$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: yTgr3mveN3iorkVqhEnrj/KS/pPVDg9hlM88r+GOSZs= Subject key identifier: D8:72:4B:12:DF:A4:7D:9E:05:9E:E2:B5:80:C4:B1:3D:C3:DD:50:20 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B20 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A63 Signing time: Fri 01 May 2026 02:50:39 +0000 Manifest this update: Fri 01 May 2026 02:50:38 +0000 Manifest next update: Fri 08 May 2026 02:50:38 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: SRvV0o+O457Mo8LHNGGSnggxDusyFnM2d6RTancaI3U=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 12: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 02:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19232 (0x4b20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 1 02:50:38 2026 GMT Not After : May 8 02:50:38 2026 GMT Subject: CN=69f414ff-dffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:27:ed:82:bc:4e:e3:58:f2:67:28:ea:49:19: a9:7d:a9:ac:3b:68:19:cb:80:ce:05:6e:b1:80:d9: 9a:be:28:e5:49:cd:d2:ba:35:cf:bd:49:8b:17:32: 85:d6:30:51:70:e3:58:88:4a:94:06:80:0d:53:fe: 61:b2:5f:d0:ff:97:4d:b0:ae:96:49:1d:6b:0b:e7: c5:38:67:97:b6:37:cf:21:bb:eb:63:8c:a8:be:56: ee:74:50:db:55:56:e4:77:5e:70:94:25:12:b2:3b: 3b:de:f3:f5:a6:e6:d6:75:32:e4:ba:76:28:2d:7a: 31:bc:c4:7e:9d:0f:87:d1:13:0e:28:07:27:5f:52: 4f:69:3e:a6:be:00:25:72:fb:98:2c:e7:5b:bc:ae: bc:99:d4:b9:08:93:8d:29:6d:e3:f4:d9:a7:68:71: 26:44:a9:8e:e0:9a:89:27:e4:fd:2d:85:77:06:4a: 6a:e4:15:eb:61:f6:0d:19:a3:b2:2a:90:d8:87:63: 6c:21:98:d4:b2:b3:20:cb:f7:98:98:46:49:58:04: c2:cf:6c:93:0d:3d:f2:46:30:c3:f3:3d:44:53:50: 33:9b:75:e1:6a:2b:53:79:a3:f2:fd:e7:f0:ee:6f: 53:21:3f:99:0f:fa:db:8b:9c:e3:19:34:42:95:50: 63:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:72:4B:12:DF:A4:7D:9E:05:9E:E2:B5:80:C4:B1:3D:C3:DD:50:20 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:a5:a9:25:a9:5d:6a:9a:0b:aa:fb:ad:79:ea:e7:65:6a:71: d2:c0:21:dc:89:d5:1e:d6:c1:46:84:d0:c3:9b:d4:04:44:50: f4:ec:b1:ac:63:06:5d:ea:9e:83:44:61:7c:94:e6:f5:c6:6e: 99:20:5a:8d:05:97:8c:be:8e:8e:53:eb:01:b6:a3:8f:57:18: 91:a1:35:70:cc:12:90:ca:24:04:46:9a:65:dc:3a:04:bf:49: dc:10:d4:01:0c:d4:35:01:b2:1a:82:e8:92:c2:98:bb:59:a6: a6:33:1b:cb:f6:e5:af:0f:94:80:ef:a2:ea:b8:2c:31:6e:e1: 3d:9c:7c:3f:eb:51:a3:bb:77:e1:31:b0:09:6c:71:0f:b9:d1: 13:e6:91:53:6c:2c:49:0c:a7:43:54:7b:25:f3:66:da:38:eb: 31:42:af:b3:f9:26:94:b3:2e:42:c5:21:d5:6d:4e:c2:98:dc: ac:83:13:81:d1:3a:70:0a:b0:b2:48:36:19:79:bb:70:60:e5: a7:e5:17:a4:4b:aa:09:2d:96:4b:69:ae:f6:4f:fe:fd:dc:92: 52:b0:4d:76:61:1a:62:de:a4:6b:9a:f0:3f:15:5d:ad:a1:d3: 81:c2:b7:17:30:2b:25:30:be:a4:f3:02:02:cd:e8:eb:f0:eb: 08:fa:8b:0b -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTAxMDI1MDM4WhcNMjYwNTA4MDI1MDM4WjAYMRYwFAYD VQQDEw02OWY0MTRmZi1kZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCftgrxO41jyZyjqSRmpfamsO2gZy4DOBW6xgNmavijlSc3SujXPvUmLFzKF 1jBRcONYiEqUBoANU/5hsl/Q/5dNsK6WSR1rC+fFOGeXtjfPIbvrY4yovlbudFDb VVbkd15wlCUSsjs73vP1pubWdTLkunYoLXoxvMR+nQ+H0RMOKAcnX1JPaT6mvgAl cvuYLOdbvK68mdS5CJONKW3j9NmnaHEmRKmO4JqJJ+T9LYV3Bkpq5BXrYfYNGaOy KpDYh2NsIZjUsrMgy/eYmEZJWATCz2yTDT3yRjDD8z1EU1Azm3XhaitTeaPy/efw 7m9TIT+ZD/rbi5zjGTRClVBjUwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFNhySxLf pH2eBZ7itYDEsT3D3VAgMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAqKWpJaldapoLqvuteernZWpx0sAh3InVHtbBRoTQw5vU BERQ9OyxrGMGXeqeg0RhfJTm9cZumSBajQWXjL6OjlPrAbajj1cYkaE1cMwSkMok BEaaZdw6BL9J3BDUAQzUNQGyGoLoksKYu1mmpjMby/blrw+UgO+i6rgsMW7hPZx8 P+tRo7t34TGwCWxxD7nRE+aRU2wsSQynQ1R7JfNm2jjrMUKvs/kmlLMuQsUh1W1O wpjcrIMTgdE6cAqwskg2GXm7cGDlp+UXpEuqCS2WS2mu9k/+/dySUrBNdmEaYt6k a5rwPxVdraHTgcK3FzArJTC+pPMCAs3o6/DrCPqLCw== -----END CERTIFICATE-----Generated at Fri May 1 08:52:45 2026 by rpki-client