$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: lzUpddgVm8tnIFUMvkbW6VjUXffef5a5Lkh2whb6keg= Subject key identifier: F6:E3:1C:1E:95:5B:DC:75:D5:F4:13:70:4F:F3:6E:46:B1:1E:22:FE Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B66 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA9 Signing time: Sun 24 May 2026 02:50:12 +0000 Manifest this update: Sun 24 May 2026 02:50:11 +0000 Manifest next update: Sun 31 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: s5i/eMOdXt1YF4vedyyZ5ADCrQ2GoRcbrH+ea1xqe1o=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19302 (0x4b66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 24 02:50:11 2026 GMT Not After : May 31 02:50:11 2026 GMT Subject: CN=6a126764-046f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fd:8d:e3:56:95:9a:3f:ca:f5:fe:44:0b:c4: 52:19:dd:60:ef:1d:ca:58:5d:05:28:54:79:16:1c: 46:c5:84:be:22:ed:55:5c:c9:a1:df:80:a8:d2:3c: 12:d3:34:21:41:55:65:bd:e1:08:8a:d7:65:6d:fe: b6:c8:91:1f:1f:ac:b9:03:25:44:8a:87:4e:77:8c: 65:63:c3:0d:16:a4:9d:71:e9:75:f5:29:ac:be:b1: b4:35:c8:ee:a7:34:8f:bd:d2:a2:70:c8:44:c7:58: 5d:83:e2:39:a8:68:52:b0:ac:c9:1f:80:0d:0c:65: 7c:33:81:37:ca:d4:0e:42:a4:24:bb:8c:9e:f7:7d: 74:9f:83:0f:0e:f7:4c:de:40:0a:7d:1a:da:d8:f7: fd:a6:fa:0e:8f:8b:7d:45:16:d3:bc:1a:fa:f8:5d: 11:bc:ed:60:0f:b3:39:b1:0a:e0:f8:cb:bb:2c:77: 5f:01:2e:94:83:43:33:70:53:47:7b:de:de:31:b4: 2d:b3:f1:93:2b:b8:23:7c:ca:90:88:aa:7c:93:79: f8:7f:e3:4b:38:06:b2:cf:a0:f5:f5:45:ed:ec:21: fc:6c:32:f4:21:2d:f2:de:b0:c2:e6:47:0d:4b:45: fc:ad:7a:96:c5:61:01:58:93:0c:5f:f6:68:27:5c: ec:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E3:1C:1E:95:5B:DC:75:D5:F4:13:70:4F:F3:6E:46:B1:1E:22:FE X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:fc:56:0a:2c:7f:d1:7d:bb:16:3a:05:2c:1a:f6:62:8b:04: 55:c8:61:0d:85:29:a3:2c:a6:8d:cb:e9:78:80:db:15:d0:8c: 70:da:07:f1:10:d4:8e:55:ca:7d:9d:39:71:32:76:1f:d7:a0: d5:7b:45:a4:51:76:89:f5:27:60:41:7c:b8:27:c9:5c:af:ab: bd:51:e6:12:e6:b4:1f:7a:d7:ec:b5:05:32:53:40:c1:33:5a: 8a:79:1a:cf:38:0f:41:32:ee:71:bb:ac:2c:2d:a7:4b:05:17: f7:31:c0:16:d5:04:da:0e:14:da:ed:34:eb:95:80:52:91:29: ae:7f:36:5d:b0:35:e2:e6:a0:4b:6a:a0:75:61:ee:3c:fc:e7: ff:b1:f9:eb:6b:92:10:b3:df:2f:28:0f:1f:04:99:ce:60:a4: d2:38:9a:ee:6d:27:17:4f:c8:1b:92:42:15:97:b4:35:9a:66: 6b:46:f8:9b:6a:3a:f5:ac:58:25:5d:71:79:fb:bb:21:87:67: 51:f8:a5:5a:18:eb:07:ed:27:1c:e8:fa:76:c1:01:f2:75:72: e5:55:a4:9e:65:ef:38:3f:7a:ec:4b:51:4a:c7:2b:16:7b:20: fb:60:13:a5:e1:b0:65:e8:fe:46:93:ca:84:67:3a:5a:c7:ec: fa:98:95:41 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI0MDI1MDExWhcNMjYwNTMxMDI1MDExWjAYMRYwFAYD VQQDEw02YTEyNjc2NC0wNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/2N41aVmj/K9f5EC8RSGd1g7x3KWF0FKFR5FhxGxYS+Iu1VXMmh34Co0jwS 0zQhQVVlveEIitdlbf62yJEfH6y5AyVEiodOd4xlY8MNFqSdcel19SmsvrG0Ncju pzSPvdKicMhEx1hdg+I5qGhSsKzJH4ANDGV8M4E3ytQOQqQku4ye9310n4MPDvdM 3kAKfRra2Pf9pvoOj4t9RRbTvBr6+F0RvO1gD7M5sQrg+Mu7LHdfAS6Ug0MzcFNH e97eMbQts/GTK7gjfMqQiKp8k3n4f+NLOAayz6D19UXt7CH8bDL0IS3y3rDC5kcN S0X8rXqWxWEBWJMMX/ZoJ1zsBwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPbjHB6V W9x11fQTcE/zbkaxHiL+MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAdfxWCix/0X27FjoFLBr2YosEVchhDYUpoyymjcvpeIDb FdCMcNoH8RDUjlXKfZ05cTJ2H9eg1XtFpFF2ifUnYEF8uCfJXK+rvVHmEua0H3rX 7LUFMlNAwTNainkazzgPQTLucbusLC2nSwUX9zHAFtUE2g4U2u0065WAUpEprn82 XbA14uagS2qgdWHuPPzn/7H562uSELPfLygPHwSZzmCk0jia7m0nF0/IG5JCFZe0 NZpma0b4m2o69axYJV1xefu7IYdnUfilWhjrB+0nHOj6dsEB8nVy5VWknmXvOD96 7EtRSscrFnsg+2ATpeGwZej+RpPKhGc6Wsfs+piVQQ== -----END CERTIFICATE-----Generated at Sun May 24 06:29:53 2026 by rpki-client