$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Eh/f0t1fcGLDp9ckL3BlNmiPalZRZQRTS78LmIVK4Kw= Subject key identifier: B1:E9:92:01:CD:25:A2:8E:1C:B0:02:97:EB:80:87:87:35:57:00:DE Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B22 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A65 Signing time: Fri 01 May 2026 14:56:37 +0000 Manifest this update: Fri 01 May 2026 14:56:37 +0000 Manifest next update: Fri 08 May 2026 14:56:37 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: MROCO6FJe59N92AadLfKzz+ljFCURZNC+fMbzytiX5Y=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 May 2026 14:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19234 (0x4b22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 1 14:56:37 2026 GMT Not After : May 8 14:56:37 2026 GMT Subject: CN=69f4bf25-6823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8f:2d:3a:d9:6c:52:8f:2e:4d:31:d5:a0:76: 92:53:67:d6:a2:c6:ec:b1:a2:64:e1:20:18:cc:43: fc:b6:c2:86:ca:fc:88:2d:1c:29:9e:0f:b4:9a:42: b9:bc:bc:83:2f:ee:61:45:5b:c6:d9:bb:30:ce:ce: 7c:99:e6:e5:30:cd:82:e8:05:09:7e:1d:38:53:10: bf:62:7a:35:bf:21:a2:d9:a8:bb:78:d9:b3:e4:6f: b0:ce:99:92:7e:0f:df:41:82:9d:b5:dc:41:67:0d: 66:23:ae:6c:51:85:0d:2c:48:f3:84:77:c4:38:88: 52:19:2a:ab:a5:5f:6d:72:6e:0a:59:81:91:b0:81: ae:0b:6e:e4:52:9c:e1:bf:8d:31:3f:59:2c:56:64: 05:e3:37:97:4a:7e:ed:c1:9d:1f:44:b9:4f:c3:e3: 11:d8:b5:20:94:e3:9d:f3:b2:40:9a:48:5d:89:82: 05:f8:cc:08:c6:90:16:ae:b4:74:12:4f:dc:ff:cf: 5e:be:d2:3b:67:5f:c4:08:ed:ad:a7:86:e0:13:5b: 9b:5e:bb:ae:a4:5b:99:37:17:e8:b3:df:8f:f7:a6: 54:ff:56:cb:81:ba:24:1c:c0:be:da:71:a2:67:4a: fb:16:83:78:b2:57:c4:91:05:8e:0f:9a:70:76:0a: a3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E9:92:01:CD:25:A2:8E:1C:B0:02:97:EB:80:87:87:35:57:00:DE X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:06:fa:10:ac:59:2c:fe:bd:51:c0:9c:bf:24:81:6d:c4:b6: da:96:12:41:af:78:b5:6d:8c:db:a1:d6:85:e8:f1:73:06:a3: 1f:1e:a4:6d:6a:20:8d:34:6d:9b:80:a0:af:3b:74:01:df:91: 8d:09:b9:cd:1c:79:82:16:a7:41:cf:ca:a3:bd:fe:11:55:66: e4:d3:cc:0c:b8:fa:b9:53:14:32:9d:01:f7:5f:9c:b1:61:da: 60:85:42:90:6b:82:6a:cc:b5:09:6f:93:29:5f:12:d1:92:9c: 74:f5:36:e4:57:1c:ec:95:45:ae:b3:14:26:df:0e:e2:58:a6: f4:db:06:64:db:c8:f2:6f:7c:a3:76:d5:31:28:89:87:60:d4: f4:b9:94:2c:9c:f8:08:59:bd:98:97:66:fd:95:12:4a:89:7e: a0:20:92:25:0e:79:2d:a0:cb:18:f7:30:54:88:9c:00:73:97: fb:e7:bb:1f:1f:48:cc:0f:a1:f1:a9:94:01:d8:42:33:85:ca: 72:63:c3:89:65:aa:e0:16:80:32:9f:14:d9:68:4f:00:ba:d1: 80:0f:31:15:da:4c:42:33:6a:31:b3:74:42:c9:bd:f8:d1:81: 0e:86:9b:5e:1e:35:33:2e:d2:6f:32:65:ef:f2:67:49:e6:6a: 10:de:d8:d9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTAxMTQ1NjM3WhcNMjYwNTA4MTQ1NjM3WjAYMRYwFAYD VQQDEw02OWY0YmYyNS02ODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq48tOtlsUo8uTTHVoHaSU2fWosbssaJk4SAYzEP8tsKGyvyILRwpng+0mkK5 vLyDL+5hRVvG2bswzs58meblMM2C6AUJfh04UxC/Yno1vyGi2ai7eNmz5G+wzpmS fg/fQYKdtdxBZw1mI65sUYUNLEjzhHfEOIhSGSqrpV9tcm4KWYGRsIGuC27kUpzh v40xP1ksVmQF4zeXSn7twZ0fRLlPw+MR2LUglOOd87JAmkhdiYIF+MwIxpAWrrR0 Ek/c/89evtI7Z1/ECO2tp4bgE1ubXruupFuZNxfos9+P96ZU/1bLgbokHMC+2nGi Z0r7FoN4slfEkQWOD5pwdgqj7wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLHpkgHN JaKOHLACl+uAh4c1VwDeMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAQgb6EKxZLP69UcCcvySBbcS22pYSQa94tW2M26HWhejx cwajHx6kbWogjTRtm4Cgrzt0Ad+RjQm5zRx5ghanQc/Ko73+EVVm5NPMDLj6uVMU Mp0B91+csWHaYIVCkGuCasy1CW+TKV8S0ZKcdPU25Fcc7JVFrrMUJt8O4lim9NsG ZNvI8m98o3bVMSiJh2DU9LmULJz4CFm9mJdm/ZUSSol+oCCSJQ55LaDLGPcwVIic AHOX++e7Hx9IzA+h8amUAdhCM4XKcmPDiWWq4BaAMp8U2WhPALrRgA8xFdpMQjNq MbN0Qsm9+NGBDoabXh41My7SbzJl7/JnSeZqEN7Y2Q== -----END CERTIFICATE-----Generated at Fri May 1 21:59:30 2026 by rpki-client