$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 1LoVB3PifSwZkxPmkrtw7j0LAjH+a+dH9GE1ttb4qiA= Subject key identifier: AE:39:1C:F0:5C:2B:80:F0:37:9B:0F:52:9E:01:FB:19:89:42:B2:9A Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AA6 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49ED Signing time: Tue 24 Mar 2026 14:51:00 +0000 Manifest this update: Tue 24 Mar 2026 14:50:59 +0000 Manifest next update: Tue 31 Mar 2026 14:50:59 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Rv2I6qaP7RoekIrTxgdDFfvo/PeXjGN/yaFv6jcGds8=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19110 (0x4aa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 24 14:50:59 2026 GMT Not After : Mar 31 14:50:59 2026 GMT Subject: CN=69c2a4d4-0705 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:8e:62:e3:03:51:01:ca:ec:cc:bc:6c:5d: 59:06:60:fd:25:2a:fe:68:60:96:c2:ec:37:37:51: d0:ce:cf:98:90:99:43:b1:4f:4b:47:76:49:de:9f: 85:7d:f0:f4:3b:79:ca:9a:05:76:09:80:03:60:d2: c1:9c:71:62:61:8b:5d:f4:a9:c0:cc:69:84:e5:11: a8:c1:80:c5:38:32:ce:08:1e:f1:df:f7:9a:b7:38: f2:87:50:7a:3a:74:31:1e:ed:e7:b6:40:00:35:a7: 66:50:6c:12:79:5a:16:20:df:a4:1f:89:48:74:01: ad:bd:8d:23:af:18:46:9c:90:2b:b1:94:81:38:f6: 36:44:3c:61:d3:f1:67:dc:6b:1b:77:1a:83:b6:46: 0a:d9:7e:6b:d4:ab:eb:e1:d8:b5:5a:02:c0:90:fa: d5:88:ba:42:e3:48:d5:ca:c5:51:d9:00:10:9d:ae: dc:ff:c5:c9:10:40:80:7c:0f:4a:0c:e4:5a:ef:1b: f9:3c:14:fe:67:7f:a6:df:55:d0:e9:94:7f:92:ce: 22:45:51:bb:38:58:ed:09:de:7e:09:50:3b:2f:17: 6c:d0:0a:b2:77:c0:da:51:bf:b4:79:1b:b2:15:4c: 08:bb:c2:6f:3d:21:82:f4:9e:f3:02:c7:05:3f:a6: d4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:39:1C:F0:5C:2B:80:F0:37:9B:0F:52:9E:01:FB:19:89:42:B2:9A X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:48:3b:7d:15:cb:ae:dd:e1:dd:b2:11:07:fa:9b:d4:6f:1f: 54:a5:6a:a0:e8:7e:5c:fd:d9:31:73:d8:22:24:1b:cc:71:29: 45:05:f4:63:fc:f9:dc:a1:1c:d8:1a:63:4c:b5:a0:9a:e2:94: 28:ef:a7:27:1b:9a:81:3b:cb:21:3e:bd:9c:f9:71:17:9d:00: c7:65:30:8a:80:04:6b:29:13:29:0f:f7:45:61:99:c2:cc:5b: bf:b6:b6:31:ad:44:cf:e0:60:47:ea:6a:45:2e:53:47:94:8a: 94:b6:ac:9f:a8:25:ed:b2:9c:3f:20:c4:20:5b:ae:75:51:01: 5e:cc:43:a5:f0:4c:bd:4a:2e:e4:ce:4a:67:c5:64:df:10:c7: e7:e1:ac:72:54:43:c2:5a:a9:f3:1d:da:66:1c:43:d1:d4:9f: ab:2b:d7:7d:6c:c0:1b:c3:0b:6e:63:56:20:dd:fc:8f:c2:2b: d4:82:a6:a3:09:c3:43:08:02:8c:19:b9:e1:25:d9:80:04:da: c8:74:e0:98:03:41:cd:d9:41:cf:5c:85:19:0e:23:19:15:a5: 67:33:72:36:ec:ff:73:ca:94:66:36:40:71:15:05:c2:ff:51: 4c:b6:fb:5b:f2:28:ba:c1:36:89:44:45:8d:4b:67:73:c3:21: b1:71:59:53 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzI0MTQ1MDU5WhcNMjYwMzMxMTQ1MDU5WjAYMRYwFAYD VQQDEw02OWMyYTRkNC0wNzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOeOYuMDUQHK7My8bF1ZBmD9JSr+aGCWwuw3N1HQzs+YkJlDsU9LR3ZJ3p+F ffD0O3nKmgV2CYADYNLBnHFiYYtd9KnAzGmE5RGowYDFODLOCB7x3/eatzjyh1B6 OnQxHu3ntkAANadmUGwSeVoWIN+kH4lIdAGtvY0jrxhGnJArsZSBOPY2RDxh0/Fn 3GsbdxqDtkYK2X5r1Kvr4di1WgLAkPrViLpC40jVysVR2QAQna7c/8XJEECAfA9K DORa7xv5PBT+Z3+m31XQ6ZR/ks4iRVG7OFjtCd5+CVA7Lxds0Aqyd8DaUb+0eRuy FUwIu8JvPSGC9J7zAscFP6bUcQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFK45HPBc K4DwN5sPUp4B+xmJQrKaMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEALUg7fRXLrt3h3bIRB/qb1G8fVKVqoOh+XP3ZMXPYIiQb zHEpRQX0Y/z53KEc2BpjTLWgmuKUKO+nJxuagTvLIT69nPlxF50Ax2UwioAEaykT KQ/3RWGZwsxbv7a2Ma1Ez+BgR+pqRS5TR5SKlLasn6gl7bKcPyDEIFuudVEBXsxD pfBMvUou5M5KZ8Vk3xDH5+GsclRDwlqp8x3aZhxD0dSfqyvXfWzAG8MLbmNWIN38 j8Ir1IKmownDQwgCjBm54SXZgATayHTgmANBzdlBz1yFGQ4jGRWlZzNyNuz/c8qU ZjZAcRUFwv9RTLb7W/IousE2iURFjUtnc8MhsXFZUw== -----END CERTIFICATE-----Generated at Tue Mar 24 17:55:52 2026 by rpki-client