$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: yDLEmVNU1k3zV/d37y7/wWDOJUI7Sq+la2zdHTagCX0= Subject key identifier: 6B:A3:86:BA:DB:C4:CB:68:E2:17:75:EC:43:E5:0C:D2:BA:1C:0F:7E Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B2E Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A71 Signing time: Tue 05 May 2026 14:50:11 +0000 Manifest this update: Tue 05 May 2026 14:50:10 +0000 Manifest next update: Tue 12 May 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 33UdyCOmuAkXeo54O7+XWClqrYLYEnWUldBPoi4aWPg=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 3: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 12: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19246 (0x4b2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 5 14:50:10 2026 GMT Not After : May 12 14:50:10 2026 GMT Subject: CN=69fa03a3-b73a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b8:2d:ac:77:27:b4:85:d5:b2:f9:89:31:45: b6:b3:e9:4c:51:ed:af:4f:dd:b0:7a:97:28:e8:93: d3:49:ca:0c:4d:1b:03:41:15:23:c2:11:49:4d:79: 63:43:c5:b2:00:22:d4:dc:85:e3:d7:94:61:2c:14: de:3d:dc:14:86:0c:22:c2:d4:dd:35:a1:f7:2e:c3: e9:8c:29:38:40:30:3a:7d:15:37:76:be:44:8a:ad: 05:b7:4e:71:f6:6a:ba:40:19:cb:41:95:02:df:19: e2:66:fb:a2:26:25:e9:36:35:5a:aa:87:98:09:2d: ee:e7:0b:c1:22:11:6b:87:7d:ec:c8:f2:f4:ae:ea: ef:4a:25:f5:4d:37:dc:20:f4:f6:17:2a:76:fc:59: 6c:aa:1f:eb:10:a7:67:f0:c2:d8:e7:98:b7:40:43: ef:fd:46:e0:8a:8d:ef:60:30:07:2d:23:bc:54:f3: 9e:72:5d:be:bb:0f:58:0b:b3:87:5b:15:d0:04:36: e8:cd:6c:87:67:ab:33:37:b3:11:73:c6:a2:90:06: 60:8e:53:e2:4c:8d:f5:64:45:9e:ae:fb:b8:b2:9c: 16:50:3b:4b:32:31:ef:c9:4d:b0:00:40:9f:fc:e7: 17:31:3d:f8:38:a1:6b:15:f7:0a:e7:df:38:bc:2e: 14:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A3:86:BA:DB:C4:CB:68:E2:17:75:EC:43:E5:0C:D2:BA:1C:0F:7E X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:cf:98:bc:60:5d:40:2b:34:09:04:62:d5:82:30:e4:df:75: 44:b8:f1:90:99:7b:3e:1f:f9:dc:e8:62:25:47:e1:13:f0:b0: 27:cb:d9:45:39:fe:f0:59:e8:29:01:9f:54:df:9f:0c:6c:41: c8:27:94:2b:a6:d1:9b:a8:c3:c5:5d:b2:a8:41:83:b6:bb:73: 20:f3:98:d6:1d:a9:94:f2:ab:67:8f:7e:94:7b:dc:a5:de:c6: 3a:12:80:f9:d9:d6:e4:88:c3:32:c3:eb:a0:4b:b6:5c:e5:1a: 60:e0:a6:2c:18:1b:44:4e:d3:63:f4:69:17:bf:10:ed:89:af: dd:f4:81:73:11:24:a7:ce:6b:2d:e2:3a:92:2e:61:ed:a6:40: 0f:26:0a:6e:23:3d:66:a6:f7:1b:2f:5d:a4:f8:d8:7a:2b:31: 1e:d2:0a:a4:ab:76:4b:f0:76:b7:9d:26:ab:0f:c7:3b:1f:d3: ae:99:14:9c:ab:72:9e:8c:75:93:83:54:75:95:7f:d3:87:36: 96:f4:1c:22:2e:f3:c0:d3:e8:8f:63:05:e8:ed:61:43:7e:1b: 5b:28:ad:27:cc:87:df:0a:57:18:d5:47:61:44:12:50:17:cb: 7d:93:94:5f:18:93:4f:70:62:2f:c9:51:5c:ce:f0:98:43:1a: 7e:d5:bf:e8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA1MTQ1MDEwWhcNMjYwNTEyMTQ1MDEwWjAYMRYwFAYD VQQDEw02OWZhMDNhMy1iNzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurgtrHcntIXVsvmJMUW2s+lMUe2vT92wepco6JPTScoMTRsDQRUjwhFJTXlj Q8WyACLU3IXj15RhLBTePdwUhgwiwtTdNaH3LsPpjCk4QDA6fRU3dr5Eiq0Ft05x 9mq6QBnLQZUC3xniZvuiJiXpNjVaqoeYCS3u5wvBIhFrh33syPL0rurvSiX1TTfc IPT2Fyp2/Flsqh/rEKdn8MLY55i3QEPv/Ubgio3vYDAHLSO8VPOecl2+uw9YC7OH WxXQBDbozWyHZ6szN7MRc8aikAZgjlPiTI31ZEWervu4spwWUDtLMjHvyU2wAECf /OcXMT34OKFrFfcK5984vC4UVQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGujhrrb xMto4hd17EPlDNK6HA9+MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAVM+YvGBdQCs0CQRi1YIw5N91RLjxkJl7Ph/53OhiJUfh E/CwJ8vZRTn+8FnoKQGfVN+fDGxByCeUK6bRm6jDxV2yqEGDtrtzIPOY1h2plPKr Z49+lHvcpd7GOhKA+dnW5IjDMsProEu2XOUaYOCmLBgbRE7TY/RpF78Q7Ymv3fSB cxEkp85rLeI6ki5h7aZADyYKbiM9Zqb3Gy9dpPjYeisxHtIKpKt2S/B2t50mqw/H Ox/TrpkUnKtynox1k4NUdZV/04c2lvQcIi7zwNPoj2MF6O1hQ34bWyitJ8yH3wpX GNVHYUQSUBfLfZOUXxiTT3BiL8lRXM7wmEMaftW/6A== -----END CERTIFICATE-----Generated at Wed May 6 03:46:54 2026 by rpki-client