$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 9U6PvZOD77YBCdZsk23+ROxgrYdnD8LdRZj+bsju+48= Subject key identifier: BA:D8:29:97:B2:A6:C6:E3:4F:C0:0C:6E:4E:25:6A:8E:2E:C2:8D:37 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AC5 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A0C Signing time: Sat 04 Apr 2026 02:50:11 +0000 Manifest this update: Sat 04 Apr 2026 02:50:11 +0000 Manifest next update: Sat 11 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: uVICiroSB/8kKY9Icgn+jufCcHFoy5Ka8P5w7Jae7rs=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19141 (0x4ac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 4 02:50:11 2026 GMT Not After : Apr 11 02:50:11 2026 GMT Subject: CN=69d07c63-c4db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:79:9f:c7:c3:57:3d:25:95:b1:42:1a:1d:09: cf:75:4c:a3:3f:3b:6d:fe:e5:c2:47:a6:2d:3a:5c: 47:a5:c1:2e:c8:89:b9:c3:2a:aa:f1:66:69:84:c5: fc:7b:8b:db:34:66:0a:91:19:dd:ad:4a:8b:3a:e4: 44:1b:f5:aa:5b:d1:9d:66:9c:91:7c:3d:03:22:59: b3:dc:c2:4d:fc:a2:44:b5:cb:bc:58:74:19:f0:3f: 02:8a:bb:80:97:3f:ac:25:f0:37:07:3c:58:d3:ca: 7b:3d:d6:46:ed:63:e7:0e:1e:8d:72:54:a9:19:cf: b3:c8:b1:19:e1:8c:d7:cc:ca:c2:d1:d6:f9:f0:ba: 18:c4:b7:c1:ce:8c:6a:0e:bf:ea:1c:df:b9:2e:c3: 4b:6d:e8:34:fc:75:be:66:3d:ea:31:b5:1a:43:91: 7f:e9:69:52:70:70:d8:d7:37:3f:9a:e2:62:f3:fd: 4c:f0:12:7b:12:65:2f:be:ac:65:d5:8b:bc:0b:f3: 7f:b4:9a:f7:9a:4c:28:ba:4a:93:17:28:10:fd:d4: 8d:79:53:a8:b5:e4:ce:b1:51:c2:ec:48:a6:fd:c0: fb:02:0c:e7:7f:6e:27:14:e5:3b:7d:63:29:ad:89: 7e:54:6f:6d:0b:b9:c7:e6:86:e0:df:c9:c4:22:49: b1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D8:29:97:B2:A6:C6:E3:4F:C0:0C:6E:4E:25:6A:8E:2E:C2:8D:37 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:d5:90:92:bd:76:5f:af:8d:12:31:6f:69:27:5d:f5:a5:07: 07:a2:70:29:eb:b6:87:b8:88:df:d0:c5:a0:41:eb:43:80:74: ca:74:b3:a8:7a:2b:12:1f:4e:b0:31:30:6f:92:ac:e3:9a:07: c9:c6:85:c9:a2:8c:c7:56:40:ab:ca:8d:0e:09:f1:2f:8d:70: 7c:90:85:be:17:c4:22:8f:b5:12:ba:9f:bb:01:ba:86:9b:cb: a2:e6:75:a7:a3:b2:3e:a6:52:8e:4d:8c:27:49:e6:37:8f:49: a0:11:e6:fd:e8:61:9f:84:70:76:71:aa:75:47:d3:09:8e:19: 0e:19:c5:2b:2e:a3:a7:89:16:a1:1f:92:35:7c:06:3d:6e:c1: 5e:91:e2:fc:97:07:77:77:63:09:49:f1:50:50:33:e5:72:d6: f2:37:8c:f2:36:c8:56:ec:59:8d:32:43:fd:3e:e5:a6:50:4b: 9c:03:71:98:69:df:cb:04:35:bf:27:36:23:04:7f:2c:77:99: c0:0c:47:b5:3a:2c:a8:97:30:bd:54:30:a2:3e:d6:c0:14:86: cf:98:5e:ac:3b:f3:f7:04:c9:85:7c:33:a6:55:00:1b:ff:e4: 40:1d:fc:82:0a:2b:19:ad:1b:c2:1a:72:d2:91:bc:3f:5e:36: 14:dc:f6:75 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDA0MDI1MDExWhcNMjYwNDExMDI1MDExWjAYMRYwFAYD VQQDEw02OWQwN2M2My1jNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3mfx8NXPSWVsUIaHQnPdUyjPztt/uXCR6YtOlxHpcEuyIm5wyqq8WZphMX8 e4vbNGYKkRndrUqLOuREG/WqW9GdZpyRfD0DIlmz3MJN/KJEtcu8WHQZ8D8CiruA lz+sJfA3BzxY08p7PdZG7WPnDh6NclSpGc+zyLEZ4YzXzMrC0db58LoYxLfBzoxq Dr/qHN+5LsNLbeg0/HW+Zj3qMbUaQ5F/6WlScHDY1zc/muJi8/1M8BJ7EmUvvqxl 1Yu8C/N/tJr3mkwoukqTFygQ/dSNeVOoteTOsVHC7Eim/cD7Agznf24nFOU7fWMp rYl+VG9tC7nH5obg38nEIkmxTwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLrYKZey psbjT8AMbk4lao4uwo03MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAq9WQkr12X6+NEjFvaSdd9aUHB6JwKeu2h7iI39DFoEHr Q4B0ynSzqHorEh9OsDEwb5Ks45oHycaFyaKMx1ZAq8qNDgnxL41wfJCFvhfEIo+1 ErqfuwG6hpvLouZ1p6OyPqZSjk2MJ0nmN49JoBHm/ehhn4RwdnGqdUfTCY4ZDhnF Ky6jp4kWoR+SNXwGPW7BXpHi/JcHd3djCUnxUFAz5XLW8jeM8jbIVuxZjTJD/T7l plBLnANxmGnfywQ1vyc2IwR/LHeZwAxHtTosqJcwvVQwoj7WwBSGz5herDvz9wTJ hXwzplUAG//kQB38ggorGa0bwhpy0pG8P142FNz2dQ== -----END CERTIFICATE-----Generated at Sat Apr 4 10:12:51 2026 by rpki-client