$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: UlyFK5ck1mXLk2KgHeT8YO/Ee3mREi+M7HsseZE7qq4= Subject key identifier: FA:47:D4:CE:0B:A0:79:88:BF:B8:6F:10:8B:64:16:54:CA:25:E7:8A Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A7C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49C4 Signing time: Wed 11 Mar 2026 14:50:10 +0000 Manifest this update: Wed 11 Mar 2026 14:50:10 +0000 Manifest next update: Wed 18 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: bKuf4ujasUuWX43Ssjwr/9IVjspR3tApRkVNbBkN8Dc=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19068 (0x4a7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 11 14:50:10 2026 GMT Not After : Mar 18 14:50:10 2026 GMT Subject: CN=69b18122-29fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7e:c6:0a:be:85:e5:dc:c9:ec:01:7c:af:c6: 1f:3e:71:64:5a:99:0e:22:df:ac:cd:8d:9d:4e:94: 5b:4f:cc:d1:45:7d:3b:08:8d:b2:c4:52:03:c9:df: 1e:71:9a:9b:26:aa:19:9c:c0:47:e2:7a:0b:f7:0b: 53:1c:55:62:a7:0b:a4:a6:a0:d8:71:6a:3c:9d:95: 43:28:bd:1c:34:55:9d:05:5f:3e:fc:44:a0:9d:ed: f1:4d:29:eb:78:04:91:41:f2:a9:e2:66:2a:68:16: c4:c9:79:b4:63:8f:03:37:ab:98:07:af:88:1f:a8: 46:eb:28:41:9a:c4:6d:8f:ed:70:89:5f:c0:cd:dc: 37:19:f6:7a:fe:bb:42:b0:b0:13:ec:77:47:72:c5: e4:91:ef:d3:81:5c:3e:dd:1b:8b:38:ba:17:b0:9b: 54:a6:d9:d4:26:59:70:b3:08:05:ec:d9:a3:65:3a: 4f:cb:74:5d:f6:9e:52:05:2d:3d:4e:c9:8f:4b:6b: 48:31:fe:13:71:69:72:19:a1:fd:88:45:23:4e:ad: 32:a8:59:9f:cd:15:e7:c0:28:9f:07:52:dc:f4:97: f7:7a:8c:2b:f2:1f:82:fa:3b:0a:d9:e2:2e:75:f2: e6:9b:57:11:46:d7:fa:f6:04:0d:61:a6:8a:7c:24: 84:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:47:D4:CE:0B:A0:79:88:BF:B8:6F:10:8B:64:16:54:CA:25:E7:8A X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:be:f8:ed:c5:07:20:3b:b5:bd:a1:00:14:7c:66:41:7d:f7: 7b:6c:eb:7c:03:92:a8:c3:11:39:28:e8:d4:99:c4:27:a6:b1: 42:88:a3:c8:a7:2d:ea:20:65:24:ac:76:49:a8:5e:63:12:f5: 1c:8b:c5:9f:29:6b:41:dd:3c:83:a9:c2:ec:6f:0c:9f:d5:3a: ae:01:58:d2:64:16:5f:26:cb:b1:83:63:59:46:7d:fd:f6:9d: 3b:ca:2e:39:40:11:71:67:aa:d2:b9:99:cb:77:ec:e4:cf:b0: 80:1d:85:d8:e1:c4:f6:a1:17:00:72:b9:b8:89:20:1d:41:2e: 7d:0b:65:43:e4:6b:77:e5:ad:f1:d5:2f:69:81:9e:85:3e:c6: 75:18:bf:5c:86:57:11:5c:ff:36:4d:00:72:a6:ba:e6:d4:45: 02:c1:69:68:8a:b7:b5:30:b5:45:f0:24:a8:25:6b:5b:2f:1c: d7:35:5f:e0:2c:af:c4:4c:7e:42:8a:98:f3:39:42:35:d6:28: 9f:05:3d:e4:6a:18:dd:fc:68:36:d4:98:88:56:c9:9e:71:47: c7:44:0e:62:65:1b:2f:25:47:6e:34:e1:11:7e:ac:91:2b:02: 87:09:b7:9e:bb:c1:32:57:32:f1:a0:60:9c:e0:db:1c:09:db: 57:8f:c7:cf -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzExMTQ1MDEwWhcNMjYwMzE4MTQ1MDEwWjAYMRYwFAYD VQQDEw02OWIxODEyMi0yOWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyX7GCr6F5dzJ7AF8r8YfPnFkWpkOIt+szY2dTpRbT8zRRX07CI2yxFIDyd8e cZqbJqoZnMBH4noL9wtTHFVipwukpqDYcWo8nZVDKL0cNFWdBV8+/ESgne3xTSnr eASRQfKp4mYqaBbEyXm0Y48DN6uYB6+IH6hG6yhBmsRtj+1wiV/Azdw3GfZ6/rtC sLAT7HdHcsXkke/TgVw+3RuLOLoXsJtUptnUJllwswgF7NmjZTpPy3Rd9p5SBS09 TsmPS2tIMf4TcWlyGaH9iEUjTq0yqFmfzRXnwCifB1Lc9Jf3eowr8h+C+jsK2eIu dfLmm1cRRtf69gQNYaaKfCSEpwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPpH1M4L oHmIv7hvEItkFlTKJeeKMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAn7747cUHIDu1vaEAFHxmQX33e2zrfAOSqMMROSjo1JnE J6axQoijyKct6iBlJKx2SaheYxL1HIvFnylrQd08g6nC7G8Mn9U6rgFY0mQWXybL sYNjWUZ9/fadO8ouOUARcWeq0rmZy3fs5M+wgB2F2OHE9qEXAHK5uIkgHUEufQtl Q+Rrd+Wt8dUvaYGehT7GdRi/XIZXEVz/Nk0Acqa65tRFAsFpaIq3tTC1RfAkqCVr Wy8c1zVf4CyvxEx+QoqY8zlCNdYonwU95GoY3fxoNtSYiFbJnnFHx0QOYmUbLyVH bjThEX6skSsChwm3nrvBMlcy8aBgnODbHAnbV4/Hzw== -----END CERTIFICATE-----Generated at Thu Mar 12 01:43:00 2026 by rpki-client