$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: nNcK1KACMUqk+dSFgqH81mu/Fxe0+AhBvC7KbqTY1hQ= Subject key identifier: F8:EF:E5:84:18:D7:31:50:56:DD:04:EF:BB:B6:47:A9:C2:87:78:7E Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A67 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49AF Signing time: Wed 04 Mar 2026 14:50:42 +0000 Manifest this update: Wed 04 Mar 2026 14:50:42 +0000 Manifest next update: Wed 11 Mar 2026 14:50:42 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: OYECNoJItcnp6K5KsYAlE51szSeJni9XN6lyYbzLIUU=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 14:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19047 (0x4a67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 4 14:50:42 2026 GMT Not After : Mar 11 14:50:42 2026 GMT Subject: CN=69a846c2-efcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:92:a4:dd:de:b7:82:ee:ef:a6:71:11:bd:ed: 22:53:e2:00:56:ec:aa:df:86:82:d2:35:bb:aa:30: 31:60:60:ad:7e:04:7e:a4:c7:db:bf:ba:ba:be:63: 76:e2:34:8c:e0:fb:6d:70:a2:ba:86:fd:a2:d6:34: fc:52:01:43:71:2d:67:24:51:0c:5e:c8:14:e6:5f: ea:95:7b:d7:61:b9:0d:7f:4b:ff:90:a7:d3:46:6a: a3:7c:a3:ae:2c:0b:b1:38:db:60:e7:56:af:f2:a1: 5e:63:ce:4f:79:66:80:f6:e1:57:c5:d0:8a:74:f6: 92:0e:1b:e9:78:2b:96:db:75:6c:1b:b6:53:ad:7c: c6:47:82:00:26:26:60:98:54:cb:de:51:f9:18:4a: 33:a2:a3:b0:f6:64:50:9b:cb:67:74:e1:a7:13:32: d9:55:b2:63:c8:02:04:51:e3:37:81:df:a7:83:b0: 85:dd:7e:fe:c1:2f:cb:df:43:5c:17:ef:06:fb:63: 94:f4:ae:e3:e0:31:54:7c:40:b8:82:09:03:ce:1d: dd:f1:1e:9c:3d:7f:c6:44:66:ea:96:b4:dd:b2:ff: c1:1d:7e:ae:c5:2b:c0:03:65:25:70:ae:36:05:ae: d7:85:46:33:d6:23:66:fd:70:1e:9e:df:e2:4e:91: 06:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:EF:E5:84:18:D7:31:50:56:DD:04:EF:BB:B6:47:A9:C2:87:78:7E X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:74:47:34:c7:e0:e9:95:58:2a:c5:d0:a3:ff:ac:44:6e:27: 3f:e0:60:76:7e:25:07:1d:bd:c0:b0:bd:b3:6e:5f:ac:97:73: 83:55:fe:87:57:36:77:fc:d1:8a:8b:f3:d3:07:0c:45:79:5d: b3:e6:cf:4b:31:6a:03:fe:36:d3:b7:41:2c:62:00:7e:6f:19: 9b:2a:6f:26:37:f0:e4:c6:5c:ab:77:22:73:31:86:e8:ed:4a: 6d:2a:54:c1:71:c7:5c:9f:f5:aa:48:1b:e0:f2:86:b6:93:9b: 4d:67:12:9e:bc:81:5b:ef:7c:93:78:33:39:23:fb:fd:3d:19: 63:fe:72:33:22:7b:33:ec:c7:e1:51:c2:10:7b:41:06:6b:7d: 4d:8d:34:b6:25:0f:f6:d3:e1:47:0b:a2:d6:aa:3f:e2:fc:1f: 2c:7e:c5:9e:ad:91:08:03:d3:f4:d9:ad:19:21:69:b2:42:c3: 98:f2:08:c1:b1:0a:5c:89:0c:c7:f5:a5:b2:7e:12:1c:65:a7: ec:e9:d2:1d:55:2d:e2:c4:e0:e1:00:c9:34:15:fe:11:64:c0: fe:64:5e:40:0b:1c:18:8e:91:46:b3:e9:5f:e0:f5:a4:f8:7d: ab:50:ad:93:43:86:f6:79:99:d3:45:4a:7c:3c:92:e3:64:ac: 13:38:5c:56 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzA0MTQ1MDQyWhcNMjYwMzExMTQ1MDQyWjAYMRYwFAYD VQQDEw02OWE4NDZjMi1lZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJKk3d63gu7vpnERve0iU+IAVuyq34aC0jW7qjAxYGCtfgR+pMfbv7q6vmN2 4jSM4PttcKK6hv2i1jT8UgFDcS1nJFEMXsgU5l/qlXvXYbkNf0v/kKfTRmqjfKOu LAuxONtg51av8qFeY85PeWaA9uFXxdCKdPaSDhvpeCuW23VsG7ZTrXzGR4IAJiZg mFTL3lH5GEozoqOw9mRQm8tndOGnEzLZVbJjyAIEUeM3gd+ng7CF3X7+wS/L30Nc F+8G+2OU9K7j4DFUfEC4ggkDzh3d8R6cPX/GRGbqlrTdsv/BHX6uxSvAA2UlcK42 Ba7XhUYz1iNm/XAent/iTpEGMQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPjv5YQY 1zFQVt0E77u2R6nCh3h+MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAVHRHNMfg6ZVYKsXQo/+sRG4nP+Bgdn4lBx29wLC9s25f rJdzg1X+h1c2d/zRiovz0wcMRXlds+bPSzFqA/4207dBLGIAfm8ZmypvJjfw5MZc q3ciczGG6O1KbSpUwXHHXJ/1qkgb4PKGtpObTWcSnryBW+98k3gzOSP7/T0ZY/5y MyJ7M+zH4VHCEHtBBmt9TY00tiUP9tPhRwui1qo/4vwfLH7Fnq2RCAPT9NmtGSFp skLDmPIIwbEKXIkMx/Wlsn4SHGWn7OnSHVUt4sTg4QDJNBX+EWTA/mReQAscGI6R RrPpX+D1pPh9q1Ctk0OG9nmZ00VKfDyS42SsEzhcVg== -----END CERTIFICATE-----Generated at Wed Mar 4 21:25:18 2026 by rpki-client