$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Q5JZkDv36Ku9+Uvj93S1ay+oI4VF11neL3GekUT8yIg= Subject key identifier: EA:E2:05:5C:F6:4C:8F:0D:69:26:DE:BE:74:D2:73:DD:6A:03:69:54 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B86 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AC6 Signing time: Mon 01 Jun 2026 15:11:29 +0000 Manifest this update: Mon 01 Jun 2026 15:11:28 +0000 Manifest next update: Mon 08 Jun 2026 15:11:28 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: AQLUCHzpzKEuRItMy9YzPApxWPciTJp0nhkXDafLsIs=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: 5yedQO1PzqUXxZ2rsQP+7ITO5JhSlZ8SooDfu3jmjQ0=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 12: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 15:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19334 (0x4b86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 1 15:11:28 2026 GMT Not After : Jun 8 15:11:28 2026 GMT Subject: CN=6a1da121-4d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7b:0a:b4:7a:79:72:14:53:00:6d:18:a8:0c: 1d:07:dc:80:b2:5e:88:88:5b:26:f8:59:f0:0b:26: 82:b6:54:1d:0c:eb:e8:41:d9:ff:89:38:30:33:28: 38:0f:15:0d:3e:d0:04:2d:92:51:c3:49:7a:c4:d4: 97:e3:29:9a:59:99:38:2d:80:87:3e:c0:b1:de:41: 4f:6b:31:83:ed:ca:8e:d2:05:cb:76:ad:c0:ca:1f: 8e:c7:df:ea:c9:15:62:e3:91:fb:bf:db:6d:b6:39: 90:12:ff:0d:e0:96:d6:b1:f2:8e:cc:de:df:8f:6a: 77:59:91:52:df:e1:d0:b7:f6:56:df:03:3c:bc:ba: db:64:db:34:ae:74:c9:e3:0b:92:1b:31:95:13:cb: 90:8b:91:5e:dd:f3:17:4c:4f:2e:30:d5:47:46:bc: 7b:b4:9a:f6:5c:9e:7a:0d:5b:92:bc:b1:90:60:fd: a7:ba:85:05:f3:3b:f8:98:f9:e3:0b:dc:b5:39:a3: e1:ea:df:c9:92:ba:b7:2f:ce:f4:b3:b8:25:51:79: 7c:3b:b1:e5:e2:75:e8:93:70:44:0b:da:77:fb:8c: ec:b7:e9:96:96:15:6b:38:07:ab:94:89:c8:0c:0b: 27:a2:05:86:f0:1b:03:0c:91:0b:c3:b1:67:ff:94: a9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E2:05:5C:F6:4C:8F:0D:69:26:DE:BE:74:D2:73:DD:6A:03:69:54 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fb:9a:80:d4:d5:55:83:74:4c:97:78:aa:3b:65:48:9c:53: 88:f2:88:9a:62:6b:64:46:52:58:49:d9:4d:1a:25:3f:74:09: c8:90:79:18:a3:da:c6:53:5a:35:0f:30:a0:54:a1:0a:da:2c: 8c:48:40:ad:c7:a9:1d:52:9f:e3:e9:32:b2:ef:c1:a3:a9:34: 73:9c:f3:22:9c:15:a9:54:ed:31:2e:66:a0:ab:b4:29:d6:3a: 66:8a:1c:66:5d:ce:89:09:3d:19:3e:33:5d:65:3a:53:bc:da: f1:03:e4:19:d7:8c:d6:cd:b0:a0:06:8d:29:7c:f1:d7:ba:b1: e1:1a:00:fc:5c:fa:c1:5f:71:b5:90:47:b7:34:d6:fb:5c:15: 13:f5:37:db:f3:22:7c:b5:5a:29:ae:a0:07:28:c8:1b:df:a7: 99:b6:1c:c4:92:68:4a:58:4f:18:65:b5:12:d6:82:b3:31:be: d0:a0:66:aa:e5:de:d7:b5:e7:8d:af:63:b7:99:e6:9a:51:76: e1:b1:d0:7d:b3:23:a0:25:98:00:dd:20:22:27:66:8c:56:6c: 59:87:65:41:f5:a9:3e:fe:54:13:95:6a:aa:b8:5c:71:d5:db: ef:2f:a7:c6:d6:db:c7:3b:74:40:0d:16:8c:07:c1:b1:60:f1: e8:bc:ae:00 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjAxMTUxMTI4WhcNMjYwNjA4MTUxMTI4WjAYMRYwFAYD VQQDEw02YTFkYTEyMS00ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi3sKtHp5chRTAG0YqAwdB9yAsl6IiFsm+FnwCyaCtlQdDOvoQdn/iTgwMyg4 DxUNPtAELZJRw0l6xNSX4ymaWZk4LYCHPsCx3kFPazGD7cqO0gXLdq3Ayh+Ox9/q yRVi45H7v9tttjmQEv8N4JbWsfKOzN7fj2p3WZFS3+HQt/ZW3wM8vLrbZNs0rnTJ 4wuSGzGVE8uQi5Fe3fMXTE8uMNVHRrx7tJr2XJ56DVuSvLGQYP2nuoUF8zv4mPnj C9y1OaPh6t/Jkrq3L870s7glUXl8O7Hl4nXok3BEC9p3+4zst+mWlhVrOAerlInI DAsnogWG8BsDDJELw7Fn/5SpgQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOriBVz2 TI8NaSbevnTSc91qA2lUMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAX/uagNTVVYN0TJd4qjtlSJxTiPKImmJrZEZSWEnZTRol P3QJyJB5GKPaxlNaNQ8woFShCtosjEhArcepHVKf4+kysu/Bo6k0c5zzIpwVqVTt MS5moKu0KdY6ZoocZl3OiQk9GT4zXWU6U7za8QPkGdeM1s2woAaNKXzx17qx4RoA /Fz6wV9xtZBHtzTW+1wVE/U32/MifLVaKa6gByjIG9+nmbYcxJJoSlhPGGW1EtaC szG+0KBmquXe17Xnja9jt5nmmlF24bHQfbMjoCWYAN0gIidmjFZsWYdlQfWpPv5U E5VqqrhccdXb7y+nxtbbxzt0QA0WjAfBsWDx6LyuAA== -----END CERTIFICATE-----Generated at Mon Jun 1 18:36:22 2026 by rpki-client