$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: ywYe+I9hgZzZ60g1bGOlWZQUEfxt4CVWEhrSJErSV0Q= Subject key identifier: 2B:A3:26:35:DF:D4:DE:E9:D9:59:59:5C:19:94:06:4E:5C:60:4D:45 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A7F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49C7 Signing time: Thu 12 Mar 2026 14:50:10 +0000 Manifest this update: Thu 12 Mar 2026 14:50:10 +0000 Manifest next update: Thu 19 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: oQqz30z6160OVOsGssSJTYnwXtfuX20ZVf31ERQ0BtU=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19071 (0x4a7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 12 14:50:10 2026 GMT Not After : Mar 19 14:50:10 2026 GMT Subject: CN=69b2d2a2-957c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:03:e6:0e:a5:37:71:d3:8d:79:b7:5b:3f:31: 9a:b7:3e:ba:c3:68:53:4f:dd:3f:9a:b3:6b:00:15: 60:97:9e:fe:62:48:90:e6:5d:3e:65:93:24:22:f5: af:d4:19:da:50:e4:57:4f:fe:3a:22:c3:ae:4f:b1: 8c:59:ac:6d:fd:b6:38:3e:0f:5d:30:82:04:3e:6c: 8f:4f:4e:38:ac:84:e7:10:bb:c9:7c:48:8b:c6:d9: 34:5c:bb:a6:99:53:c4:55:61:34:da:e2:db:90:05: cb:09:b8:58:62:a3:08:d0:8c:38:9a:d4:02:2d:b3: 84:46:94:f4:e0:01:9b:97:6d:93:d6:32:a0:ba:7c: 24:ec:bd:56:30:9f:c7:24:a5:b8:55:76:c6:ef:b5: 68:7d:06:da:70:a2:31:04:e7:e4:82:f1:95:e3:83: 54:18:80:51:0d:ac:df:10:f6:15:53:d0:a9:a8:ae: 8d:91:cf:56:ea:f7:48:9c:10:aa:81:5b:d1:a4:0c: a3:bd:12:55:dd:df:26:85:6f:ff:0c:95:ac:81:b8: 85:8d:ff:90:89:e7:84:b8:10:71:28:cd:2a:ad:08: c9:f8:fd:25:a3:62:01:21:22:ab:16:24:5d:e9:26: 07:04:24:76:0f:3f:1c:6b:ce:7b:c9:d9:71:3e:4f: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A3:26:35:DF:D4:DE:E9:D9:59:59:5C:19:94:06:4E:5C:60:4D:45 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:78:53:55:14:eb:bf:2b:a5:34:38:a4:6a:51:c6:c5:e6:9e: c0:c6:a5:3d:65:c7:17:75:b9:f9:0e:0d:27:75:ab:cd:9c:00: 8a:63:69:34:19:c4:e7:93:c5:a3:55:b4:88:ab:4d:80:bd:41: 4c:38:31:08:62:49:af:59:2e:e7:5d:63:59:a1:67:54:f7:35: a3:62:95:24:f6:ce:37:c0:6b:1d:87:a8:ec:6c:a5:bf:3f:c3: 5f:f1:e2:07:9e:7a:3c:43:2d:79:d1:4e:5d:00:37:c6:01:22: 01:f0:f4:bd:62:40:93:7d:82:18:56:0a:6a:16:b5:e8:cf:c5: d9:39:8e:0c:6a:0b:7c:55:07:0b:cb:f7:50:bf:f4:23:1c:d9: fe:c1:9e:01:37:02:20:a0:4b:c6:05:93:a0:b8:1c:41:05:68: 04:f2:cb:4b:1e:99:a9:d0:4e:8d:ae:14:09:9d:13:21:7d:11: e2:c1:83:42:9f:d1:30:56:f1:eb:7d:4b:8f:bf:9b:03:a6:f8: a2:90:71:4b:1f:50:c5:96:89:50:c4:24:0b:f6:04:78:03:18: 56:2d:e1:9f:b4:cb:34:db:49:03:b0:95:3f:04:ae:b4:73:3c: 9a:82:f3:1d:00:be:1f:6a:1a:69:20:5b:85:b8:c3:78:bb:c5: 4b:71:c5:80 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzEyMTQ1MDEwWhcNMjYwMzE5MTQ1MDEwWjAYMRYwFAYD VQQDEw02OWIyZDJhMi05NTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQPmDqU3cdONebdbPzGatz66w2hTT90/mrNrABVgl57+YkiQ5l0+ZZMkIvWv 1BnaUORXT/46IsOuT7GMWaxt/bY4Pg9dMIIEPmyPT044rITnELvJfEiLxtk0XLum mVPEVWE02uLbkAXLCbhYYqMI0Iw4mtQCLbOERpT04AGbl22T1jKgunwk7L1WMJ/H JKW4VXbG77VofQbacKIxBOfkgvGV44NUGIBRDazfEPYVU9CpqK6Nkc9W6vdInBCq gVvRpAyjvRJV3d8mhW//DJWsgbiFjf+QieeEuBBxKM0qrQjJ+P0lo2IBISKrFiRd 6SYHBCR2Dz8ca857ydlxPk81pwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFCujJjXf 1N7p2VlZXBmUBk5cYE1FMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAU3hTVRTrvyulNDikalHGxeaewMalPWXHF3W5+Q4NJ3Wr zZwAimNpNBnE55PFo1W0iKtNgL1BTDgxCGJJr1ku511jWaFnVPc1o2KVJPbON8Br HYeo7Gylvz/DX/HiB556PEMtedFOXQA3xgEiAfD0vWJAk32CGFYKaha16M/F2TmO DGoLfFUHC8v3UL/0IxzZ/sGeATcCIKBLxgWToLgcQQVoBPLLSx6ZqdBOja4UCZ0T IX0R4sGDQp/RMFbx631Lj7+bA6b4opBxSx9QxZaJUMQkC/YEeAMYVi3hn7TLNNtJ A7CVPwSutHM8moLzHQC+H2oaaSBbhbjDeLvFS3HFgA== -----END CERTIFICATE-----Generated at Fri Mar 13 01:32:01 2026 by rpki-client