$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 8LouxZlhQGuFRB75DzD3JvGEcPIOo/On7s/ISkTffFY= Subject key identifier: 5A:89:F7:7A:E8:C6:D4:10:B8:88:D2:0B:47:32:48:5A:CF:95:D6:55 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BCC Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B09 Signing time: Tue 23 Jun 2026 02:50:11 +0000 Manifest this update: Tue 23 Jun 2026 02:50:11 +0000 Manifest next update: Tue 30 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 5S+nQDUxnOQb/junNV/JB5KDfbG+keFKd7jED3fYnSQ=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 7: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 12: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19404 (0x4bcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 23 02:50:11 2026 GMT Not After : Jun 30 02:50:11 2026 GMT Subject: CN=6a39f463-8b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f4:12:ed:12:bd:7a:65:84:de:a3:c2:32:f0: c5:41:fe:04:4f:54:f6:8f:d7:d4:a0:f3:af:02:c9: 2b:61:8d:e8:e5:33:55:17:3a:75:e1:61:f8:cd:de: 65:ab:69:a3:b7:30:5c:f8:3c:ec:60:94:d9:f9:3e: 46:05:1d:8a:cc:eb:9b:b9:88:ce:0c:2b:85:4d:74: e7:dd:77:9b:f7:c3:e1:48:b5:f8:8e:0a:99:c8:f6: cc:c6:c5:54:fc:81:b5:54:4f:88:59:1f:c4:df:0f: 74:4b:32:9d:99:b9:16:56:71:1e:57:31:2f:c1:de: 32:d1:56:46:0e:6f:10:b9:4f:ba:c8:2e:27:76:56: 62:e3:1e:cf:47:2d:ca:30:ff:2c:e0:df:60:0e:6b: 49:ea:7b:5a:43:73:e3:e0:26:45:58:7a:93:fc:8d: 4f:f3:45:a3:79:6b:24:cd:ed:ea:7d:7c:a5:67:0c: 1b:ad:71:61:36:71:ad:bc:3c:32:c5:2b:5b:a9:9c: a7:03:6d:fe:b8:7b:f7:c7:91:80:ca:03:48:c8:54: ac:4c:11:1d:9c:a1:b5:e6:b0:74:9d:d0:10:b6:80: 67:87:c8:7d:89:0d:80:15:21:fe:38:bd:ab:b5:23: e2:ed:b8:b3:64:e9:2d:2d:37:0a:66:e3:e2:5c:d9: 51:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:89:F7:7A:E8:C6:D4:10:B8:88:D2:0B:47:32:48:5A:CF:95:D6:55 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:29:fc:f0:73:7f:1b:47:76:37:7a:60:11:53:2f:c5:89:14: 02:83:01:e9:6c:77:b9:d8:3d:59:92:ac:30:8e:18:63:c0:64: c1:29:d4:21:08:03:fd:6a:91:d1:b9:4d:04:0c:fa:d8:1a:31: fa:ef:26:2f:0c:e7:fd:90:4d:87:46:a0:db:10:e8:5d:d0:3b: 8d:44:f9:97:a5:8f:5a:fe:0f:97:8b:3c:9d:95:49:34:b5:91: 3c:1e:0e:0d:e3:2d:ea:23:63:80:ac:b8:4a:bc:be:35:64:0d: 82:60:e8:0a:32:36:79:3b:1d:d5:e5:cb:34:4f:53:a7:fc:c2: 8f:90:47:ff:bc:b9:3e:70:f9:13:0d:9a:45:d7:e2:af:8f:9f: b2:94:1e:5c:29:9a:b6:b7:cf:f5:92:93:27:7c:f3:32:43:ca: a4:c8:75:9e:34:27:7b:b4:54:1f:ff:e4:4b:fe:88:dc:c7:c2: 46:23:00:be:41:24:f0:25:04:33:3d:ba:dd:a6:d2:04:58:75: 8a:e9:90:96:52:fe:a5:9d:de:e6:e5:5e:3e:9b:09:f6:6c:8e: 78:f6:d7:1b:d1:6e:6f:00:96:5e:a2:20:fe:f1:e8:73:63:2c: 4b:7f:22:66:98:8f:8c:48:0d:9b:8f:2b:c9:b2:ed:97:5d:6c: cd:0f:39:dc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjIzMDI1MDExWhcNMjYwNjMwMDI1MDExWjAYMRYwFAYD VQQDEw02YTM5ZjQ2My04YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfQS7RK9emWE3qPCMvDFQf4ET1T2j9fUoPOvAskrYY3o5TNVFzp14WH4zd5l q2mjtzBc+DzsYJTZ+T5GBR2KzOubuYjODCuFTXTn3Xeb98PhSLX4jgqZyPbMxsVU /IG1VE+IWR/E3w90SzKdmbkWVnEeVzEvwd4y0VZGDm8QuU+6yC4ndlZi4x7PRy3K MP8s4N9gDmtJ6ntaQ3Pj4CZFWHqT/I1P80WjeWskze3qfXylZwwbrXFhNnGtvDwy xStbqZynA23+uHv3x5GAygNIyFSsTBEdnKG15rB0ndAQtoBnh8h9iQ2AFSH+OL2r tSPi7bizZOktLTcKZuPiXNlR6wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFqJ93ro xtQQuIjSC0cySFrPldZVMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEACyn88HN/G0d2N3pgEVMvxYkUAoMB6Wx3udg9WZKsMI4Y Y8BkwSnUIQgD/WqR0blNBAz62Box+u8mLwzn/ZBNh0ag2xDoXdA7jUT5l6WPWv4P l4s8nZVJNLWRPB4ODeMt6iNjgKy4Sry+NWQNgmDoCjI2eTsd1eXLNE9Tp/zCj5BH /7y5PnD5Ew2aRdfir4+fspQeXCmatrfP9ZKTJ3zzMkPKpMh1njQne7RUH//kS/6I 3MfCRiMAvkEk8CUEMz263abSBFh1iumQllL+pZ3e5uVePpsJ9myOePbXG9FubwCW XqIg/vHoc2MsS38iZpiPjEgNm48rybLtl11szQ853A== -----END CERTIFICATE-----Generated at Tue Jun 23 14:04:19 2026 by rpki-client