$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 83zMbO3ZayPHOCSLeTkUHRodga5QIA+jCTbtPAPuwVI= Subject key identifier: 61:78:77:10:F2:BD:F8:49:7C:CC:91:25:9E:71:EF:D0:EE:B6:A8:0D Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B77 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AB9 Signing time: Fri 29 May 2026 02:50:11 +0000 Manifest this update: Fri 29 May 2026 02:50:11 +0000 Manifest next update: Fri 05 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: znBe/sA+LIf0ZRQjicivA/IuFH3MMbKm6LMUqnSWvC0=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 12: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19319 (0x4b77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 29 02:50:11 2026 GMT Not After : Jun 5 02:50:11 2026 GMT Subject: CN=6a18fee3-5937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:eb:71:dd:1d:67:17:1d:0e:85:75:ad:aa:2c: 48:18:7c:79:bb:e5:c3:9d:8b:15:cc:ad:b8:92:75: cd:4c:da:91:33:72:68:18:72:6e:0d:bf:e1:f7:98: ab:e4:d2:e7:ab:3f:85:a3:78:ef:6e:58:b3:b3:dc: 27:21:bb:4b:17:6f:cd:b2:d1:4a:5f:b4:b8:63:9f: d3:67:e2:0a:13:72:84:4c:6f:3e:3c:25:8b:a1:13: fa:8e:ae:20:0a:ff:38:b1:50:3d:15:fa:c3:9e:01: 32:a7:93:cd:c7:02:01:db:52:71:e9:02:d6:df:59: c1:93:02:f5:4b:c1:9a:14:4e:15:13:77:b9:ed:84: c5:c8:9b:b9:2f:d2:a3:9a:45:0e:9c:5c:9a:99:26: 59:00:4a:6a:27:1a:a0:28:b9:c7:88:c6:20:e3:cb: 97:7f:20:41:8d:0e:66:64:af:3e:01:23:99:ec:d0: b5:78:c0:85:0f:69:1f:81:bc:5f:61:f6:fe:4c:88: 13:e5:b8:4e:ed:55:c4:bc:6e:70:32:e1:09:3f:93: 41:07:92:fa:d8:70:61:60:c8:a4:e2:a8:0e:1e:7f: ec:48:f8:9a:c6:f6:d2:2e:92:f5:cb:ac:1b:05:02: ff:ab:0a:02:61:c7:29:fc:1c:49:a8:b1:9f:39:bf: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:78:77:10:F2:BD:F8:49:7C:CC:91:25:9E:71:EF:D0:EE:B6:A8:0D X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e4:2a:85:86:66:94:9b:5a:9f:c4:ea:ce:af:62:74:0b:be: 74:27:e4:cc:f2:bd:61:4e:2c:34:b3:30:bd:58:7c:dc:b6:7d: 62:91:cf:a5:c0:83:f4:30:ae:2c:b2:4f:8a:c2:7e:e1:c2:ea: dd:3d:67:d7:cb:2a:9c:5a:c7:1b:f8:32:e4:89:bd:c1:2c:e6: 63:cc:c6:7a:60:49:d0:2c:b5:1a:82:bc:2f:52:7a:e2:f8:23: 3b:05:68:54:41:6f:a1:4a:b0:01:36:a8:c0:2b:09:48:ee:24: fc:1f:ac:cf:56:9b:c6:bb:60:3a:9e:b4:a6:4e:10:f3:35:23: bf:18:3a:7f:53:30:43:42:2c:9e:75:8a:5b:a0:62:d6:b1:c1: 69:e0:89:a3:f1:8c:7e:2c:3c:c7:54:d6:3f:d1:ca:7b:bf:a8: ec:37:a5:66:09:df:c5:51:81:93:ae:37:bc:a1:bc:5f:22:82: 52:30:e5:b5:1a:31:16:60:5e:47:48:32:96:9f:7d:f8:56:e3: 3d:0d:76:da:ab:ee:5c:d4:12:e9:11:d0:bf:5a:0b:d2:84:5e: 28:da:4b:88:10:2c:7a:1a:9d:b7:55:f2:3f:cf:af:45:d5:c3: 95:1f:ed:4f:8f:c6:75:52:a9:2f:2c:55:05:92:c7:d1:b0:27: 42:02:df:53 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI5MDI1MDExWhcNMjYwNjA1MDI1MDExWjAYMRYwFAYD VQQDEw02YTE4ZmVlMy01OTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyutx3R1nFx0OhXWtqixIGHx5u+XDnYsVzK24knXNTNqRM3JoGHJuDb/h95ir 5NLnqz+Fo3jvblizs9wnIbtLF2/NstFKX7S4Y5/TZ+IKE3KETG8+PCWLoRP6jq4g Cv84sVA9FfrDngEyp5PNxwIB21Jx6QLW31nBkwL1S8GaFE4VE3e57YTFyJu5L9Kj mkUOnFyamSZZAEpqJxqgKLnHiMYg48uXfyBBjQ5mZK8+ASOZ7NC1eMCFD2kfgbxf Yfb+TIgT5bhO7VXEvG5wMuEJP5NBB5L62HBhYMik4qgOHn/sSPiaxvbSLpL1y6wb BQL/qwoCYccp/BxJqLGfOb/kXQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGF4dxDy vfhJfMyRJZ5x79DutqgNMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAguQqhYZmlJtan8Tqzq9idAu+dCfkzPK9YU4sNLMwvVh8 3LZ9YpHPpcCD9DCuLLJPisJ+4cLq3T1n18sqnFrHG/gy5Im9wSzmY8zGemBJ0Cy1 GoK8L1J64vgjOwVoVEFvoUqwATaowCsJSO4k/B+sz1abxrtgOp60pk4Q8zUjvxg6 f1MwQ0IsnnWKW6Bi1rHBaeCJo/GMfiw8x1TWP9HKe7+o7DelZgnfxVGBk643vKG8 XyKCUjDltRoxFmBeR0gylp99+FbjPQ122qvuXNQS6RHQv1oL0oReKNpLiBAsehqd t1XyP8+vRdXDlR/tT4/GdVKpLyxVBZLH0bAnQgLfUw== -----END CERTIFICATE-----Generated at Fri May 29 15:00:45 2026 by rpki-client