQIu72nvErDDXn6rAN FZwB/LNMbmaJhZNwe5egXV/VCoP2Xg1gfTKUmGCBEZXm7r6Yk1KP47vdYc33xSV3 9no2oUq1lRVYIHnSdIUG3bwhZQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFCn3ZlM4 Ce30Tp2o1aOUoFNInxHcMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAoL9RZPW0R7Jy4feKNias3D4XizuZvW5dJmkPd+Kx/wiu ue5h1LSBU6g5WBXW20+uIK4wBqdEhkcjUyHV+jAVX9AqpqFKBdbc9ER7TaAK918H yfOCMXWG9yMavo7LPACF6ZCHyfiO36GW/UIzr644oBE93WWWCm/fBlAVLqhdjyKW OQYDp7U8akzrl+wRKkf4CI7G/35hNxnHZ93iJ2ZXhqwKfWbEI+oKH1rY9OV8DuDc /9lyjiOGl5vw3vpJFfGUm4pJHvcqsB4hajzZ0gkWyTxHosBVzN1fSiViMlsSr7dr Gxk64IfXnXaxEpXgw4pqsWa6eMzrBQutWeD/NtmHfQ== -----END CERTIFICATE-----Generated at Sun Apr 26 16:02:46 2026 by rpki-client