$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: t/2S1k6KHJVWPeMAKj573Wuw652/8UnXcUbfDStcP8A= Subject key identifier: 8A:D0:61:EC:12:52:EA:81:42:FD:FD:D0:78:56:B0:E3:83:AA:61:E4 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BE5 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B21 Signing time: Tue 30 Jun 2026 15:25:46 +0000 Manifest this update: Tue 30 Jun 2026 15:25:46 +0000 Manifest next update: Tue 07 Jul 2026 15:25:46 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Qf12qofZT18C8ABRdCqbBK87jrqdbiAdvKkl4N7Y1LU=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 13: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 Jul 2026 15:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19429 (0x4be5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 30 15:25:46 2026 GMT Not After : Jul 7 15:25:46 2026 GMT Subject: CN=6a43dffa-7b69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:76:65:86:ee:11:6b:7d:6a:3d:80:12:cc:e9: f4:3a:59:4d:83:15:20:39:b3:1b:4f:6a:04:48:da: 47:6f:51:8d:33:bc:d7:66:7b:1a:42:ab:ca:78:09: 6e:c7:cf:f9:57:2b:f4:58:b4:69:bd:cb:33:15:3d: bd:5c:8a:19:c8:8d:e0:ec:32:63:fa:fa:5b:ee:dd: 78:92:40:51:71:33:5d:46:c7:00:14:c7:7e:29:a7: 55:c9:d3:35:35:e7:4c:20:1a:4b:cc:17:3e:05:19: e5:9c:c8:78:81:12:da:88:2d:fd:63:23:61:a1:c5: b1:fc:fe:73:1d:5a:10:1c:29:85:cb:ae:a4:dc:da: 09:fc:c4:a3:4f:6b:b1:cd:d6:da:c0:b0:26:21:54: fc:df:9f:a7:37:8e:a2:df:b9:44:f3:02:3d:81:b0: c2:f8:12:e9:65:63:83:ba:26:38:c1:03:d2:e9:c3: 06:b0:1d:f6:66:a3:b4:cf:23:c3:2b:5b:73:5b:05: 7f:c2:20:b3:2f:72:20:ab:c2:f3:f0:82:99:c2:68: 89:cf:f4:9f:b5:5c:a8:5d:4c:99:00:56:11:f8:c6: d4:2a:a6:18:0a:56:a0:05:66:60:3b:64:59:0b:33: a9:ce:85:79:43:71:dc:18:4d:9c:ac:18:ce:f7:23: e5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D0:61:EC:12:52:EA:81:42:FD:FD:D0:78:56:B0:E3:83:AA:61:E4 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e6:02:42:90:37:66:ad:b6:07:9e:f4:ef:0c:3c:43:13:fc: ed:b1:65:0c:b1:ae:d5:cf:e5:29:fa:51:b0:68:7d:10:c8:04: 78:be:84:48:a3:19:7f:38:27:74:71:a2:30:d6:6a:53:04:56: be:6a:16:53:94:a3:93:5e:6a:09:09:6a:cd:a2:df:5a:ff:7d: 8a:f3:8f:f3:8f:e0:76:48:ee:e6:30:12:c1:14:50:c6:72:25: 81:9c:83:bb:77:c1:e2:69:b1:87:da:f1:02:41:04:85:34:bc: e7:21:f5:cb:34:2b:41:63:4e:47:00:50:70:0e:10:3f:73:83: 77:c5:60:7d:47:70:0c:67:ac:7b:85:b0:67:4a:eb:96:7a:e3: 69:18:57:63:e5:ce:04:55:58:c4:27:95:f1:f0:a6:fd:2a:11: 56:b0:44:75:9f:f3:a0:82:26:d5:e9:cf:6a:20:51:4e:61:10: 40:a0:73:46:1e:e9:cd:21:01:3a:79:8e:04:da:20:b4:b5:32: 6f:c5:76:55:47:cb:db:46:e3:85:0c:61:4f:c3:67:3b:4a:91: ff:0e:d1:9f:d2:7f:3e:0b:24:f3:cf:ef:4a:ca:07:3e:37:d6: 47:58:b0:b6:94:41:51:c5:96:47:e1:65:c1:cf:41:41:d8:9a: f8:1b:b2:61 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjMwMTUyNTQ2WhcNMjYwNzA3MTUyNTQ2WjAYMRYwFAYD VQQDEw02YTQzZGZmYS03YjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAknZlhu4Ra31qPYASzOn0OllNgxUgObMbT2oESNpHb1GNM7zXZnsaQqvKeAlu x8/5Vyv0WLRpvcszFT29XIoZyI3g7DJj+vpb7t14kkBRcTNdRscAFMd+KadVydM1 NedMIBpLzBc+BRnlnMh4gRLaiC39YyNhocWx/P5zHVoQHCmFy66k3NoJ/MSjT2ux zdbawLAmIVT835+nN46i37lE8wI9gbDC+BLpZWODuiY4wQPS6cMGsB32ZqO0zyPD K1tzWwV/wiCzL3Igq8Lz8IKZwmiJz/SftVyoXUyZAFYR+MbUKqYYClagBWZgO2RZ CzOpzoV5Q3HcGE2crBjO9yPlcwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIrQYewS UuqBQv390HhWsOODqmHkMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAduYCQpA3Zq22B5707ww8QxP87bFlDLGu1c/lKfpRsGh9 EMgEeL6ESKMZfzgndHGiMNZqUwRWvmoWU5Sjk15qCQlqzaLfWv99ivOP84/gdkju 5jASwRRQxnIlgZyDu3fB4mmxh9rxAkEEhTS85yH1yzQrQWNORwBQcA4QP3ODd8Vg fUdwDGese4WwZ0rrlnrjaRhXY+XOBFVYxCeV8fCm/SoRVrBEdZ/zoIIm1enPaiBR TmEQQKBzRh7pzSEBOnmOBNogtLUyb8V2VUfL20bjhQxhT8NnO0qR/w7Rn9J/Pgsk 88/vSsoHPjfWR1iwtpRBUcWWR+Flwc9BQdia+BuyYQ== -----END CERTIFICATE-----Generated at Tue Jun 30 23:15:56 2026 by rpki-client