$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: j9Zkcu6zGUgozRHhNTqElI4RNKyDtXZn1NozTc2aaME= Subject key identifier: EB:F3:C7:EF:8C:A8:C0:0A:72:01:36:6A:0F:65:5B:00:7E:F9:EE:5E Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B4D Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A90 Signing time: Fri 15 May 2026 14:50:11 +0000 Manifest this update: Fri 15 May 2026 14:50:11 +0000 Manifest next update: Fri 22 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: jJ/hg/MOv3HWB0JGqzP7rqtpwAvwuzrfVac2I1iUkHA=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19277 (0x4b4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 15 14:50:11 2026 GMT Not After : May 22 14:50:11 2026 GMT Subject: CN=6a0732a3-f509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:2e:bb:c6:81:0a:1f:24:47:cc:76:1e:b2: 24:a0:e3:ed:34:88:aa:a2:13:b0:4e:5d:29:e6:62: 73:92:e1:54:5b:d7:56:cb:67:43:0f:94:e7:f0:cd: d9:e1:47:7c:6e:77:75:79:f4:08:47:9b:17:b7:33: e4:7a:38:fe:cd:49:89:33:ae:63:5c:98:50:17:e1: c2:85:cb:53:32:54:b9:ff:66:0d:7e:f8:68:b8:2d: e5:a7:bf:aa:5e:60:4b:f7:e4:55:7d:17:f2:fa:0c: 6f:1b:f0:e4:e8:30:a7:c6:35:e7:0d:42:eb:72:e1: b9:fb:20:de:5d:4e:94:fe:12:6d:21:c6:95:ec:ea: 69:a2:d3:b5:92:af:f5:7a:6f:3f:bd:77:f2:bf:10: f5:92:d5:07:24:16:7e:b6:16:fc:c8:cb:40:e8:7e: 7b:f2:76:17:61:dd:a4:76:20:7f:c3:91:3c:03:8f: 06:a0:48:c3:a9:b8:8c:ce:ac:cc:b9:3d:c4:6d:38: 03:0d:2a:a5:b9:65:01:63:49:f3:88:01:71:f6:82: 33:81:35:d4:01:99:a9:7c:4f:b5:6c:92:75:6c:12: b4:bb:9e:3a:09:40:3d:b7:b7:82:b8:fe:e3:12:27: b2:70:df:c1:f9:f0:f6:4b:fd:39:7a:73:5a:6c:4d: 78:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F3:C7:EF:8C:A8:C0:0A:72:01:36:6A:0F:65:5B:00:7E:F9:EE:5E X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:32:45:67:55:98:a1:a9:9f:3d:28:00:56:4d:ad:99:ab:bf: df:60:3d:34:f7:50:40:9d:f5:c6:a8:ca:6a:15:9c:9a:ee:a6: 46:30:0a:03:14:5f:76:ed:4f:9d:a8:4b:f6:8a:bc:ce:e2:86: bf:dd:4a:c0:9a:d8:70:b0:a9:c1:0f:60:c3:ee:4d:cf:ea:c4: af:dc:86:62:49:7b:fb:3e:ab:de:53:fd:36:bc:3f:80:7b:7f: 5c:2d:37:85:32:a6:57:5c:ee:c3:ac:1d:36:2c:a3:f0:b4:68: 8c:d1:c0:5b:fc:8c:38:b4:bb:4a:0b:99:9f:5f:64:52:f9:56: b1:cd:44:87:0e:b1:7e:97:d1:95:18:d3:24:b4:5f:d6:dd:32: 09:f8:2f:80:36:66:b3:88:9e:9b:2b:4d:4a:62:4f:f4:dc:4f: b4:09:d3:fe:cf:74:32:a5:6d:cc:1b:c6:e7:d6:b5:47:51:54: 8c:6e:4e:4f:31:dc:f7:b7:4a:9b:00:cf:9a:1a:ab:e1:3c:b9: 3b:ec:6d:cb:49:e7:66:15:90:98:94:1e:ca:e8:18:13:36:fe: 47:b2:69:26:69:cb:f9:32:53:fc:81:d2:85:e7:ae:5e:85:02: de:bd:51:e4:0f:85:36:14:be:5a:bb:a4:41:9f:cf:de:30:f7: d9:0b:12:1b -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTE1MTQ1MDExWhcNMjYwNTIyMTQ1MDExWjAYMRYwFAYD VQQDEw02YTA3MzJhMy1mNTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB0uu8aBCh8kR8x2HrIkoOPtNIiqohOwTl0p5mJzkuFUW9dWy2dDD5Tn8M3Z 4Ud8bnd1efQIR5sXtzPkejj+zUmJM65jXJhQF+HChctTMlS5/2YNfvhouC3lp7+q XmBL9+RVfRfy+gxvG/Dk6DCnxjXnDULrcuG5+yDeXU6U/hJtIcaV7OppotO1kq/1 em8/vXfyvxD1ktUHJBZ+thb8yMtA6H578nYXYd2kdiB/w5E8A48GoEjDqbiMzqzM uT3EbTgDDSqluWUBY0nziAFx9oIzgTXUAZmpfE+1bJJ1bBK0u546CUA9t7eCuP7j EieycN/B+fD2S/05enNabE14uQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOvzx++M qMAKcgE2ag9lWwB++e5eMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAgzJFZ1WYoamfPSgAVk2tmau/32A9NPdQQJ31xqjKahWc mu6mRjAKAxRfdu1PnahL9oq8zuKGv91KwJrYcLCpwQ9gw+5Nz+rEr9yGYkl7+z6r 3lP9Nrw/gHt/XC03hTKmV1zuw6wdNiyj8LRojNHAW/yMOLS7SguZn19kUvlWsc1E hw6xfpfRlRjTJLRf1t0yCfgvgDZms4iemytNSmJP9NxPtAnT/s90MqVtzBvG59a1 R1FUjG5OTzHc97dKmwDPmhqr4Ty5O+xty0nnZhWQmJQeyugYEzb+R7JpJmnL+TJT /IHSheeuXoUC3r1R5A+FNhS+WrukQZ/P3jD32QsSGw== -----END CERTIFICATE-----Generated at Fri May 15 19:02:56 2026 by rpki-client