$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 2i83spFDmJgldLfTtyZiehPFQFEF7ocKa3vB3Z6dbm4= Subject key identifier: 58:EB:05:0D:07:67:7E:51:01:02:40:30:C4:ED:E7:90:3C:EE:4B:FB Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BDA Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B17 Signing time: Sat 27 Jun 2026 14:50:12 +0000 Manifest this update: Sat 27 Jun 2026 14:50:11 +0000 Manifest next update: Sat 04 Jul 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: mG9pBpSm9n2D+0I39wPF9Yat16KxQuu5uESDchv/uLc=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Jul 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19418 (0x4bda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 27 14:50:11 2026 GMT Not After : Jul 4 14:50:11 2026 GMT Subject: CN=6a3fe324-8fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:76:64:20:41:ef:c5:90:83:e0:1f:0f:db:73: 4e:27:8c:0a:14:63:29:ef:fe:31:06:24:e0:aa:b2: 87:0a:42:6c:4d:85:ab:91:c2:0f:3e:69:e2:b3:34: 37:d1:70:f6:0a:fb:45:f4:f1:63:89:97:11:e6:19: 4a:20:75:ef:3e:6a:f9:3d:61:d5:d7:ba:9f:07:d4: f8:75:3f:a6:f5:0d:59:a7:bd:ec:31:d6:2f:c8:d2: 02:fd:76:9e:39:12:71:36:54:03:a0:45:35:18:50: 40:3f:3f:69:8e:b6:98:e0:62:67:31:1c:bb:5c:09: 02:65:72:cc:a5:99:d3:52:ca:b6:a8:31:e1:f9:6e: 89:ed:59:2d:88:b1:c9:c4:9a:b5:b0:1d:26:3e:3f: 68:b7:b5:67:a2:53:91:a9:98:c3:06:0b:2a:5a:bf: c0:f8:dc:0e:2f:b2:bc:b3:51:42:14:ab:72:8c:3c: 12:f5:da:4c:85:ab:8c:b4:35:6b:32:1c:e0:5d:4f: 50:f9:e8:62:dd:fb:5b:06:f0:5a:3b:33:0a:82:27: 89:37:b5:64:09:d3:7a:5b:c7:4b:bc:5f:6d:a2:02: 3e:5c:56:cc:d1:3c:1a:eb:48:5b:57:19:83:a0:15: 96:5d:e8:03:0c:b6:16:dd:03:67:d5:c6:b8:76:0d: b1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:EB:05:0D:07:67:7E:51:01:02:40:30:C4:ED:E7:90:3C:EE:4B:FB X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:94:fe:a0:23:45:05:c0:8b:31:95:73:d5:82:49:47:0f:c3: 87:04:73:f4:21:e6:f8:03:0d:d3:73:a9:4e:9e:72:17:20:8e: 8f:c2:6c:79:51:54:45:8b:b5:e4:29:8c:8f:0f:31:7c:5e:ba: a8:89:dd:e0:d8:85:8d:65:61:45:0d:23:09:ee:a1:02:ff:79: 94:63:42:0f:35:6f:b8:a8:8e:e5:5c:5d:5d:26:f6:e0:07:98: c9:a4:dc:be:17:e6:b3:5e:e3:ee:a5:66:47:7e:57:d5:a1:5d: d2:8f:65:63:e7:47:d5:c2:8c:fc:4e:ee:58:1d:7a:3b:25:d9: c3:1f:84:1b:c8:a3:04:e2:55:7c:41:7e:f6:dc:7e:75:bf:33: 73:a4:15:8d:f3:bc:b3:37:a2:2a:72:f3:ec:c1:9e:81:e6:d8: 02:ec:5c:0a:9d:10:c9:6a:2b:d2:4d:3f:89:6b:4b:5a:76:fb: 37:fd:d6:60:6d:ea:0b:d5:e4:b7:e0:64:5f:25:97:af:ea:f9: 78:6c:b4:c7:df:d2:e6:82:95:c1:0a:94:ab:b2:a4:b5:dd:1d: ab:7e:3a:67:7b:52:5d:a8:c5:0d:2b:13:48:fb:21:4d:c0:ed: 9b:6e:23:34:88:13:67:bc:60:79:44:6c:e5:9c:c6:8d:da:fa: f3:8d:63:76 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI3MTQ1MDExWhcNMjYwNzA0MTQ1MDExWjAYMRYwFAYD VQQDEw02YTNmZTMyNC04ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3ZkIEHvxZCD4B8P23NOJ4wKFGMp7/4xBiTgqrKHCkJsTYWrkcIPPmniszQ3 0XD2CvtF9PFjiZcR5hlKIHXvPmr5PWHV17qfB9T4dT+m9Q1Zp73sMdYvyNIC/Xae ORJxNlQDoEU1GFBAPz9pjraY4GJnMRy7XAkCZXLMpZnTUsq2qDHh+W6J7VktiLHJ xJq1sB0mPj9ot7VnolORqZjDBgsqWr/A+NwOL7K8s1FCFKtyjDwS9dpMhauMtDVr MhzgXU9Q+ehi3ftbBvBaOzMKgieJN7VkCdN6W8dLvF9togI+XFbM0Twa60hbVxmD oBWWXegDDLYW3QNn1ca4dg2x9QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFjrBQ0H Z35RAQJAMMTt55A87kv7MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAaJT+oCNFBcCLMZVz1YJJRw/DhwRz9CHm+AMN03OpTp5y FyCOj8JseVFURYu15CmMjw8xfF66qInd4NiFjWVhRQ0jCe6hAv95lGNCDzVvuKiO 5VxdXSb24AeYyaTcvhfms17j7qVmR35X1aFd0o9lY+dH1cKM/E7uWB16OyXZwx+E G8ijBOJVfEF+9tx+db8zc6QVjfO8szeiKnLz7MGegebYAuxcCp0QyWor0k0/iWtL Wnb7N/3WYG3qC9Xkt+BkXyWXr+r5eGy0x9/S5oKVwQqUq7Kktd0dq346Z3tSXajF DSsTSPshTcDtm24jNIgTZ7xgeURs5ZzGjdr6841jdg== -----END CERTIFICATE-----Generated at Sat Jun 27 18:57:45 2026 by rpki-client