$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: hp3JMrDOaFnA+8xj/VxGGVpWK3/gpQFwb3ffzMyLBic= Subject key identifier: C8:C9:1C:47:3A:B9:DC:15:0E:88:70:3D:75:E4:BE:8E:0C:5C:94:4E Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AD0 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A16 Signing time: Tue 07 Apr 2026 02:50:12 +0000 Manifest this update: Tue 07 Apr 2026 02:50:11 +0000 Manifest next update: Tue 14 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: MyQPnBfAJavIv9B4IKQgc7ywjhL2eq7yffFOjHyvB7Y=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19152 (0x4ad0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 7 02:50:11 2026 GMT Not After : Apr 14 02:50:11 2026 GMT Subject: CN=69d470e4-d0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fd:a6:60:a2:84:78:84:6f:2d:a3:8a:a5:c8: 8b:3e:3d:72:eb:71:d4:21:b8:03:a6:77:fa:a4:54: 0c:f3:fb:aa:40:3b:87:b4:cd:e6:8f:e4:a7:07:60: d9:82:c9:ce:c7:f4:51:f4:ab:02:76:99:f7:f7:6f: c7:00:bf:4d:81:7e:15:de:b2:ef:bf:49:50:ba:da: 3f:46:5a:17:fd:7f:18:87:55:85:dd:45:6e:85:3f: 19:5a:7d:37:9e:c8:0a:40:b9:63:b0:89:a1:c7:6a: 17:5f:c6:3d:65:a6:e6:e4:05:ba:d3:78:96:9b:52: 38:38:e9:af:90:2c:be:46:97:47:5f:95:8a:f1:3b: 1e:ef:f2:fd:da:b0:18:1f:7f:7f:74:f3:82:67:13: 59:dc:97:3d:be:02:4c:0b:ed:74:27:3c:1e:37:07: 07:73:c1:b3:d5:9d:39:92:f2:02:f8:4e:09:57:7f: 4e:b1:d8:bc:d8:ff:5d:c5:a2:ad:17:e5:2c:15:4a: fb:df:5d:de:63:71:a8:62:e4:49:34:73:09:35:a9: 49:7f:af:4d:8f:1d:7d:b7:9d:e1:42:cc:57:58:f4: 81:6e:09:80:20:47:99:af:4e:67:0b:c2:bb:f3:1f: c2:a8:1b:b2:d8:65:3e:68:48:80:b3:7e:3d:36:bb: 21:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C9:1C:47:3A:B9:DC:15:0E:88:70:3D:75:E4:BE:8E:0C:5C:94:4E X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:53:88:8a:0e:e7:3a:f9:65:6f:cf:4b:a3:df:0f:0a:fb:ca: d3:62:74:d7:50:3f:80:ef:b3:32:d2:0a:23:98:af:5a:ae:2d: d1:e3:1c:64:92:4a:c5:ba:db:29:3f:45:db:ca:5f:69:4e:b0: ba:05:cc:bb:50:5e:41:60:f6:df:52:38:81:7a:ae:55:26:fa: 0b:86:5a:9b:50:91:7b:45:7f:12:fb:ef:88:ed:c8:42:f6:44: 54:5c:e6:0c:7b:4e:31:e3:b2:c0:b9:0d:c6:6a:15:3c:09:95: e8:37:d7:8b:d2:0d:44:29:54:e6:c8:da:b7:85:f3:10:60:bf: 10:b8:4d:0f:55:30:ee:db:49:83:b2:25:a9:76:0f:bb:a0:36: 84:8c:ca:41:1f:3b:ed:37:87:b4:fd:59:e4:fe:e4:26:5e:ee: 3e:f3:41:f7:34:bc:65:9e:5c:0e:69:6e:62:42:f1:02:f3:c1: 7d:61:b2:e7:f3:b2:45:9f:2c:7e:64:db:c6:3f:ee:4d:86:d2: 6f:dc:72:b5:1f:7c:6a:b0:95:c1:ed:98:26:d0:1c:6c:75:22: 60:a1:07:14:c3:da:6c:fa:d6:dd:7a:91:32:88:3d:9c:3e:07: 2b:26:15:99:af:98:9a:93:5f:60:6b:9a:77:80:9a:3f:7f:19: 5d:82:74:f1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICStAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDA3MDI1MDExWhcNMjYwNDE0MDI1MDExWjAYMRYwFAYD VQQDEw02OWQ0NzBlNC1kMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlv2mYKKEeIRvLaOKpciLPj1y63HUIbgDpnf6pFQM8/uqQDuHtM3mj+SnB2DZ gsnOx/RR9KsCdpn392/HAL9NgX4V3rLvv0lQuto/RloX/X8Yh1WF3UVuhT8ZWn03 nsgKQLljsImhx2oXX8Y9Zabm5AW603iWm1I4OOmvkCy+RpdHX5WK8Tse7/L92rAY H39/dPOCZxNZ3Jc9vgJMC+10JzweNwcHc8Gz1Z05kvIC+E4JV39Osdi82P9dxaKt F+UsFUr7313eY3GoYuRJNHMJNalJf69Njx19t53hQsxXWPSBbgmAIEeZr05nC8K7 8x/CqBuy2GU+aEiAs349NrshSwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMjJHEc6 udwVDohwPXXkvo4MXJROMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAlVOIig7nOvllb89Lo98PCvvK02J011A/gO+zMtIKI5iv Wq4t0eMcZJJKxbrbKT9F28pfaU6wugXMu1BeQWD231I4gXquVSb6C4Zam1CRe0V/ EvvviO3IQvZEVFzmDHtOMeOywLkNxmoVPAmV6DfXi9INRClU5sjat4XzEGC/ELhN D1Uw7ttJg7IlqXYPu6A2hIzKQR877TeHtP1Z5P7kJl7uPvNB9zS8ZZ5cDmluYkLx AvPBfWGy5/OyRZ8sfmTbxj/uTYbSb9xytR98arCVwe2YJtAcbHUiYKEHFMPabPrW 3XqRMog9nD4HKyYVma+YmpNfYGuad4CaP38ZXYJ08Q== -----END CERTIFICATE-----Generated at Tue Apr 7 10:56:41 2026 by rpki-client