$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: rBAQSJoGwStaExIYxp4n4M/HdHPiP7LCAMV09pGLpy0= Subject key identifier: F3:BE:0E:0E:3D:27:99:82:C2:FE:4E:99:BD:82:C7:BA:40:D1:3B:53 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B2B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A6E Signing time: Mon 04 May 2026 14:58:16 +0000 Manifest this update: Mon 04 May 2026 14:58:15 +0000 Manifest next update: Mon 11 May 2026 14:58:15 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Gwsaz+40tuSVnlmvTO/GKde7nCIxMMPUIBeaHV2GU3k=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19243 (0x4b2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 4 14:58:15 2026 GMT Not After : May 11 14:58:15 2026 GMT Subject: CN=69f8b408-4377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c2:2b:ed:30:7c:52:60:da:31:bf:83:2b:b6: bb:f9:e3:e8:1b:35:75:53:cd:c5:57:ad:57:57:56: f5:db:ff:f4:78:96:a5:eb:1e:9e:2d:a8:49:22:da: 55:8a:97:37:58:83:5f:dc:28:61:1a:4c:64:35:88: 53:48:6d:01:67:d3:22:88:7d:6f:02:53:b2:93:16: 70:f9:15:4d:7a:3b:06:65:1c:68:fe:3e:8a:9a:a7: a7:12:f1:07:c5:bc:05:82:36:2a:51:b3:21:5e:9b: c7:b3:a4:20:68:38:28:13:88:7a:2c:1b:2f:94:ca: fd:2e:4e:ca:94:d1:44:d4:b1:5c:13:30:52:ab:48: 77:f0:49:ce:87:ce:5e:b4:c2:a3:de:f3:62:3c:84: 25:ac:eb:65:32:51:87:76:6e:11:b8:07:18:74:a6: 1c:eb:72:a9:c8:76:a2:e3:c4:31:66:43:49:81:26: 8e:1e:3c:20:6a:f9:fd:ea:62:c8:18:11:61:e5:65: 5a:0c:98:25:77:98:20:1e:e8:ed:18:cd:c9:51:a0: 69:8b:9f:42:9c:ed:92:0a:23:8e:57:91:23:b9:0c: a3:1d:1a:5a:cc:cf:2e:e0:2b:40:0e:ca:9e:f6:cb: ea:43:f5:d4:f5:22:81:85:40:0f:83:5b:0f:74:54: ab:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BE:0E:0E:3D:27:99:82:C2:FE:4E:99:BD:82:C7:BA:40:D1:3B:53 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:b3:b4:59:32:0a:5e:d8:b9:53:c5:aa:f0:ac:ce:02:6f:20: 7b:84:af:70:bd:7a:78:b6:30:62:12:ef:67:c4:3a:5d:dc:2e: f8:5d:cc:4c:66:f6:98:17:6d:77:dd:93:d4:fa:fa:f8:49:fc: 6b:35:a8:7f:17:be:d9:31:02:ca:4c:de:8f:de:a3:d7:89:87: ae:25:a5:63:f5:49:22:10:ec:4c:76:28:14:f8:d1:40:b2:2b: bd:3a:12:89:f3:ce:5c:8e:30:93:a2:1a:a4:ba:7f:8a:23:73: 33:55:a5:09:18:b9:28:19:04:75:fa:39:55:f2:24:d2:fc:60: 0a:0d:b0:f7:d7:4b:24:8b:e4:73:e4:83:0e:42:0b:61:ff:63: 8b:42:b6:e6:88:08:e9:27:5b:47:fa:24:b1:a7:92:cb:d0:74: 64:e1:f3:b9:01:b1:e3:ed:cb:54:08:c8:be:6e:8f:b8:77:df: 34:16:22:fd:63:3d:cc:21:cf:87:b3:3a:8b:ec:8a:a5:ae:7a: e5:6e:7c:82:99:9d:40:fe:4c:b7:9b:85:2f:1a:5f:27:17:14: 06:81:eb:00:75:12:87:dd:ee:94:ca:e6:6e:3d:35:ca:2e:47: e3:2f:7d:60:b0:54:74:39:28:6a:f5:e6:6d:20:67:fe:57:71: 29:d3:0b:68 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA0MTQ1ODE1WhcNMjYwNTExMTQ1ODE1WjAYMRYwFAYD VQQDEw02OWY4YjQwOC00Mzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsIr7TB8UmDaMb+DK7a7+ePoGzV1U83FV61XV1b12//0eJal6x6eLahJItpV ipc3WINf3ChhGkxkNYhTSG0BZ9MiiH1vAlOykxZw+RVNejsGZRxo/j6KmqenEvEH xbwFgjYqUbMhXpvHs6QgaDgoE4h6LBsvlMr9Lk7KlNFE1LFcEzBSq0h38EnOh85e tMKj3vNiPIQlrOtlMlGHdm4RuAcYdKYc63KpyHai48QxZkNJgSaOHjwgavn96mLI GBFh5WVaDJgld5ggHujtGM3JUaBpi59CnO2SCiOOV5EjuQyjHRpazM8u4CtADsqe 9svqQ/XU9SKBhUAPg1sPdFSr5wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPO+Dg49 J5mCwv5Omb2Cx7pA0TtTMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAZrO0WTIKXti5U8Wq8KzOAm8ge4SvcL16eLYwYhLvZ8Q6 Xdwu+F3MTGb2mBdtd92T1Pr6+En8azWofxe+2TECykzej96j14mHriWlY/VJIhDs THYoFPjRQLIrvToSifPOXI4wk6IapLp/iiNzM1WlCRi5KBkEdfo5VfIk0vxgCg2w 99dLJIvkc+SDDkILYf9ji0K25ogI6SdbR/oksaeSy9B0ZOHzuQGx4+3LVAjIvm6P uHffNBYi/WM9zCHPh7M6i+yKpa565W58gpmdQP5Mt5uFLxpfJxcUBoHrAHUSh93u lMrmbj01yi5H4y99YLBUdDkoavXmbSBn/ldxKdMLaA== -----END CERTIFICATE-----Generated at Tue May 5 03:09:05 2026 by rpki-client