$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: lRp6unut1fki7bEeI4neaiX3nBWg3IeH33v2UwtDvgo= Subject key identifier: 92:09:97:76:7A:34:02:10:2C:4C:E4:69:9D:22:E8:AB:09:7D:E2:FC Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A9B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49E2 Signing time: Sat 21 Mar 2026 02:50:10 +0000 Manifest this update: Sat 21 Mar 2026 02:50:10 +0000 Manifest next update: Sat 28 Mar 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: cJ8gJOnyail7vLqwIm2JcG1Qc6dxUQOaiTR0j6tHR4Y=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19099 (0x4a9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 21 02:50:10 2026 GMT Not After : Mar 28 02:50:10 2026 GMT Subject: CN=69be0762-3eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:74:b0:68:11:3c:54:e1:03:f2:95:86:1b:7b: 01:94:92:dd:f7:fd:87:0c:c2:b2:78:e8:34:59:ae: ec:4c:05:9f:ef:63:d1:f0:dc:2f:e8:8c:ad:d2:13: 4d:3e:e3:2c:32:2b:35:34:2c:9f:38:c6:e0:56:cf: cd:25:3b:25:ef:e5:2d:a9:b5:73:6a:f1:cf:28:0a: 0b:36:b1:b8:03:95:c7:40:0e:09:1f:b8:d7:c2:71: 85:6d:2e:a1:30:d3:98:9a:84:4f:50:7d:22:e3:26: b2:b0:53:5b:3b:55:22:bd:f8:b7:bf:6a:9c:d5:d5: 71:42:78:79:6b:98:f3:f6:d4:c9:9c:5d:f8:8b:b2: 3c:d4:95:e0:5d:80:ee:6d:e8:56:8d:c9:82:48:29: dd:ce:19:f6:12:c9:b2:bc:db:18:6f:4f:ee:5f:8d: 34:1a:fc:7f:23:87:21:ee:f5:3d:73:d8:22:03:59: 30:93:c0:d2:06:34:c7:23:f5:1e:56:16:6d:fd:c5: df:e8:70:31:c2:b6:45:ef:98:d9:21:7f:fc:d2:c3: e7:8d:c4:80:bc:a8:f1:73:67:1e:85:12:90:95:51: 3c:2c:6f:d7:b9:f9:75:f6:f9:fc:fe:56:da:9a:c3: 06:4c:ab:9a:0f:65:9f:4f:ba:46:b8:ab:46:d9:cb: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:09:97:76:7A:34:02:10:2C:4C:E4:69:9D:22:E8:AB:09:7D:E2:FC X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:7c:6a:73:5b:20:2d:02:f8:2d:87:2f:c1:94:6a:cf:b7:e1: c6:36:7b:74:cc:ab:85:62:58:ae:7b:49:89:cc:9e:07:c6:a6: c4:f1:76:b2:7a:ef:85:57:33:c0:a3:fa:2a:b9:d5:ad:68:19: 28:80:3e:43:85:0a:36:42:e7:0e:63:fb:24:00:57:59:11:94: a2:2a:d1:ab:9f:cb:e1:af:06:c1:85:b6:12:90:90:d8:36:ea: 8b:7b:00:74:5a:f5:93:ab:04:dc:a5:73:a1:5e:c7:b3:d9:d6: e5:0b:6b:6c:f1:bc:09:8b:69:5d:bb:04:e1:fb:08:7c:cc:42: 0e:b7:f8:90:38:0a:30:76:7f:fc:40:db:68:d3:d2:ed:5b:4f: 47:cb:54:9e:3b:5b:5b:b4:88:27:bb:c9:21:70:ac:a4:2d:d3: 0c:43:73:68:ca:30:62:07:0c:e7:f7:9f:5e:7d:e8:61:b8:74: 5b:6f:42:4c:0d:d3:8c:60:5c:89:5e:6a:64:08:b2:d5:b4:04: a5:12:71:36:a3:d2:59:59:de:d7:dc:4b:ab:b4:40:57:71:18: 55:e7:d9:5a:55:cc:26:da:bb:1e:af:61:6f:24:2e:ff:9b:38: 70:94:af:8c:cc:42:4e:ca:78:ca:0f:c4:ca:08:8e:a0:b1:8d: 0d:5b:e1:e5 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzIxMDI1MDEwWhcNMjYwMzI4MDI1MDEwWjAYMRYwFAYD VQQDEw02OWJlMDc2Mi0zZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHSwaBE8VOED8pWGG3sBlJLd9/2HDMKyeOg0Wa7sTAWf72PR8Nwv6Iyt0hNN PuMsMis1NCyfOMbgVs/NJTsl7+UtqbVzavHPKAoLNrG4A5XHQA4JH7jXwnGFbS6h MNOYmoRPUH0i4yaysFNbO1Uivfi3v2qc1dVxQnh5a5jz9tTJnF34i7I81JXgXYDu behWjcmCSCndzhn2EsmyvNsYb0/uX400Gvx/I4ch7vU9c9giA1kwk8DSBjTHI/Ue VhZt/cXf6HAxwrZF75jZIX/80sPnjcSAvKjxc2cehRKQlVE8LG/Xufl19vn8/lba msMGTKuaD2WfT7pGuKtG2csozwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFJIJl3Z6 NAIQLEzkaZ0i6KsJfeL8MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAFHxqc1sgLQL4LYcvwZRqz7fhxjZ7dMyrhWJYrntJicye B8amxPF2snrvhVczwKP6KrnVrWgZKIA+Q4UKNkLnDmP7JABXWRGUoirRq5/L4a8G wYW2EpCQ2Dbqi3sAdFr1k6sE3KVzoV7Hs9nW5QtrbPG8CYtpXbsE4fsIfMxCDrf4 kDgKMHZ//EDbaNPS7VtPR8tUnjtbW7SIJ7vJIXCspC3TDENzaMowYgcM5/efXn3o Ybh0W29CTA3TjGBciV5qZAiy1bQEpRJxNqPSWVne19xLq7RAV3EYVefZWlXMJtq7 Hq9hbyQu/5s4cJSvjMxCTsp4yg/EygiOoLGNDVvh5Q== -----END CERTIFICATE-----Generated at Sat Mar 21 13:41:05 2026 by rpki-client