$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: x2hkSMEEXG8xEa1q4D08omdCyiI+SrpXn69QoZRPocw= Subject key identifier: 80:26:3A:3D:46:07:46:E4:58:02:6C:83:66:B2:4C:DB:12:76:34:32 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B8B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4ACA Signing time: Tue 02 Jun 2026 15:18:51 +0000 Manifest this update: Tue 02 Jun 2026 15:18:51 +0000 Manifest next update: Tue 09 Jun 2026 15:18:51 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Irh59k6eBB4l4VDhxYAxMHn57Hsi3ASSc5J/gUEZ8L0=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 15:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19339 (0x4b8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 2 15:18:51 2026 GMT Not After : Jun 9 15:18:51 2026 GMT Subject: CN=6a1ef45b-cdb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:e6:7d:79:25:69:4e:05:f5:03:b7:15:ad:91: f3:25:25:d5:12:72:1f:9e:86:7f:d5:63:19:fe:52: 01:f8:b2:fb:17:7b:b9:ec:cb:5d:58:8f:cc:54:b3: 97:20:c2:80:a8:d9:7e:d5:21:c1:b3:3d:9b:91:fc: 7c:ff:63:80:6a:ad:df:85:b8:4c:d4:f2:93:c0:0a: 84:ad:f0:19:2e:e4:e8:18:33:77:81:28:20:9a:4d: 1b:65:f9:97:76:8a:8d:49:cc:b9:07:64:d5:d8:3f: a8:81:e4:4d:a1:72:4e:62:70:c0:34:99:39:46:95: 14:1b:1e:b5:73:91:2e:d9:ed:74:d0:d5:b0:2c:f6: 4a:28:10:26:82:1f:b8:79:6a:4c:67:fd:54:7e:1a: b1:b1:8d:8c:6f:37:fa:6d:bc:d2:12:c5:2b:24:e0: 03:b2:f6:2f:17:ba:18:55:30:fe:fe:af:c0:4e:10: 48:db:a9:4a:21:cf:9c:55:aa:07:78:60:82:80:81: ef:c4:dc:22:73:0a:f6:2f:d9:21:19:90:45:3d:d6: 4b:60:9a:79:6b:6f:ce:0e:c0:dd:89:38:ce:15:62: ee:9a:15:7a:08:33:3a:91:64:ee:2f:e4:67:e2:69: 1e:d6:d8:3c:83:ca:2c:4f:22:79:17:0f:9a:c2:28: b1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:26:3A:3D:46:07:46:E4:58:02:6C:83:66:B2:4C:DB:12:76:34:32 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a3:f9:e4:bd:ad:ef:eb:ce:84:b0:d9:f6:e2:07:d7:04:50: 50:cc:3d:f5:1f:01:7c:ac:3c:26:b5:93:fa:09:24:bd:9f:d5: 5e:66:9f:71:f7:9c:5c:27:92:14:25:7d:ee:20:63:fa:51:e0: 9f:c5:20:83:3c:10:2e:b6:cd:12:d1:ad:47:26:ad:57:ad:d4: 65:66:86:95:cb:5e:18:48:93:e2:d9:b8:b7:59:c6:13:78:4f: de:10:da:cf:95:8f:7a:d8:7d:a0:02:cf:ab:f0:79:12:2f:14: f4:da:ba:9c:19:42:49:8a:68:2b:b7:72:9f:f5:4e:0c:55:1d: 54:25:93:34:6c:cb:e4:34:18:10:80:2a:f6:11:cb:61:d9:36: fb:90:47:dd:db:cf:89:8a:72:d6:f3:97:7b:a3:7d:5b:49:af: 00:76:ba:8b:ec:57:a4:f9:03:4a:bd:8d:a9:c9:09:e5:d0:85: 15:a2:64:56:61:21:ee:05:d5:79:04:ec:ec:57:87:71:a8:54: 89:12:bb:c2:a6:9c:30:79:e7:5a:69:dc:5f:b3:4d:bc:ac:88: 06:2b:19:af:84:dc:37:2f:89:38:ca:99:42:92:33:fb:13:03: 80:28:51:03:8a:55:be:65:ef:52:2e:19:1e:88:37:1b:10:2c: 18:eb:2a:75 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjAyMTUxODUxWhcNMjYwNjA5MTUxODUxWjAYMRYwFAYD VQQDEw02YTFlZjQ1Yi1jZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAleZ9eSVpTgX1A7cVrZHzJSXVEnIfnoZ/1WMZ/lIB+LL7F3u57MtdWI/MVLOX IMKAqNl+1SHBsz2bkfx8/2OAaq3fhbhM1PKTwAqErfAZLuToGDN3gSggmk0bZfmX doqNScy5B2TV2D+ogeRNoXJOYnDANJk5RpUUGx61c5Eu2e100NWwLPZKKBAmgh+4 eWpMZ/1UfhqxsY2Mbzf6bbzSEsUrJOADsvYvF7oYVTD+/q/AThBI26lKIc+cVaoH eGCCgIHvxNwicwr2L9khGZBFPdZLYJp5a2/ODsDdiTjOFWLumhV6CDM6kWTuL+Rn 4mke1tg8g8osTyJ5Fw+awiixmwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIAmOj1G B0bkWAJsg2ayTNsSdjQyMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAA6P55L2t7+vOhLDZ9uIH1wRQUMw99R8BfKw8JrWT+gkk vZ/VXmafcfecXCeSFCV97iBj+lHgn8UggzwQLrbNEtGtRyatV63UZWaGlcteGEiT 4tm4t1nGE3hP3hDaz5WPeth9oALPq/B5Ei8U9Nq6nBlCSYpoK7dyn/VODFUdVCWT NGzL5DQYEIAq9hHLYdk2+5BH3dvPiYpy1vOXe6N9W0mvAHa6i+xXpPkDSr2NqckJ 5dCFFaJkVmEh7gXVeQTs7FeHcahUiRK7wqacMHnnWmncX7NNvKyIBisZr4TcNy+J OMqZQpIz+xMDgChRA4pVvmXvUi4ZHog3GxAsGOsqdQ== -----END CERTIFICATE-----Generated at Tue Jun 2 20:44:26 2026 by rpki-client