$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: SaxNwaqBbUDo5lSWcE/hzHblUSsjl/+9a0dGb7bqyNU= Subject key identifier: A8:55:FE:8A:BC:D1:4C:74:17:0C:26:7F:50:F0:3C:07:06:7C:07:44 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AFF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A44 Signing time: Wed 22 Apr 2026 02:50:11 +0000 Manifest this update: Wed 22 Apr 2026 02:50:11 +0000 Manifest next update: Wed 29 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: XBq77DRp+oJdkFPA4Bwrgc4B9fhCWsbxfgKoaIFfZio=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 12: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19199 (0x4aff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 22 02:50:11 2026 GMT Not After : Apr 29 02:50:11 2026 GMT Subject: CN=69e83763-03e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e0:9e:ad:cb:c3:02:b3:04:93:a0:c8:eb:26: 12:e7:e8:16:1a:a6:55:90:75:82:0e:49:ff:b6:9a: b0:13:fe:98:86:41:73:b1:86:24:2f:bf:b7:45:4e: 01:39:9c:d6:dd:34:b0:a3:20:5f:cf:68:1b:ac:71: 61:a3:e8:74:e2:d2:9c:3e:1a:ec:6b:8f:54:e1:d7: 3d:6e:67:9e:fe:89:30:16:06:69:4c:30:3f:b7:73: d8:61:f7:ea:11:28:70:24:b4:04:78:5e:05:9d:ae: 26:24:5b:ce:bc:88:aa:53:99:ca:32:0f:c1:1d:11: 02:14:77:91:2c:6d:67:ee:24:2c:30:69:7c:ef:25: e5:05:3c:06:3c:5f:70:58:0e:5e:c4:25:38:b6:8d: ab:0a:65:3c:ed:8c:25:b7:e1:c5:17:7f:35:85:02: 17:9d:46:ce:92:4b:03:23:94:9d:04:72:53:a3:d0: 4c:46:98:22:cd:f2:52:bb:c9:ad:8f:dd:d1:d6:eb: 76:6b:95:26:c2:3f:c3:b4:ed:9f:15:8c:93:30:6e: b9:d9:ca:ed:25:9b:37:7a:80:27:61:1e:74:a3:52: f3:b4:4e:7f:22:d5:1b:e3:77:41:f6:c6:8a:d8:35: 0c:f2:42:a4:05:cc:ec:80:d3:8c:1f:5e:bb:bc:d6: 15:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:55:FE:8A:BC:D1:4C:74:17:0C:26:7F:50:F0:3C:07:06:7C:07:44 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0c:0f:68:6b:d0:75:20:8e:bd:fe:f0:0a:38:9c:6f:48:41: cf:a4:30:c4:3a:60:3f:9e:87:5f:cb:fd:98:c2:28:36:fc:a7: c1:d7:52:53:22:6a:57:9f:b9:7e:eb:08:93:3a:34:5b:13:1a: 31:1f:5f:66:42:55:16:7e:c5:95:24:9c:fd:d1:52:0f:a3:33: 2d:6a:6a:f0:04:32:db:7b:c7:af:0e:8f:32:ac:79:d8:18:b7: 68:bf:67:d8:f5:b7:85:e9:21:ea:98:16:b2:1c:67:be:7b:2f: 07:6a:4a:31:db:75:15:a9:0a:78:bb:25:73:97:06:73:64:c1: 6b:22:08:6e:54:e0:37:3c:06:1d:ba:ca:84:62:17:33:1b:93: d4:d5:61:bf:ed:99:5e:a7:f4:0f:23:22:23:1c:25:c2:39:c4: d4:91:15:ae:91:c4:e5:bf:f4:7a:ec:a7:48:96:c2:12:cc:91: b1:10:ef:f0:b8:4a:f4:2b:55:d6:d8:62:7a:87:fa:49:48:48: 7a:6a:a5:36:08:58:69:3d:13:94:20:40:ec:c6:8e:be:0d:5c: 08:d2:3d:2e:66:b6:38:be:94:f9:26:d1:cd:d8:ce:b1:44:67: 1e:11:d2:59:b7:29:7a:66:9b:b7:5a:c4:5f:34:68:af:b1:95: b9:ce:cd:28 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDIyMDI1MDExWhcNMjYwNDI5MDI1MDExWjAYMRYwFAYD VQQDEw02OWU4Mzc2My0wM2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuCercvDArMEk6DI6yYS5+gWGqZVkHWCDkn/tpqwE/6YhkFzsYYkL7+3RU4B OZzW3TSwoyBfz2gbrHFho+h04tKcPhrsa49U4dc9bmee/okwFgZpTDA/t3PYYffq EShwJLQEeF4Fna4mJFvOvIiqU5nKMg/BHRECFHeRLG1n7iQsMGl87yXlBTwGPF9w WA5exCU4to2rCmU87Ywlt+HFF381hQIXnUbOkksDI5SdBHJTo9BMRpgizfJSu8mt j93R1ut2a5Umwj/DtO2fFYyTMG652crtJZs3eoAnYR50o1LztE5/ItUb43dB9saK 2DUM8kKkBczsgNOMH167vNYVEwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFKhV/oq8 0Ux0Fwwmf1DwPAcGfAdEMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAnAwPaGvQdSCOvf7wCjicb0hBz6QwxDpgP56HX8v9mMIo NvynwddSUyJqV5+5fusIkzo0WxMaMR9fZkJVFn7FlSSc/dFSD6MzLWpq8AQy23vH rw6PMqx52Bi3aL9n2PW3hekh6pgWshxnvnsvB2pKMdt1FakKeLslc5cGc2TBayII blTgNzwGHbrKhGIXMxuT1NVhv+2ZXqf0DyMiIxwlwjnE1JEVrpHE5b/0euynSJbC EsyRsRDv8LhK9CtV1thieof6SUhIemqlNghYaT0TlCBA7MaOvg1cCNI9Lma2OL6U +SbRzdjOsURnHhHSWbcpemabt1rEXzRor7GVuc7NKA== -----END CERTIFICATE-----Generated at Wed Apr 22 15:51:53 2026 by rpki-client