$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: bEr43qvQsGGw/En9EeRo6N3KDQU9dDlkWQJH4prvUCw= Subject key identifier: 5C:85:AF:79:F6:00:FE:46:8B:4F:E2:AB:30:FE:4B:D0:E5:1F:DE:83 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BBA Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AF7 Signing time: Wed 17 Jun 2026 02:50:11 +0000 Manifest this update: Wed 17 Jun 2026 02:50:11 +0000 Manifest next update: Wed 24 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: LM3PuopXyfnySZjmrIOQvlSWYxDooBuzbm9l02yGUXc=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 12: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 01:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19386 (0x4bba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 17 02:50:11 2026 GMT Not After : Jun 24 02:50:11 2026 GMT Subject: CN=6a320b63-1832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d8:f9:f8:a1:d5:45:19:9a:9b:a0:c6:4c:4d: 0b:08:40:48:c8:df:79:31:7a:31:93:ba:5a:ee:86: 72:71:f9:7c:d0:cf:60:8f:c0:47:9b:48:d1:3b:f6: 1e:5e:24:28:90:2d:58:2d:64:1d:8a:2c:54:26:d3: 30:b6:12:16:ce:66:3f:f5:3c:05:1e:ff:48:ae:72: 05:cc:70:91:3b:64:3a:10:ac:0b:8b:61:f8:91:cd: 20:5e:16:cf:46:d9:4e:01:4f:f9:ec:eb:50:a8:52: 35:38:e7:32:ca:4e:46:9c:7f:7c:02:e7:bc:5b:d6: 5f:5c:9f:58:78:17:f3:91:dd:b8:41:51:ef:66:7c: 48:6d:b4:6f:26:0e:43:78:3a:be:ea:2a:1e:5c:31: cb:48:d5:5f:47:69:e2:fa:b0:6a:cc:63:62:c3:7b: 51:d6:2a:3e:6d:42:b6:fc:31:82:59:2d:d2:e6:12: 3a:a9:70:0d:47:da:09:40:6e:2e:e1:6f:70:23:6d: 33:8c:01:5f:7d:ab:f8:42:c6:11:07:3c:b9:e0:ea: 0d:db:5e:1a:d7:56:78:9d:34:ef:49:52:76:1b:75: 8c:ac:82:a9:38:e8:c1:35:35:1f:2d:27:7c:cb:fa: 15:61:9f:3c:28:a9:fe:db:e2:ef:d1:5c:7d:c5:19: 0a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:85:AF:79:F6:00:FE:46:8B:4F:E2:AB:30:FE:4B:D0:E5:1F:DE:83 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:82:7b:76:03:7a:09:00:fa:8f:0e:0f:4f:17:1f:5e:7e:f6: b8:b3:02:42:6c:5a:1a:3b:6a:d0:ba:d7:87:4d:f2:67:ef:c1: ca:8c:3f:cf:a1:63:dc:21:86:55:07:9b:8c:9b:75:68:f3:fa: 47:2a:8a:18:4d:07:1f:af:08:5d:b5:82:6d:91:0d:d1:9d:df: 46:b2:0a:08:36:40:54:29:a8:b7:b1:6e:93:6d:05:ee:5c:d0: 99:08:e2:0e:8b:00:9d:f8:df:08:22:db:68:43:93:14:9a:90: de:f2:34:65:b5:ef:f4:15:83:d5:87:37:b2:c6:d2:1b:3b:34: 31:4d:9e:df:a9:b3:66:02:09:07:88:90:f0:e7:36:98:99:bd: 06:b3:8b:c9:90:1c:40:d5:e0:ff:1e:5f:f4:16:67:ca:38:92: 4e:06:76:68:fa:97:58:b9:c1:90:ce:86:89:50:31:f9:3c:57: 3b:37:fc:f2:b8:3c:66:10:97:54:a1:42:68:be:42:73:c1:2f: 47:9c:0d:c3:2f:f3:65:98:40:2e:44:17:5b:40:ce:2f:64:a8: e2:d9:a2:fb:b0:63:c2:5e:2f:93:5b:fe:18:91:e6:33:9c:a4: fe:7c:6b:c1:cc:98:88:39:84:ac:81:85:44:b5:aa:9d:7f:4f: d8:f2:08:dc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjE3MDI1MDExWhcNMjYwNjI0MDI1MDExWjAYMRYwFAYD VQQDEw02YTMyMGI2My0xODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjdj5+KHVRRmam6DGTE0LCEBIyN95MXoxk7pa7oZycfl80M9gj8BHm0jRO/Ye XiQokC1YLWQdiixUJtMwthIWzmY/9TwFHv9IrnIFzHCRO2Q6EKwLi2H4kc0gXhbP RtlOAU/57OtQqFI1OOcyyk5GnH98Aue8W9ZfXJ9YeBfzkd24QVHvZnxIbbRvJg5D eDq+6ioeXDHLSNVfR2ni+rBqzGNiw3tR1io+bUK2/DGCWS3S5hI6qXANR9oJQG4u 4W9wI20zjAFffav4QsYRBzy54OoN214a11Z4nTTvSVJ2G3WMrIKpOOjBNTUfLSd8 y/oVYZ88KKn+2+Lv0Vx9xRkK3QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFyFr3n2 AP5Gi0/iqzD+S9DlH96DMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAQoJ7dgN6CQD6jw4PTxcfXn72uLMCQmxaGjtq0LrXh03y Z+/Byow/z6Fj3CGGVQebjJt1aPP6RyqKGE0HH68IXbWCbZEN0Z3fRrIKCDZAVCmo t7Fuk20F7lzQmQjiDosAnfjfCCLbaEOTFJqQ3vI0ZbXv9BWD1Yc3ssbSGzs0MU2e 36mzZgIJB4iQ8Oc2mJm9BrOLyZAcQNXg/x5f9BZnyjiSTgZ2aPqXWLnBkM6GiVAx +TxXOzf88rg8ZhCXVKFCaL5Cc8EvR5wNwy/zZZhALkQXW0DOL2So4tmi+7Bjwl4v k1v+GJHmM5yk/nxrwcyYiDmErIGFRLWqnX9P2PII3A== -----END CERTIFICATE-----Generated at Wed Jun 17 10:06:59 2026 by rpki-client