$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: PtZWxgPEV+gcuH/urCbTlH6PLygDNafm7cfwpw9C5g4= Subject key identifier: 69:96:F6:03:0B:0B:1D:14:D0:82:17:AB:96:79:F3:D3:D4:5A:1F:F4 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AD3 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A19 Signing time: Wed 08 Apr 2026 02:50:11 +0000 Manifest this update: Wed 08 Apr 2026 02:50:11 +0000 Manifest next update: Wed 15 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: WWzaMxuCs9ZCX3VrcBwf93hAQyfNHz/t4PXGOfGnzk8=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19155 (0x4ad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 8 02:50:11 2026 GMT Not After : Apr 15 02:50:11 2026 GMT Subject: CN=69d5c263-c645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bc:e3:a1:02:14:e9:6a:31:34:3b:6a:32:dc: 62:a7:44:1a:bb:58:46:dc:f6:de:b4:75:d0:6c:d7: ef:52:fb:b5:ea:cd:dd:71:63:5c:99:5a:99:91:b2: 1e:db:2f:0e:4d:53:24:2a:6b:d2:e0:78:82:54:53: 06:0f:7b:77:a6:8c:e6:32:a9:32:dc:27:61:d6:75: aa:bc:32:c3:6c:cc:38:25:7a:8a:2d:e0:c0:33:b5: f2:46:47:ea:a4:8e:54:0b:a3:18:fc:ff:37:10:70: 11:45:ba:6f:69:22:94:d4:24:d9:6e:36:35:6a:f7: 21:6f:34:82:8f:b1:39:e9:6b:4e:fe:3d:e2:5c:5c: 35:b6:5c:71:19:dd:f8:e7:54:50:02:ab:29:b6:d7: 9a:17:34:e7:4b:2a:4b:cc:89:64:cb:e9:0f:2b:92: 21:7a:cf:6c:d0:9f:1f:94:69:2d:c9:4a:53:f1:db: 9c:d3:48:aa:04:32:60:78:85:8f:06:b2:9e:7c:34: 87:00:ea:c0:6e:94:5c:fd:b2:b5:29:ad:3c:d4:f6: 79:fa:8a:f8:d6:3d:3e:77:0f:38:ef:a7:dd:87:ac: 01:d8:b9:8b:94:0e:f5:c6:cd:a4:87:ca:d8:80:5e: 0a:21:63:41:cf:b5:f7:a5:41:d8:3f:d3:1f:e1:53: 43:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:96:F6:03:0B:0B:1D:14:D0:82:17:AB:96:79:F3:D3:D4:5A:1F:F4 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:f4:32:0c:e3:6d:cc:6c:fd:c5:58:6b:b8:e6:68:e3:7d:ce: 14:03:38:ba:a4:46:a7:36:c3:ad:fd:bd:de:e5:1c:05:af:c0: 09:eb:52:7e:56:32:ea:3f:52:41:78:dc:4b:0d:00:d9:64:0d: 73:63:19:f9:d9:c3:e7:b5:c5:5f:eb:88:c9:6a:3e:2f:92:0f: cb:e7:27:d6:39:ba:1b:4d:a4:00:75:af:e1:cd:0e:24:7c:19: 4f:68:e4:b3:6e:18:22:3f:0c:db:ca:bc:b1:7f:c4:2e:68:18: a3:45:73:a4:0d:5b:f0:98:06:eb:19:32:de:71:e8:90:3f:23: 02:5c:e0:2f:02:05:b1:9b:c8:ce:9e:87:df:57:01:b4:d4:23: 70:86:94:4b:2f:ce:6b:ce:e3:27:c0:98:e7:18:39:85:2f:74: 7f:56:e5:0e:9e:f0:a1:ed:82:d0:94:26:01:c1:d2:5a:92:13: 94:33:4e:63:d2:1c:d2:b7:8e:1b:c0:14:80:cb:36:36:2d:7a: 39:d5:97:87:14:ef:34:fe:af:45:d5:40:d6:f9:73:5e:01:b4: 1a:c3:03:af:bf:87:b6:c2:67:61:aa:a3:2e:b5:12:3a:e6:7b: db:33:71:2f:a4:50:b5:ab:7c:eb:2f:fb:08:90:1b:bf:8a:71: 3b:bd:2a:15 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICStMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDA4MDI1MDExWhcNMjYwNDE1MDI1MDExWjAYMRYwFAYD VQQDEw02OWQ1YzI2My1jNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7zjoQIU6WoxNDtqMtxip0Qau1hG3PbetHXQbNfvUvu16s3dcWNcmVqZkbIe 2y8OTVMkKmvS4HiCVFMGD3t3pozmMqky3Cdh1nWqvDLDbMw4JXqKLeDAM7XyRkfq pI5UC6MY/P83EHARRbpvaSKU1CTZbjY1avchbzSCj7E56WtO/j3iXFw1tlxxGd34 51RQAqsptteaFzTnSypLzIlky+kPK5Ihes9s0J8flGktyUpT8duc00iqBDJgeIWP BrKefDSHAOrAbpRc/bK1Ka081PZ5+or41j0+dw8476fdh6wB2LmLlA71xs2kh8rY gF4KIWNBz7X3pUHYP9Mf4VND6wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGmW9gML Cx0U0IIXq5Z589PUWh/0MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAQfQyDONtzGz9xVhruOZo433OFAM4uqRGpzbDrf293uUc Ba/ACetSflYy6j9SQXjcSw0A2WQNc2MZ+dnD57XFX+uIyWo+L5IPy+cn1jm6G02k AHWv4c0OJHwZT2jks24YIj8M28q8sX/ELmgYo0VzpA1b8JgG6xky3nHokD8jAlzg LwIFsZvIzp6H31cBtNQjcIaUSy/Oa87jJ8CY5xg5hS90f1blDp7woe2C0JQmAcHS WpITlDNOY9Ic0reOG8AUgMs2Ni16OdWXhxTvNP6vRdVA1vlzXgG0GsMDr7+HtsJn YaqjLrUSOuZ72zNxL6RQtat86y/7CJAbv4pxO70qFQ== -----END CERTIFICATE-----Generated at Wed Apr 8 13:39:21 2026 by rpki-client