$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 6MTlVtygqX64qCz4JAEbrJYRAZVs0VMrftijP5yGnQQ= Subject key identifier: 04:87:66:67:0A:9B:14:F0:BB:3F:D9:8F:AC:0C:58:33:38:97:5F:E0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B60 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA3 Signing time: Fri 22 May 2026 02:50:11 +0000 Manifest this update: Fri 22 May 2026 02:50:11 +0000 Manifest next update: Fri 29 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: bZBwcu7n7yyrEQ56Vn5Clv3Qo5a+8KpM+ip6h756yCU=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 11: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 12: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19296 (0x4b60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 22 02:50:11 2026 GMT Not After : May 29 02:50:11 2026 GMT Subject: CN=6a0fc463-62f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fc:23:56:6b:86:4e:f0:5c:55:50:a5:27:de: d2:c3:75:04:76:84:2d:ae:ac:96:99:e1:67:93:f5: b2:50:84:f3:a6:44:96:22:31:2d:5b:69:5e:1c:f7: 89:c1:2c:02:d0:99:af:d2:32:39:58:79:29:03:d6: c6:16:2d:93:24:2b:d4:56:d1:e0:cb:4b:a6:a4:f7: 0d:d5:bc:e6:1b:95:7e:af:00:3a:5b:65:98:df:9a: 55:a4:fd:c6:32:49:d9:9e:21:e4:96:be:2e:11:93: e7:eb:42:7f:9c:fa:e8:f7:a5:31:44:e7:9a:1e:2b: a5:4a:07:bd:ce:90:c3:14:7f:98:1d:ef:7e:1d:14: de:f6:2c:66:db:77:85:85:8f:00:0f:c5:ff:58:47: 58:6a:cb:85:13:3f:63:91:ad:09:b9:b9:34:b7:7e: 4e:f8:79:98:4e:b4:fb:91:b4:79:f5:57:2f:c3:8b: b9:0c:77:f0:b7:ba:bf:47:5f:00:b6:0d:40:46:4b: c9:d1:73:81:d7:99:c9:3e:4a:b0:c8:50:d8:b1:5b: 43:39:48:31:55:48:79:d3:ae:d3:78:85:23:30:f4: 3e:04:68:1c:46:ea:43:bd:ac:98:d3:5e:7f:51:44: 4a:25:78:f0:13:b3:db:36:7a:0c:ed:7e:ef:24:a5: 03:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:87:66:67:0A:9B:14:F0:BB:3F:D9:8F:AC:0C:58:33:38:97:5F:E0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:5c:82:65:98:a3:5f:9f:76:b6:e9:a8:64:7a:2f:a7:1a:aa: 07:5e:60:51:bc:5c:25:66:85:6d:9a:43:b2:ce:f8:85:cd:0b: 99:59:80:0c:eb:2d:10:cd:e6:aa:d9:04:eb:19:c4:66:ac:b3: 58:d8:cf:91:31:64:cf:b2:3c:0f:7a:e8:d0:2a:aa:48:38:35: dd:9f:dd:7b:c1:b8:ea:7d:d1:0d:41:6f:0e:ac:3c:07:b6:16: 2f:bc:78:fa:05:2f:28:40:65:93:69:67:f7:15:11:d5:b0:82: cd:c4:17:64:60:6b:0c:50:17:79:a7:d0:4d:61:dc:c7:ec:56: 73:97:60:b1:b4:92:d4:83:77:82:cc:7b:a6:81:7d:2b:59:e9: fe:ba:36:fe:35:65:c4:d0:9d:a1:fa:d1:8a:76:21:0a:8d:3d: f0:13:33:57:51:4e:12:f1:77:d1:65:e3:d9:c5:bd:4d:fd:15: e3:74:8b:db:99:7e:53:21:10:b9:b6:23:80:c0:df:ef:ac:cb: 5c:84:e2:bc:32:2c:23:c2:fe:90:5a:74:eb:ad:0c:25:30:c7: 91:39:6e:83:a1:5a:30:e3:fc:6a:39:ef:c8:2d:0e:bb:b7:87: 78:14:dc:87:5a:0a:f8:66:16:5c:9e:2d:99:00:da:84:f9:57: 57:dd:d6:c6 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIyMDI1MDExWhcNMjYwNTI5MDI1MDExWjAYMRYwFAYD VQQDEw02YTBmYzQ2My02MmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/wjVmuGTvBcVVClJ97Sw3UEdoQtrqyWmeFnk/WyUITzpkSWIjEtW2leHPeJ wSwC0Jmv0jI5WHkpA9bGFi2TJCvUVtHgy0umpPcN1bzmG5V+rwA6W2WY35pVpP3G MknZniHklr4uEZPn60J/nPro96UxROeaHiulSge9zpDDFH+YHe9+HRTe9ixm23eF hY8AD8X/WEdYasuFEz9jka0Jubk0t35O+HmYTrT7kbR59Vcvw4u5DHfwt7q/R18A tg1ARkvJ0XOB15nJPkqwyFDYsVtDOUgxVUh5067TeIUjMPQ+BGgcRupDvayY015/ UURKJXjwE7PbNnoM7X7vJKUDJwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFASHZmcK mxTwuz/Zj6wMWDM4l1/gMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEANVyCZZijX592tumoZHovpxqqB15gUbxcJWaFbZpDss74 hc0LmVmADOstEM3mqtkE6xnEZqyzWNjPkTFkz7I8D3ro0CqqSDg13Z/de8G46n3R DUFvDqw8B7YWL7x4+gUvKEBlk2ln9xUR1bCCzcQXZGBrDFAXeafQTWHcx+xWc5dg sbSS1IN3gsx7poF9K1np/ro2/jVlxNCdofrRinYhCo098BMzV1FOEvF30WXj2cW9 Tf0V43SL25l+UyEQubYjgMDf76zLXITivDIsI8L+kFp0660MJTDHkTlug6FaMOP8 ajnvyC0Ou7eHeBTch1oK+GYWXJ4tmQDahPlXV93Wxg== -----END CERTIFICATE-----Generated at Fri May 22 11:01:39 2026 by rpki-client