$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: r/YBzVaw54giRilrxBxNp4nc3g2n4Vr87Qpy6Dxro3E= Subject key identifier: 28:7A:A2:15:D4:75:3B:B2:16:57:99:9A:C2:2E:95:9E:2B:E3:D4:9F Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4ABC Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A03 Signing time: Wed 01 Apr 2026 02:50:12 +0000 Manifest this update: Wed 01 Apr 2026 02:50:12 +0000 Manifest next update: Wed 08 Apr 2026 02:50:12 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: HheyuquFwfiFQRHjtLxNDAaPdwrY1w1AT7Fztpx2aCE=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19132 (0x4abc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 1 02:50:12 2026 GMT Not After : Apr 8 02:50:12 2026 GMT Subject: CN=69cc87e4-172c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:49:92:07:8c:1d:8e:b1:38:17:79:b4:bd:76: 1f:84:a1:74:87:d9:54:73:2d:87:28:0c:b5:01:6f: 8c:81:fe:85:36:16:a4:5c:63:18:86:cb:ae:51:66: c7:20:1c:7e:a1:4d:e8:26:cf:b8:a1:ed:bd:45:b8: c7:0f:32:46:57:b0:a7:f6:bf:de:1f:00:6f:90:1e: 5f:ce:2a:1a:d7:0b:99:44:11:ed:8c:fc:56:c8:31: bf:4f:8b:55:0d:da:c7:4e:74:2b:5c:2d:8d:14:e6: 04:87:34:60:c4:71:ef:f2:5e:ca:91:9c:48:58:ac: 83:aa:94:b1:53:55:a0:7d:20:67:f5:52:d5:1f:a6: 2e:98:09:05:e3:c0:ed:29:51:04:5e:48:92:75:5a: 46:05:bc:a6:32:70:2c:25:ce:28:68:57:05:aa:58: 51:81:2e:a1:dc:33:3a:92:a9:96:ef:c3:ae:63:ce: 13:90:96:ec:da:7a:82:a0:ea:e8:0f:25:66:cc:2d: a4:7e:a8:46:99:cd:51:ea:c6:19:08:c1:f3:68:28: 27:ca:9c:e9:29:14:44:ef:33:d4:43:bb:44:53:41: 08:ec:1b:ed:fa:7c:9d:61:7e:b4:97:f7:11:8b:43: 94:67:a4:11:0a:83:2a:22:96:9c:31:4e:33:38:44: aa:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:7A:A2:15:D4:75:3B:B2:16:57:99:9A:C2:2E:95:9E:2B:E3:D4:9F X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:59:c9:f4:cd:14:59:f5:5f:19:cb:54:e4:27:94:b2:71:9d: e7:44:ba:9a:b8:74:30:df:3b:c7:b0:75:b5:04:e6:81:9f:fc: de:fd:46:79:63:2d:da:e0:52:b1:c1:fd:6b:a9:d7:f1:ca:43: 91:f6:dc:c2:41:cb:50:30:76:11:27:e1:24:4e:23:ae:dd:28: 8b:60:82:e1:28:bf:c6:64:db:c0:34:56:b0:36:c2:36:cb:2f: c5:4a:b1:ea:19:7e:26:92:61:da:1c:2b:ee:33:74:83:85:0a: ee:f8:ff:61:05:c7:79:5d:77:d6:f2:ff:b2:ef:a1:94:6e:3c: 31:5b:e2:76:25:03:cc:48:bd:94:b7:d5:a0:3a:51:58:23:a7: fa:89:fb:4f:74:ce:ba:29:d1:5a:6c:0c:f3:27:e2:c0:53:fa: a2:62:bc:83:c2:8c:9f:42:aa:e9:04:a4:54:2a:ab:75:88:b5: 7e:24:84:f6:3e:44:87:66:f1:ef:7d:cd:0f:c5:df:57:2f:d2: 8b:2b:6d:df:14:de:a0:80:f2:9e:94:4e:e3:a8:7e:aa:47:d2: 0a:ce:19:bc:2c:14:fa:17:4b:6d:7e:27:ab:33:85:f6:08:f1: a4:e0:5b:fd:85:2f:8e:f2:e3:e5:3f:9b:83:b8:ec:bf:ca:04: 50:30:51:b8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDAxMDI1MDEyWhcNMjYwNDA4MDI1MDEyWjAYMRYwFAYD VQQDEw02OWNjODdlNC0xNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40mSB4wdjrE4F3m0vXYfhKF0h9lUcy2HKAy1AW+Mgf6FNhakXGMYhsuuUWbH IBx+oU3oJs+4oe29RbjHDzJGV7Cn9r/eHwBvkB5fzioa1wuZRBHtjPxWyDG/T4tV DdrHTnQrXC2NFOYEhzRgxHHv8l7KkZxIWKyDqpSxU1WgfSBn9VLVH6YumAkF48Dt KVEEXkiSdVpGBbymMnAsJc4oaFcFqlhRgS6h3DM6kqmW78OuY84TkJbs2nqCoOro DyVmzC2kfqhGmc1R6sYZCMHzaCgnypzpKRRE7zPUQ7tEU0EI7Bvt+nydYX60l/cR i0OUZ6QRCoMqIpacMU4zOESqKQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFCh6ohXU dTuyFleZmsIulZ4r49SfMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAFFnJ9M0UWfVfGctU5CeUsnGd50S6mrh0MN87x7B1tQTm gZ/83v1GeWMt2uBSscH9a6nX8cpDkfbcwkHLUDB2ESfhJE4jrt0oi2CC4Si/xmTb wDRWsDbCNssvxUqx6hl+JpJh2hwr7jN0g4UK7vj/YQXHeV131vL/su+hlG48MVvi diUDzEi9lLfVoDpRWCOn+on7T3TOuinRWmwM8yfiwFP6omK8g8KMn0Kq6QSkVCqr dYi1fiSE9j5Eh2bx733ND8XfVy/Siytt3xTeoIDynpRO46h+qkfSCs4ZvCwU+hdL bX4nqzOF9gjxpOBb/YUvjvLj5T+bg7jsv8oEUDBRuA== -----END CERTIFICATE-----Generated at Wed Apr 1 07:40:28 2026 by rpki-client