$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: YNNoKaSYM50uCwONQDpT2GpK8+dI1dQoP9HT1rGhqC4= Subject key identifier: C4:FA:0B:FC:C5:19:AD:E6:03:F1:83:C8:3E:8A:55:A1:34:22:29:74 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B23 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A66 Signing time: Sat 02 May 2026 02:50:11 +0000 Manifest this update: Sat 02 May 2026 02:50:11 +0000 Manifest next update: Sat 09 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: g3DZefg9gZ+vywYryPr+wTI3rtX+4DFdUjAQad+L/tk=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19235 (0x4b23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 2 02:50:11 2026 GMT Not After : May 9 02:50:11 2026 GMT Subject: CN=69f56663-6796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5c:11:36:83:89:09:db:e9:e7:f4:33:77:0c: dd:39:1e:af:c5:09:3c:0b:98:eb:12:c4:e3:1a:6e: 78:b4:dc:3c:df:80:5e:37:45:9c:f2:f0:f7:93:ec: 24:45:7e:09:fe:d8:b6:01:33:e8:6c:35:30:86:ba: ae:93:bc:65:ea:55:1c:35:ae:52:5b:36:3e:65:f3: c8:e3:9a:cc:0b:fb:55:07:e9:48:28:c5:d9:42:68: 1e:78:9f:de:b9:da:fb:fd:5a:00:5c:a4:a0:ad:81: cc:15:47:48:b1:59:51:50:44:aa:a3:3c:a4:73:8a: 50:99:22:08:78:4e:89:12:28:44:7a:74:23:62:8e: 96:0a:4a:a6:42:8d:38:bc:89:96:9a:03:ad:d7:83: 92:c3:68:c1:df:9b:7a:fc:90:f4:52:c0:23:59:d3: 4c:34:3e:32:46:2f:5a:c1:1a:a2:49:8d:9e:7f:3a: e5:d0:f5:ca:92:ec:a4:aa:83:2c:f0:71:22:32:90: cd:62:20:e0:19:44:11:e0:71:eb:aa:c0:51:6d:3b: 78:d0:64:b6:13:1b:fe:be:bf:ec:56:59:63:01:83: 62:ac:d9:36:ad:09:b1:68:9f:61:b3:0a:55:23:63: 28:a3:36:79:d0:d7:e9:ea:67:22:45:46:f5:3b:13: 27:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FA:0B:FC:C5:19:AD:E6:03:F1:83:C8:3E:8A:55:A1:34:22:29:74 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:77:5e:e2:25:c6:ad:81:5b:c7:d0:26:89:1d:5f:d5:02:16: e4:66:cf:f5:75:77:3d:57:c6:8b:c5:10:70:f7:3b:a3:15:3d: 04:9f:6c:53:14:c0:0b:c9:4b:23:55:1e:e0:66:69:3a:ea:9c: 20:07:33:09:9a:3e:d3:92:db:5e:18:c2:7f:e8:97:1b:e1:dd: 96:d1:04:45:f9:66:c2:18:74:0b:12:9b:af:28:5d:6a:d6:bb: 2f:05:8a:56:67:1c:da:bb:74:b0:71:af:80:71:e7:4c:97:85: f5:8a:a4:f9:20:98:e6:76:24:b6:9b:de:fa:5f:a2:b2:f4:95: 1e:bd:11:9d:4a:2d:f4:e6:a8:37:b0:84:63:59:0d:8a:9a:e5: 21:7b:59:e4:1d:52:32:8d:b7:6a:51:d3:8f:cf:3e:8a:d4:0a: eb:10:d9:c0:aa:b1:01:54:83:ba:3a:43:3c:0f:41:5e:51:1e: 0b:3f:85:a4:78:63:50:a6:91:7a:51:c6:7e:af:7e:89:5f:98: c1:c5:79:c9:0d:32:4e:78:90:25:56:d9:fc:a2:69:05:ce:39: 50:c1:2c:ad:df:87:f5:17:ba:20:92:65:08:12:2c:e2:9e:3b: 6f:1b:ad:4f:fe:0f:12:e0:6f:47:53:3b:1d:5c:4f:01:6a:88: bd:18:51:eb -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTAyMDI1MDExWhcNMjYwNTA5MDI1MDExWjAYMRYwFAYD VQQDEw02OWY1NjY2My02Nzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFwRNoOJCdvp5/QzdwzdOR6vxQk8C5jrEsTjGm54tNw834BeN0Wc8vD3k+wk RX4J/ti2ATPobDUwhrquk7xl6lUcNa5SWzY+ZfPI45rMC/tVB+lIKMXZQmgeeJ/e udr7/VoAXKSgrYHMFUdIsVlRUESqozykc4pQmSIIeE6JEihEenQjYo6WCkqmQo04 vImWmgOt14OSw2jB35t6/JD0UsAjWdNMND4yRi9awRqiSY2efzrl0PXKkuykqoMs 8HEiMpDNYiDgGUQR4HHrqsBRbTt40GS2Exv+vr/sVlljAYNirNk2rQmxaJ9hswpV I2MoozZ50Nfp6mciRUb1OxMnwwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMT6C/zF Ga3mA/GDyD6KVaE0Iil0MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEASHde4iXGrYFbx9AmiR1f1QIW5GbP9XV3PVfGi8UQcPc7 oxU9BJ9sUxTAC8lLI1Ue4GZpOuqcIAczCZo+05LbXhjCf+iXG+HdltEERflmwhh0 CxKbryhdata7LwWKVmcc2rt0sHGvgHHnTJeF9Yqk+SCY5nYktpve+l+isvSVHr0R nUot9OaoN7CEY1kNiprlIXtZ5B1SMo23alHTj88+itQK6xDZwKqxAVSDujpDPA9B XlEeCz+FpHhjUKaRelHGfq9+iV+YwcV5yQ0yTniQJVbZ/KJpBc45UMEsrd+H9Re6 IJJlCBIs4p47bxutT/4PEuBvR1M7HVxPAWqIvRhR6w== -----END CERTIFICATE-----Generated at Sat May 2 11:11:06 2026 by rpki-client