$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: ibmdND67spIAtpzzRz6kt++6mId0uMeRECNJygFezSg= Subject key identifier: 83:28:0E:92:DD:61:64:EB:4D:A5:28:04:AE:72:33:2C:6D:C9:78:79 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B74 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AB6 Signing time: Thu 28 May 2026 02:50:12 +0000 Manifest this update: Thu 28 May 2026 02:50:12 +0000 Manifest next update: Thu 04 Jun 2026 02:50:12 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 3+iHpPTLVp6ALR+pinPhpBbYtx1JIpoeunWDAq7FCrc=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19316 (0x4b74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 28 02:50:12 2026 GMT Not After : Jun 4 02:50:12 2026 GMT Subject: CN=6a17ad64-47e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f4:4e:52:cd:c1:0c:dd:8b:c2:27:b7:fd:21: 19:82:fb:7f:6f:16:62:ed:8b:f6:91:66:12:fe:ae: 03:af:6b:59:32:ef:48:0d:39:96:e9:7e:3c:98:8f: bc:d3:36:10:20:10:4c:13:55:cd:7f:9f:d2:3f:b1: 3b:0b:92:3c:49:0e:3b:e9:2f:c6:71:aa:b0:f4:d7: 49:9d:7d:b0:3b:3a:dd:f7:d3:fe:0f:74:cb:08:13: cc:53:7a:82:e2:da:de:91:f1:69:06:58:a0:39:20: c5:4d:89:04:04:4e:bd:02:68:5b:b2:84:19:94:f1: 65:77:a0:dd:5c:a6:48:6f:be:25:0a:20:7e:f4:b7: 1b:14:1b:28:e0:34:86:8a:40:85:93:ef:c7:9e:7b: 3b:9f:8b:6f:ca:08:de:79:cd:db:bb:ee:eb:d0:b5: 1e:55:7f:bc:0b:ec:11:7f:39:4e:28:45:2d:8d:94: 82:65:66:81:fb:2a:5c:91:39:5d:72:7a:69:78:44: 4e:cf:71:ed:99:22:c0:94:f7:23:5f:3c:90:5b:f5: f5:7b:99:de:80:d9:14:2a:48:51:fc:4c:03:70:01: cc:5f:98:19:4e:03:22:2a:01:a8:cb:95:fb:1d:db: fd:f3:39:e0:a0:00:ad:67:98:fe:3c:76:b4:26:d0: cf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:28:0E:92:DD:61:64:EB:4D:A5:28:04:AE:72:33:2C:6D:C9:78:79 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:80:6b:92:b4:3d:b5:e7:ee:9a:6d:ee:b7:64:b8:ea:85:8e: 62:f6:3d:c1:41:cc:fe:1f:af:87:a7:00:a4:49:6e:47:74:03: fe:23:69:27:61:fb:41:68:a2:ce:60:0d:a9:b0:ec:5c:98:fb: c2:43:15:5e:a9:ac:c9:e4:32:3c:ed:88:c3:a5:59:be:b1:38: 8d:e5:4e:1f:32:54:2a:8a:cb:5d:d8:af:eb:af:fe:e7:7f:fd: ca:b9:19:ce:72:d1:b8:ee:78:89:30:c0:07:d9:5a:17:00:90: 7e:a9:e3:65:21:e2:c1:75:ad:29:85:eb:fb:b4:c2:ee:dc:b1: a7:07:44:59:04:2e:e1:05:03:b2:6f:12:b7:27:bc:df:32:e0: df:01:f2:d0:4d:f8:ec:af:1a:d1:0c:c1:a2:e4:c4:03:a4:78: 86:64:dd:9c:06:62:96:32:29:0e:46:71:a4:7c:f9:9c:8c:05: 27:fe:75:99:c4:0f:85:99:88:76:d8:23:8e:51:45:7e:fd:6d: 93:4a:2d:c7:db:db:bb:c3:2c:a4:10:ae:fe:b7:8c:ee:fe:fe: 4a:0b:49:a7:cf:6e:e5:ca:cb:4e:aa:e4:73:5c:42:4b:b2:0c: 54:16:6a:64:0c:07:87:7f:cc:df:89:7c:3c:ee:aa:c0:bd:9f: ad:3b:d1:85 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI4MDI1MDEyWhcNMjYwNjA0MDI1MDEyWjAYMRYwFAYD VQQDEw02YTE3YWQ2NC00N2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/ROUs3BDN2Lwie3/SEZgvt/bxZi7Yv2kWYS/q4Dr2tZMu9IDTmW6X48mI+8 0zYQIBBME1XNf5/SP7E7C5I8SQ476S/Gcaqw9NdJnX2wOzrd99P+D3TLCBPMU3qC 4trekfFpBligOSDFTYkEBE69AmhbsoQZlPFld6DdXKZIb74lCiB+9LcbFBso4DSG ikCFk+/Hnns7n4tvygjeec3bu+7r0LUeVX+8C+wRfzlOKEUtjZSCZWaB+ypckTld cnppeEROz3HtmSLAlPcjXzyQW/X1e5negNkUKkhR/EwDcAHMX5gZTgMiKgGoy5X7 Hdv98zngoACtZ5j+PHa0JtDP+QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIMoDpLd YWTrTaUoBK5yMyxtyXh5MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAQIBrkrQ9tefumm3ut2S46oWOYvY9wUHM/h+vh6cApElu R3QD/iNpJ2H7QWiizmANqbDsXJj7wkMVXqmsyeQyPO2Iw6VZvrE4jeVOHzJUKorL Xdiv66/+53/9yrkZznLRuO54iTDAB9laFwCQfqnjZSHiwXWtKYXr+7TC7tyxpwdE WQQu4QUDsm8Stye83zLg3wHy0E347K8a0QzBouTEA6R4hmTdnAZiljIpDkZxpHz5 nIwFJ/51mcQPhZmIdtgjjlFFfv1tk0otx9vbu8MspBCu/reM7v7+SgtJp89u5crL Tqrkc1xCS7IMVBZqZAwHh3/M34l8PO6qwL2frTvRhQ== -----END CERTIFICATE-----Generated at Thu May 28 08:37:43 2026 by rpki-client