$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: uT76VAuL2S+ullkq6zFgzLKt+ACLMxWert33Sia1aos= Subject key identifier: 5F:92:4E:9F:3C:88:81:6C:FC:4B:04:6B:E5:68:4A:ED:01:B0:10:00 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B25 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A68 Signing time: Sat 02 May 2026 14:53:44 +0000 Manifest this update: Sat 02 May 2026 14:53:43 +0000 Manifest next update: Sat 09 May 2026 14:53:43 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: SqlwRPRiCyDwu5YciTRtNCp4dnp5Aa379QguzgjseS8=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 14:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19237 (0x4b25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 2 14:53:43 2026 GMT Not After : May 9 14:53:43 2026 GMT Subject: CN=69f60ff8-b56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8f:85:e0:ff:2a:00:70:cb:61:31:91:64:c9: a3:92:b5:eb:3f:27:3d:d3:33:bc:58:17:ef:36:05: fd:e3:f5:97:85:cf:1b:98:7e:70:5e:8a:1d:e9:a7: 13:97:4f:28:27:9d:9d:c7:4e:5b:c3:c2:97:18:ab: 98:d4:35:18:3b:4a:c9:a9:4f:e1:93:32:b5:ad:e9: 0d:f3:8c:44:89:0c:79:1e:a0:c2:5e:6d:ac:53:f0: 42:23:0f:b3:b3:a6:88:66:d7:f2:c2:c4:7a:1a:2e: 5a:e2:21:2a:d1:4a:26:4c:55:19:3b:7f:4d:3e:ea: 0e:83:9e:ba:73:01:56:94:51:ee:ec:85:fa:87:3c: 57:f5:b8:5b:3a:91:df:9c:56:6d:59:a9:6d:60:bf: 94:06:0e:40:6f:86:33:fc:06:61:60:5c:b9:57:31: 43:25:db:f8:f0:d7:c6:eb:fc:9a:eb:a9:f1:54:f7: 79:3f:42:c1:d9:76:15:28:ca:c1:a0:a1:58:b6:13: 56:c4:f3:f6:a6:3f:eb:14:fe:20:5b:eb:0c:09:4b: e8:03:54:2c:a2:c2:21:09:83:90:4d:27:c2:5e:05: d3:d6:16:23:8c:ac:36:b4:c3:be:55:e5:3c:8d:6d: 2f:17:fd:9d:58:1a:bc:65:38:3d:24:71:c4:a1:26: 4a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:92:4E:9F:3C:88:81:6C:FC:4B:04:6B:E5:68:4A:ED:01:B0:10:00 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:fd:07:df:c0:59:03:91:f6:d4:ec:be:b0:7f:8b:6b:b7:37: 2a:86:4e:e0:5a:1e:99:51:ca:3b:e6:93:ab:92:70:74:bf:c5: 29:55:49:e7:16:d2:1b:32:bc:c8:b8:b7:56:be:ad:6e:20:c1: 71:8f:39:1e:c7:4c:7b:2d:53:6d:a3:32:24:39:67:6a:4b:20: c1:b4:88:a6:31:b8:94:d5:e5:8c:fa:90:a1:4e:ed:43:6f:aa: 03:bf:c3:10:1e:b4:ec:2d:cf:90:e6:39:d3:93:8a:20:ad:ab: e3:a0:99:7d:1a:e9:21:06:ee:3d:78:08:26:43:ed:8d:63:1c: 41:33:79:0c:ba:c4:a5:f3:44:bf:85:34:9b:de:b9:ac:36:4c: 8e:78:06:de:15:a3:fe:61:8f:b0:e3:1c:84:5a:e3:7f:9c:87: e4:35:30:13:a9:d4:26:e1:3a:ce:d2:5c:08:1b:a0:3b:ff:50: 25:97:ee:a5:cc:6b:a1:5d:6f:34:5e:a3:2a:b0:c0:a5:f0:12: 94:48:22:46:20:80:4c:cb:2c:d7:98:f2:cf:8a:03:68:01:ce: 39:dd:b0:be:97:56:26:b7:6f:31:a4:80:ef:fa:c1:36:97:de: 51:cd:d4:dc:cd:3b:52:fa:0e:cd:32:2a:1d:70:a0:2c:59:de: 7a:a9:44:c8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTAyMTQ1MzQzWhcNMjYwNTA5MTQ1MzQzWjAYMRYwFAYD VQQDEw02OWY2MGZmOC1iNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApY+F4P8qAHDLYTGRZMmjkrXrPyc90zO8WBfvNgX94/WXhc8bmH5wXood6acT l08oJ52dx05bw8KXGKuY1DUYO0rJqU/hkzK1rekN84xEiQx5HqDCXm2sU/BCIw+z s6aIZtfywsR6Gi5a4iEq0UomTFUZO39NPuoOg566cwFWlFHu7IX6hzxX9bhbOpHf nFZtWaltYL+UBg5Ab4Yz/AZhYFy5VzFDJdv48NfG6/ya66nxVPd5P0LB2XYVKMrB oKFYthNWxPP2pj/rFP4gW+sMCUvoA1QsosIhCYOQTSfCXgXT1hYjjKw2tMO+VeU8 jW0vF/2dWBq8ZTg9JHHEoSZK+QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFF+STp88 iIFs/EsEa+VoSu0BsBAAMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEArf0H38BZA5H21Oy+sH+La7c3KoZO4FoemVHKO+aTq5Jw dL/FKVVJ5xbSGzK8yLi3Vr6tbiDBcY85HsdMey1TbaMyJDlnaksgwbSIpjG4lNXl jPqQoU7tQ2+qA7/DEB607C3PkOY505OKIK2r46CZfRrpIQbuPXgIJkPtjWMcQTN5 DLrEpfNEv4U0m965rDZMjngG3hWj/mGPsOMchFrjf5yH5DUwE6nUJuE6ztJcCBug O/9QJZfupcxroV1vNF6jKrDApfASlEgiRiCATMss15jyz4oDaAHOOd2wvpdWJrdv MaSA7/rBNpfeUc3U3M07UvoOzTIqHXCgLFneeqlEyA== -----END CERTIFICATE-----Generated at Sun May 3 00:00:25 2026 by rpki-client