$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 4A4I7r5JsR4SF2hVci3q9m+Oh6YUDS2pd58rck82RmU= Subject key identifier: B7:B2:C5:6F:7C:E3:30:AA:63:E5:66:D5:07:B0:60:68:57:63:D1:C2 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AAF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49F6 Signing time: Fri 27 Mar 2026 14:52:24 +0000 Manifest this update: Fri 27 Mar 2026 14:52:24 +0000 Manifest next update: Fri 03 Apr 2026 14:52:24 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: fgOLzWJiI/3OOqa2hIvKhXnHtknHVB+r2KB8NGMjuE8=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 14:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19119 (0x4aaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 27 14:52:24 2026 GMT Not After : Apr 3 14:52:24 2026 GMT Subject: CN=69c699a8-37c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a6:42:79:03:4f:53:85:a6:98:1b:80:a9:f9: 73:b6:a2:c6:9d:bc:10:e2:e2:fd:d8:36:ab:9f:2f: b9:60:e4:27:45:f3:bb:5d:f4:b0:76:43:bd:ce:73: 98:d4:66:3f:8d:b3:47:fc:bf:e6:25:15:e2:28:7e: b2:ae:11:c3:a9:4b:0a:0f:4e:b8:e7:6a:5e:ad:b9: 9f:bd:b9:2b:fa:5d:fa:52:7d:b1:65:ae:30:d9:6d: e0:86:e9:81:8c:dc:24:49:7b:bd:c3:f9:98:45:25: be:c9:13:34:f0:f9:86:ef:b1:f6:df:28:5f:55:95: 7d:da:a8:9c:39:a7:a6:55:49:43:c0:d1:52:53:89: 57:5a:64:51:c5:d7:88:f2:33:cb:c4:6b:55:dc:5b: 1d:14:52:4b:64:55:5e:30:56:1b:8a:9a:49:b3:86: e4:68:70:fd:c0:0c:b6:12:d6:d8:c8:9e:54:d8:32: 6d:53:f9:78:9d:a7:88:23:37:f8:3b:d0:5f:eb:64: 80:5e:22:10:97:3c:41:ec:64:7b:f6:bd:c0:6e:be: bb:b2:53:d9:42:83:bf:2f:33:bf:32:a6:a8:b1:46: 9b:92:f9:9d:f3:8c:51:6c:c4:2a:db:ff:e2:10:b6: 27:3a:7d:8a:ee:7c:aa:54:ac:6c:c0:2c:cc:5d:24: 64:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B2:C5:6F:7C:E3:30:AA:63:E5:66:D5:07:B0:60:68:57:63:D1:C2 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:52:11:1a:a5:d2:36:63:1a:a0:01:51:b6:41:0c:87:33:f9: ed:6d:a5:52:04:4c:3c:bf:00:3d:00:eb:7f:94:89:14:bd:27: a2:27:84:e8:5b:f4:b7:bf:4f:8e:8f:a9:5b:a1:05:97:9d:18: 7e:ab:66:24:5e:b4:b8:af:b0:28:e5:5a:04:b9:ae:68:75:0d: 36:2a:33:64:7f:93:23:5f:92:a9:31:2b:6a:85:39:dc:16:f8: 93:be:49:ad:cc:79:89:47:7a:a3:c2:29:2b:bb:f6:48:a9:7e: cb:bf:94:60:4b:f6:05:d2:d5:a7:45:78:f5:bb:97:f9:c2:12: 82:11:ae:b6:dd:58:85:04:41:55:71:f3:f1:54:ea:c5:ac:94: 84:85:c3:d7:2d:64:fc:35:88:30:51:75:cc:32:27:6c:84:84: e7:8d:54:c8:f5:d3:35:10:5c:72:05:da:c9:53:bd:dd:be:61: a9:c5:47:8b:18:9b:d9:08:69:d9:9a:cd:72:25:d3:a2:5a:9f: 5e:2e:d4:79:f8:df:0c:30:0c:99:3b:1b:8a:cb:bf:73:3a:e6: d9:22:e8:fd:2e:88:c6:b5:3a:e5:7c:c0:57:ec:76:ba:54:bd: 5f:16:8f:b9:7d:30:95:5c:8a:0b:7d:b7:e1:32:c2:77:a3:ff: 0e:b4:a8:3e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzI3MTQ1MjI0WhcNMjYwNDAzMTQ1MjI0WjAYMRYwFAYD VQQDEw02OWM2OTlhOC0zN2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqZCeQNPU4WmmBuAqflztqLGnbwQ4uL92Darny+5YOQnRfO7XfSwdkO9znOY 1GY/jbNH/L/mJRXiKH6yrhHDqUsKD06452perbmfvbkr+l36Un2xZa4w2W3ghumB jNwkSXu9w/mYRSW+yRM08PmG77H23yhfVZV92qicOaemVUlDwNFSU4lXWmRRxdeI 8jPLxGtV3FsdFFJLZFVeMFYbippJs4bkaHD9wAy2EtbYyJ5U2DJtU/l4naeIIzf4 O9Bf62SAXiIQlzxB7GR79r3Abr67slPZQoO/LzO/MqaosUabkvmd84xRbMQq2//i ELYnOn2K7nyqVKxswCzMXSRkFQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLeyxW98 4zCqY+Vm1QewYGhXY9HCMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEArFIRGqXSNmMaoAFRtkEMhzP57W2lUgRMPL8APQDrf5SJ FL0noieE6Fv0t79Pjo+pW6EFl50YfqtmJF60uK+wKOVaBLmuaHUNNiozZH+TI1+S qTEraoU53Bb4k75Jrcx5iUd6o8IpK7v2SKl+y7+UYEv2BdLVp0V49buX+cISghGu tt1YhQRBVXHz8VTqxayUhIXD1y1k/DWIMFF1zDInbISE541UyPXTNRBccgXayVO9 3b5hqcVHixib2Qhp2ZrNciXTolqfXi7UefjfDDAMmTsbisu/czrm2SLo/S6IxrU6 5XzAV+x2ulS9XxaPuX0wlVyKC3234TLCd6P/DrSoPg== -----END CERTIFICATE-----Generated at Fri Mar 27 17:39:49 2026 by rpki-client