$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 6z1QZXje4SOWkvUuRHnlEMwnRLHsbon+2WjrrMztTHg= Subject key identifier: 25:E8:8A:7A:36:D9:FC:84:E5:3C:6A:3D:41:13:CE:4B:F7:74:36:99 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A48 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4994 Signing time: Tue 24 Feb 2026 14:50:11 +0000 Manifest this update: Tue 24 Feb 2026 14:50:10 +0000 Manifest next update: Tue 03 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: YZV9h3GVFMx83t+5N+ciEr+YPKUfnehuIQv/XuIiNTM=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: 8nj9/XcODr2Ctn+EDqVgwmIFq75BSgQmoX+2Jbps6ns=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: pdmoZ+GtdjuUtSP8A7epggr5h+r+nMHHeWStgyZbrfc=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Mar 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19016 (0x4a48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 24 14:50:10 2026 GMT Not After : Mar 3 14:50:10 2026 GMT Subject: CN=699dbaa3-6ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:00:db:1d:51:b1:fe:0e:d9:bd:ae:53:f8:3e: c0:f7:d9:75:8b:e8:91:30:7a:9a:70:76:9d:35:b1: 14:ab:58:07:56:94:85:88:7d:3d:29:ae:1f:ea:24: 57:80:88:d9:87:25:d1:43:d4:4e:84:3e:8b:7d:bc: 87:b0:69:d0:73:c4:96:0f:6a:64:2f:de:06:27:ec: 49:6b:71:00:15:89:92:64:5b:48:e4:15:c1:6e:c7: 3a:c4:6a:61:83:8c:cf:29:21:87:19:5c:98:15:f1: e3:13:64:5b:86:fa:29:94:32:f1:70:e8:9c:67:3c: 66:fe:ac:84:20:be:a3:60:bd:0c:13:02:25:b3:e3: 4a:29:da:45:03:7b:69:91:6e:b6:02:66:b5:51:bf: d7:21:f8:f9:34:e8:81:16:71:a0:67:55:98:51:a8: 12:d7:5c:1e:1a:d4:e9:39:bd:7d:b8:d7:c6:05:5f: 86:4f:16:08:a5:30:9f:56:04:d6:b9:1f:8f:d0:52: 08:de:ef:19:db:3e:94:ae:d0:8f:9f:02:fc:a9:9b: 40:ed:82:ee:94:0b:ba:62:18:ca:ac:58:ac:4b:08: a9:7a:c1:99:f9:e6:84:ec:c7:af:74:92:cf:7e:3d: a9:2c:ff:44:ca:f9:c9:6f:f5:8c:2c:02:74:2a:a6: 40:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E8:8A:7A:36:D9:FC:84:E5:3C:6A:3D:41:13:CE:4B:F7:74:36:99 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a5:e5:86:3c:76:00:3d:97:6e:46:6f:44:5b:7b:40:75:62: 83:a3:40:20:16:bb:c5:42:88:eb:10:cd:57:a6:dc:27:6d:9b: cc:4f:42:61:77:e4:1d:7d:05:56:d0:82:7b:4c:11:a1:db:7b: 8b:32:49:2b:fe:8c:ab:69:56:ce:0d:c6:f5:29:04:ba:b4:05: 1b:f9:ea:e5:7b:1b:ea:6a:63:1c:16:44:44:38:8f:d6:0b:28: 03:ea:00:d8:65:09:2d:96:c4:8d:b6:18:fb:71:62:bf:4f:c3: 17:60:d4:3d:57:fd:89:99:4b:3f:01:88:df:16:a0:87:47:ff: b7:25:96:99:7a:d4:fd:74:21:54:48:1c:4b:49:9a:05:fc:ec: df:b2:07:30:35:c2:64:71:93:1f:08:ab:c7:30:48:ba:e5:77: 42:cb:79:b5:22:a6:06:fb:1d:dc:f5:52:bf:17:91:0a:dd:7f: 1c:aa:80:ed:cd:95:dc:12:08:10:2b:85:c3:05:f8:88:dc:88: 18:8e:78:68:ce:3d:2f:55:e1:34:62:19:92:ab:3b:d2:ba:80: 0b:5a:6a:4b:0d:fd:ec:24:af:d4:8f:f7:67:ac:cb:52:7c:1d: ae:e6:0e:d0:0c:9e:10:98:98:b6:ae:42:87:6f:f2:00:ba:5f: ec:57:81:c3 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjI0MTQ1MDEwWhcNMjYwMzAzMTQ1MDEwWjAYMRYwFAYD VQQDDA02OTlkYmFhMy02ZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQDbHVGx/g7Zva5T+D7A99l1i+iRMHqacHadNbEUq1gHVpSFiH09Ka4f6iRX gIjZhyXRQ9ROhD6LfbyHsGnQc8SWD2pkL94GJ+xJa3EAFYmSZFtI5BXBbsc6xGph g4zPKSGHGVyYFfHjE2RbhvoplDLxcOicZzxm/qyEIL6jYL0MEwIls+NKKdpFA3tp kW62Ama1Ub/XIfj5NOiBFnGgZ1WYUagS11weGtTpOb19uNfGBV+GTxYIpTCfVgTW uR+P0FII3u8Z2z6UrtCPnwL8qZtA7YLulAu6YhjKrFisSwipesGZ+eaE7MevdJLP fj2pLP9EyvnJb/WMLAJ0KqZAawIDAQABo4IChzCCAoMwHQYDVR0OBBYEFCXoino2 2fyE5TxqPUETzkv3dDaZMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQArpeWGPHYAPZduRm9EW3tAdWKDo0AgFrvF QojrEM1XptwnbZvMT0Jhd+QdfQVW0IJ7TBGh23uLMkkr/oyraVbODcb1KQS6tAUb +erlexvqamMcFkREOI/WCygD6gDYZQktlsSNthj7cWK/T8MXYNQ9V/2JmUs/AYjf FqCHR/+3JZaZetT9dCFUSBxLSZoF/OzfsgcwNcJkcZMfCKvHMEi65XdCy3m1IqYG +x3c9VK/F5EK3X8cqoDtzZXcEggQK4XDBfiI3IgYjnhozj0vVeE0YhmSqzvSuoAL WmpLDf3sJK/Uj/dnrMtSfB2u5g7QDJ4QmJi2rkKHb/IAul/sV4HD -----END CERTIFICATE-----Generated at Tue Feb 24 18:30:31 2026 by rpki-client