$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: jucOeDWPpEvlkCNbLGXVKsRY5E8ijYV2EBhAaoL2cGQ= Subject key identifier: CB:49:B6:3A:07:DF:34:3F:4C:BE:64:1F:FF:9D:CA:BC:C5:CB:17:AC Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BCF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B0C Signing time: Wed 24 Jun 2026 02:50:12 +0000 Manifest this update: Wed 24 Jun 2026 02:50:12 +0000 Manifest next update: Wed 01 Jul 2026 02:50:12 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: lgJqOkCjzJQvlFdlgIqMgdYbFzSFogHAYSP5HGlCzxc=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19407 (0x4bcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 24 02:50:12 2026 GMT Not After : Jul 1 02:50:12 2026 GMT Subject: CN=6a3b45e4-96de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:38:4c:83:49:2f:a7:1d:4d:7d:9c:91:85:ab: dd:57:74:ad:7c:e2:d6:0d:9e:a1:e6:da:11:cf:9b: 3e:4c:03:5e:0a:be:ca:97:ba:20:16:f6:70:a2:2a: b9:e2:bb:1c:b9:c3:6d:6a:63:40:64:0f:1d:d8:c4: 5b:31:53:b9:97:8b:57:bf:4c:5e:41:bc:af:b9:a8: a8:b4:a7:61:f9:36:aa:6c:a7:ab:cc:ac:81:30:c3: 3a:82:9e:91:c5:3f:70:02:45:ea:d5:e7:9c:df:9b: e8:79:42:48:e4:1f:d4:59:81:18:90:bf:1e:0d:3e: bc:9f:f7:d0:e0:a4:3e:b4:aa:eb:25:26:e9:53:36: 9d:ad:c0:37:82:8d:b5:7d:41:e4:41:c1:72:39:30: 19:e0:82:34:1b:00:be:ee:92:ed:a1:0f:cf:a4:de: c5:ff:ab:ba:54:f8:16:08:f4:61:71:57:e9:80:91: ea:7f:d9:74:d5:00:9a:f3:38:2b:95:1e:65:9d:ed: 07:36:77:9c:d9:a2:80:5c:d1:8b:12:a2:1c:18:21: df:6d:c2:32:6a:4a:3b:3e:60:43:29:e4:f3:2e:04: 54:9b:14:85:c1:ea:c5:08:de:f8:d1:98:c5:6f:85: bd:09:b3:ae:fe:7b:d5:76:c3:ee:91:b9:69:31:b9: 4f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:49:B6:3A:07:DF:34:3F:4C:BE:64:1F:FF:9D:CA:BC:C5:CB:17:AC X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7f:f3:6e:9c:90:11:64:fd:8b:28:3c:6c:5b:7c:b1:13:92: 87:2c:3e:ce:f2:16:55:d2:39:d4:94:0b:de:91:9e:56:ff:06: e4:a8:c6:db:e6:2a:b4:02:04:5f:68:2c:8b:73:4e:2d:da:3b: e8:e2:fa:ea:8b:c0:63:a2:98:24:96:19:d6:88:80:97:30:0f: dc:03:96:b7:f8:23:e5:fe:7a:02:20:c6:5f:b4:68:e1:dc:16: 02:bb:c9:93:66:f7:35:26:c8:4e:a9:b8:90:59:a0:6c:8f:90: ef:6b:c8:63:ee:95:23:af:20:d5:e4:87:1d:2d:ba:ae:06:df: 80:f6:33:0b:13:8b:4a:87:6c:a2:0b:10:17:be:cd:5a:80:5c: 73:b9:6e:d5:f3:f0:d3:9a:8a:01:9d:bd:3f:56:b8:af:f2:ae: 63:ff:a3:87:ab:ce:13:77:9c:13:e9:a0:bb:9c:a2:0a:b9:f2: 73:a6:e7:e1:34:a5:64:05:ee:b5:6e:10:39:24:7d:97:62:80: 14:9f:e2:c9:9a:32:71:ee:56:58:2b:00:23:3b:ba:75:4b:bf: 77:ce:97:b8:e2:57:59:b1:3c:3d:d5:a9:20:29:10:08:80:97: df:ae:e8:15:c5:4a:e3:85:df:fa:1e:7d:36:bc:b1:27:6c:a5: 7d:57:a8:b1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI0MDI1MDEyWhcNMjYwNzAxMDI1MDEyWjAYMRYwFAYD VQQDEw02YTNiNDVlNC05NmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjhMg0kvpx1NfZyRhavdV3StfOLWDZ6h5toRz5s+TANeCr7Kl7ogFvZwoiq5 4rscucNtamNAZA8d2MRbMVO5l4tXv0xeQbyvuaiotKdh+TaqbKerzKyBMMM6gp6R xT9wAkXq1eec35voeUJI5B/UWYEYkL8eDT68n/fQ4KQ+tKrrJSbpUzadrcA3go21 fUHkQcFyOTAZ4II0GwC+7pLtoQ/PpN7F/6u6VPgWCPRhcVfpgJHqf9l01QCa8zgr lR5lne0HNnec2aKAXNGLEqIcGCHfbcIyako7PmBDKeTzLgRUmxSFwerFCN740ZjF b4W9CbOu/nvVdsPukblpMblP8wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMtJtjoH 3zQ/TL5kH/+dyrzFyxesMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAIn/zbpyQEWT9iyg8bFt8sROShyw+zvIWVdI51JQL3pGe Vv8G5KjG2+YqtAIEX2gsi3NOLdo76OL66ovAY6KYJJYZ1oiAlzAP3AOWt/gj5f56 AiDGX7Ro4dwWArvJk2b3NSbITqm4kFmgbI+Q72vIY+6VI68g1eSHHS26rgbfgPYz CxOLSodsogsQF77NWoBcc7lu1fPw05qKAZ29P1a4r/KuY/+jh6vOE3ecE+mgu5yi Crnyc6bn4TSlZAXutW4QOSR9l2KAFJ/iyZoyce5WWCsAIzu6dUu/d86XuOJXWbE8 PdWpICkQCICX367oFcVK44Xf+h59NryxJ2ylfVeosQ== -----END CERTIFICATE-----Generated at Wed Jun 24 16:03:36 2026 by rpki-client