$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: v4NZuAlPbtIDsmIFI2+60GVffT6INbiKUn6UDQ1om6s= Subject key identifier: 82:6D:42:42:B1:71:9A:E3:16:7D:1D:61:D3:A4:6F:2E:5E:EF:E9:B3 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B0E Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A53 Signing time: Mon 27 Apr 2026 02:50:11 +0000 Manifest this update: Mon 27 Apr 2026 02:50:11 +0000 Manifest next update: Mon 04 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: WWe8gdVv/NcHDPZBBHi6BkbNb7LNFAUCR09uxrkuPAo=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 12: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19214 (0x4b0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 27 02:50:11 2026 GMT Not After : May 4 02:50:11 2026 GMT Subject: CN=69eecee3-2dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:95:54:0e:9b:f2:95:8d:6e:f0:fe:ce:26:f6: 3c:7b:a3:63:43:5f:63:fb:79:79:c1:27:04:61:dd: 7e:10:7d:af:ae:28:14:70:b6:1f:6d:ee:89:23:9d: dd:3b:00:0d:3f:19:43:29:b5:a4:db:61:e0:ef:a9: b4:46:5f:d9:27:48:c6:54:29:2c:1f:a2:76:1e:81: f5:a0:67:d4:46:d1:13:86:a7:8e:99:38:8c:90:40: 2b:98:a0:16:53:60:7b:7d:da:d7:65:fa:b5:08:b6: b9:8d:96:ad:54:b0:0e:06:81:9c:ab:ac:88:af:93: b8:ff:72:77:8b:fb:9d:21:6f:f0:4b:67:c8:a0:d0: 5a:88:37:06:48:56:e7:fc:90:25:19:34:a3:12:02: a4:19:2f:2a:b6:5d:66:42:a2:c3:0a:4a:58:f4:2c: 2e:92:d1:9a:d3:b7:c4:9d:06:28:14:2b:ad:3d:18: 2d:01:dc:be:69:48:b4:6a:1e:00:90:42:41:36:41: 6e:3e:2c:bc:48:0d:f0:b0:38:45:4a:f6:b7:37:15: 89:12:53:72:30:ff:7f:91:fa:74:76:f3:1f:0e:a0: 04:ca:43:ab:bc:a8:c6:88:29:94:20:f6:f3:1d:72: ec:f7:ce:fe:bc:a3:c8:79:82:03:94:e5:8f:3e:d7: ae:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6D:42:42:B1:71:9A:E3:16:7D:1D:61:D3:A4:6F:2E:5E:EF:E9:B3 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:89:a6:1d:51:a7:52:1e:9e:a5:16:fa:c5:19:98:fd:f9:35: 61:30:25:94:86:7d:e9:49:cc:1a:fd:a7:3a:de:72:8a:c8:f9: e7:0b:ca:1f:85:2a:e0:18:69:95:87:7e:f7:b5:5c:8a:c1:bb: 4e:ca:a0:b3:b5:73:dd:1f:55:75:61:b0:b8:31:c0:a8:43:be: f5:9f:60:a0:e5:67:67:83:8e:18:d0:98:90:f6:d6:a6:dd:51: e0:3e:d7:c8:5e:a6:f3:90:41:14:58:35:54:33:ca:f7:95:7c: 43:2a:4e:a2:83:f3:a0:24:a3:0a:18:e6:f8:f1:b8:1c:97:9b: fd:bb:b7:da:f4:c2:ba:5d:c4:43:a3:08:f2:77:c1:e7:ec:4f: 6e:a6:5e:00:19:d3:40:6e:11:e7:4d:a2:ce:91:f6:84:df:7b: 63:36:8f:41:61:50:ed:a4:bb:7e:fa:bf:ae:55:61:43:54:7a: cf:ee:3e:3c:f1:28:84:e2:25:c6:e2:bb:e1:e4:f4:a8:cd:8f: 99:56:18:cb:73:a2:48:55:a6:0d:5a:0b:8d:d9:68:0e:6c:74: b1:18:9b:cd:c9:52:40:5e:f4:33:14:14:b5:40:f8:05:d8:d5: a0:5c:86:68:af:31:9f:47:86:47:79:40:7f:e4:aa:87:a7:81: 76:e7:52:db -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI3MDI1MDExWhcNMjYwNTA0MDI1MDExWjAYMRYwFAYD VQQDEw02OWVlY2VlMy0yZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpVUDpvylY1u8P7OJvY8e6NjQ19j+3l5wScEYd1+EH2vrigUcLYfbe6JI53d OwANPxlDKbWk22Hg76m0Rl/ZJ0jGVCksH6J2HoH1oGfURtEThqeOmTiMkEArmKAW U2B7fdrXZfq1CLa5jZatVLAOBoGcq6yIr5O4/3J3i/udIW/wS2fIoNBaiDcGSFbn /JAlGTSjEgKkGS8qtl1mQqLDCkpY9CwuktGa07fEnQYoFCutPRgtAdy+aUi0ah4A kEJBNkFuPiy8SA3wsDhFSva3NxWJElNyMP9/kfp0dvMfDqAEykOrvKjGiCmUIPbz HXLs987+vKPIeYIDlOWPPteuyQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIJtQkKx cZrjFn0dYdOkby5e7+mzMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAfImmHVGnUh6epRb6xRmY/fk1YTAllIZ96UnMGv2nOt5y isj55wvKH4Uq4BhplYd+97VcisG7Tsqgs7Vz3R9VdWGwuDHAqEO+9Z9goOVnZ4OO GNCYkPbWpt1R4D7XyF6m85BBFFg1VDPK95V8QypOooPzoCSjChjm+PG4HJeb/bu3 2vTCul3EQ6MI8nfB5+xPbqZeABnTQG4R502izpH2hN97YzaPQWFQ7aS7fvq/rlVh Q1R6z+4+PPEohOIlxuK74eT0qM2PmVYYy3OiSFWmDVoLjdloDmx0sRibzclSQF70 MxQUtUD4BdjVoFyGaK8xn0eGR3lAf+Sqh6eBdudS2w== -----END CERTIFICATE-----Generated at Mon Apr 27 16:53:09 2026 by rpki-client