$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: kM9HVtENIuEW4yMYFjlZIYSOCTxehTELbKRggrx6HIs= Subject key identifier: 6B:54:8C:E2:FD:CF:A0:3C:36:5C:22:04:9D:7C:F0:B8:71:00:42:91 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B5C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A9F Signing time: Wed 20 May 2026 14:51:16 +0000 Manifest this update: Wed 20 May 2026 14:51:16 +0000 Manifest next update: Wed 27 May 2026 14:51:16 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 7XExOihljDxLs1Une8XhitNIquXyhmmDDgf1aeIl0BU=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19292 (0x4b5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 20 14:51:16 2026 GMT Not After : May 27 14:51:16 2026 GMT Subject: CN=6a0dca64-27a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:af:97:f8:61:70:e1:6f:ae:b4:8c:60:6f: 5c:31:22:69:20:4f:7a:28:0e:dd:3b:a4:43:ce:cc: fa:6c:2e:5b:17:62:78:9d:c9:b0:a4:ed:2e:70:ee: f6:0b:55:b7:35:04:1d:33:f6:70:e4:0a:ea:28:bd: 8c:bd:db:9b:26:be:9a:86:87:21:3f:20:23:85:1f: e1:38:83:21:3a:f6:cf:73:9d:e8:dc:a0:61:0c:0d: d1:87:21:de:b9:71:0d:b5:6b:36:bc:ff:1d:72:ef: 4d:53:3a:cb:dc:82:e4:51:23:c4:4c:06:8e:7c:f5: 2c:6c:5a:a5:18:cc:1d:e5:7d:6b:41:91:57:18:48: de:f2:0c:7d:70:9a:2a:a6:08:04:34:32:96:de:ac: e7:16:cc:fe:5f:cd:fd:b5:5d:95:59:7a:3f:3e:7b: 94:c1:85:6f:5e:0a:7b:eb:62:e5:50:23:c9:47:c7: 5b:47:27:f4:3a:ad:3c:84:4e:8f:d4:22:51:7a:54: 15:74:c6:d3:88:10:86:8a:72:5a:59:0b:b6:90:03: 01:a0:46:f5:1d:79:88:3e:ed:3a:e7:d6:a1:94:1e: 54:3c:dd:bd:2a:46:d5:f0:80:54:33:e6:a1:2a:a4: 92:e7:7e:67:d3:85:b1:e4:a0:f8:0d:8e:c7:ea:5c: 8f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:54:8C:E2:FD:CF:A0:3C:36:5C:22:04:9D:7C:F0:B8:71:00:42:91 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:31:e3:7a:a3:f5:f9:4c:75:e6:f3:1d:e5:bc:34:db:84:b6: 41:82:cd:b7:f8:75:7a:65:30:f3:4a:0b:06:7f:2e:fd:58:7d: a9:8a:ff:5a:cf:63:f5:3c:b8:63:f3:bc:6f:34:a3:e4:ae:8d: 7f:60:fa:7b:a8:37:7c:ad:58:8b:8b:55:b8:d9:d3:a4:91:35: 3b:10:61:40:78:c4:4f:bb:0f:0a:32:5f:eb:8f:99:08:af:ed: 03:a0:08:7c:9b:ad:f2:a4:a5:29:60:18:b0:ba:b8:46:48:e5: 30:e5:29:eb:ff:dc:39:c1:5d:a1:a9:47:34:4e:aa:b9:9b:1f: 6e:d1:03:9d:5b:85:53:69:d8:bf:c2:e8:d1:66:36:ce:e2:4b: 5f:6d:62:27:42:0d:f3:a7:5a:73:db:a0:29:4a:fb:d4:c8:9e: 3c:32:3c:c3:f2:70:b2:0d:c2:d1:b7:b8:de:76:a7:0e:ff:46: b2:e8:18:0a:6e:d8:35:fc:e3:23:5f:94:ea:10:93:69:39:2e: 37:91:49:78:1b:57:5b:9d:4d:46:42:16:0e:f1:24:b0:85:60: 04:e2:f4:b9:94:3e:cf:55:30:d7:22:0a:c0:97:d9:7b:f0:1e: 8d:fd:5f:37:28:7b:65:f4:b6:d5:85:55:82:88:bc:db:0a:1e: dd:68:b1:b9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIwMTQ1MTE2WhcNMjYwNTI3MTQ1MTE2WjAYMRYwFAYD VQQDEw02YTBkY2E2NC0yN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquCvl/hhcOFvrrSMYG9cMSJpIE96KA7dO6RDzsz6bC5bF2J4ncmwpO0ucO72 C1W3NQQdM/Zw5ArqKL2MvdubJr6ahochPyAjhR/hOIMhOvbPc53o3KBhDA3RhyHe uXENtWs2vP8dcu9NUzrL3ILkUSPETAaOfPUsbFqlGMwd5X1rQZFXGEje8gx9cJoq pggENDKW3qznFsz+X839tV2VWXo/PnuUwYVvXgp762LlUCPJR8dbRyf0Oq08hE6P 1CJRelQVdMbTiBCGinJaWQu2kAMBoEb1HXmIPu0659ahlB5UPN29KkbV8IBUM+ah KqSS535n04Wx5KD4DY7H6lyPewIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGtUjOL9 z6A8NlwiBJ188LhxAEKRMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAfTHjeqP1+Ux15vMd5bw024S2QYLNt/h1emUw80oLBn8u /Vh9qYr/Ws9j9Ty4Y/O8bzSj5K6Nf2D6e6g3fK1Yi4tVuNnTpJE1OxBhQHjET7sP CjJf64+ZCK/tA6AIfJut8qSlKWAYsLq4RkjlMOUp6//cOcFdoalHNE6quZsfbtED nVuFU2nYv8Lo0WY2zuJLX21iJ0IN86dac9ugKUr71MiePDI8w/Jwsg3C0be43nan Dv9GsugYCm7YNfzjI1+U6hCTaTkuN5FJeBtXW51NRkIWDvEksIVgBOL0uZQ+z1Uw 1yIKwJfZe/Aejf1fNyh7ZfS21YVVgoi82woe3WixuQ== -----END CERTIFICATE-----Generated at Wed May 20 21:48:35 2026 by rpki-client