$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: xJdOhe3Vh1MgMm/GodahB6xNKnUGYEHFvrvFz9vpf0A= Subject key identifier: F9:03:39:E2:22:0E:59:43:EC:56:B3:F7:41:E0:82:02:6F:96:BF:AD Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A82 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49CA Signing time: Fri 13 Mar 2026 14:50:11 +0000 Manifest this update: Fri 13 Mar 2026 14:50:10 +0000 Manifest next update: Fri 20 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Se6OSGWY49lFBaKOl/pOba17VlaM22R56cI/5BlVLuU=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19074 (0x4a82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 13 14:50:10 2026 GMT Not After : Mar 20 14:50:10 2026 GMT Subject: CN=69b42422-1050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:00:29:1e:4e:03:0f:91:da:85:b7:58:32:02: ca:bb:2f:9f:bb:04:41:39:cc:3c:3d:93:b6:5f:37: 38:72:1c:2c:b5:0a:9d:4d:9f:b5:0d:0a:62:80:82: e3:84:81:f8:f3:ed:0e:b4:a3:20:10:00:95:c7:00: c7:50:15:6e:ac:b5:5f:73:e9:10:5f:13:83:67:02: 3f:d6:19:8d:a3:b3:83:ff:54:00:8e:15:2e:b0:ef: 37:06:af:ab:f8:0f:e8:1c:66:57:ea:14:65:a8:03: 0d:e6:1d:37:f5:9b:8a:55:29:18:e2:25:ed:ba:94: 80:11:3f:ea:2e:13:69:f8:2a:c7:c7:4b:84:63:3b: 8d:31:9b:6c:5d:fe:a0:30:6a:b6:ab:f5:1b:5f:5f: b1:0e:f0:eb:5d:70:91:86:cd:a4:20:5a:ff:92:73: 85:3d:84:b9:f3:43:79:f1:31:1c:0e:86:04:a3:71: b2:8f:9a:7f:d5:9f:65:5d:d8:c9:cf:b3:60:d2:05: 55:c3:54:ca:4b:c6:33:09:07:0d:97:ae:65:e9:f4: f0:0c:e5:dd:84:6f:c9:a4:b1:54:01:63:83:f1:76: f6:f5:19:4e:09:37:37:c3:c9:a9:46:f7:91:25:64: f1:ff:50:2a:97:2e:96:10:a9:21:e7:33:a1:0b:e6: 3d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:03:39:E2:22:0E:59:43:EC:56:B3:F7:41:E0:82:02:6F:96:BF:AD X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:9c:f3:ed:40:14:ad:81:5f:9d:1e:71:26:7d:43:83:af:b6: 68:ea:ec:6a:1d:9b:c5:3f:38:d4:c8:b1:6b:04:0e:5a:c7:bb: 29:30:f1:20:8e:af:2a:45:fa:75:a2:52:46:9e:03:7a:a0:e9: dd:b0:b4:a8:86:0a:e7:34:72:94:7d:c8:7c:a1:85:88:d4:8b: 6b:d2:27:9a:15:93:e5:8d:3d:25:b0:2c:61:46:9b:25:ee:2f: b9:a7:38:91:39:f4:e5:33:22:48:67:09:4d:2f:d8:09:89:2c: 75:66:f1:92:5d:39:29:a6:21:1c:08:c2:7b:c7:32:d3:bd:c8: d1:17:b1:b9:d7:bc:91:05:cd:25:7e:34:86:b4:eb:a0:ae:05: 50:3b:47:d5:2c:33:83:56:f0:46:65:9c:1f:78:9f:62:9f:53: 01:90:74:22:4b:52:9e:de:54:47:33:1b:b8:ef:5c:c2:47:87: 02:77:ae:c3:36:a2:3e:c6:69:56:8c:bd:33:e9:83:d2:48:c7: 44:80:6c:3e:33:2b:27:bf:51:da:90:94:c3:09:12:2d:09:20: 8f:8f:f9:fd:b6:58:8e:96:03:31:ba:8e:cc:65:4b:d3:a2:80: f8:ff:f9:e8:69:36:f4:4a:e6:4e:3c:c6:60:a6:28:95:d2:02: cd:66:05:d0 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzEzMTQ1MDEwWhcNMjYwMzIwMTQ1MDEwWjAYMRYwFAYD VQQDEw02OWI0MjQyMi0xMDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhwApHk4DD5HahbdYMgLKuy+fuwRBOcw8PZO2Xzc4chwstQqdTZ+1DQpigILj hIH48+0OtKMgEACVxwDHUBVurLVfc+kQXxODZwI/1hmNo7OD/1QAjhUusO83Bq+r +A/oHGZX6hRlqAMN5h039ZuKVSkY4iXtupSAET/qLhNp+CrHx0uEYzuNMZtsXf6g MGq2q/UbX1+xDvDrXXCRhs2kIFr/knOFPYS580N58TEcDoYEo3Gyj5p/1Z9lXdjJ z7Ng0gVVw1TKS8YzCQcNl65l6fTwDOXdhG/JpLFUAWOD8Xb29RlOCTc3w8mpRveR JWTx/1Aqly6WEKkh5zOhC+Y9TwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPkDOeIi DllD7Faz90HgggJvlr+tMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAApzz7UAUrYFfnR5xJn1Dg6+2aOrsah2bxT841MixawQO Wse7KTDxII6vKkX6daJSRp4DeqDp3bC0qIYK5zRylH3IfKGFiNSLa9InmhWT5Y09 JbAsYUabJe4vuac4kTn05TMiSGcJTS/YCYksdWbxkl05KaYhHAjCe8cy073I0Rex ude8kQXNJX40hrTroK4FUDtH1Swzg1bwRmWcH3ifYp9TAZB0IktSnt5URzMbuO9c wkeHAneuwzaiPsZpVoy9M+mD0kjHRIBsPjMrJ79R2pCUwwkSLQkgj4/5/bZYjpYD MbqOzGVL06KA+P/56Gk29ErmTjzGYKYoldICzWYF0A== -----END CERTIFICATE-----Generated at Sat Mar 14 04:17:08 2026 by rpki-client