$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: ClAIaO9cnSejmQiK4StPSSOl42WRtxu9rKbYujnIWNE= Subject key identifier: D9:B3:C4:7F:94:5A:EC:B4:6D:2B:FD:AC:09:67:DD:B6:E8:49:80:D2 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A5C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49A5 Signing time: Sun 01 Mar 2026 14:59:21 +0000 Manifest this update: Sun 01 Mar 2026 14:59:20 +0000 Manifest next update: Sun 08 Mar 2026 14:59:20 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: eiR434p11XaKGcSmPoZ7nF+2T582J35ozThuqgWmF9I=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19036 (0x4a5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 1 14:59:20 2026 GMT Not After : Mar 8 14:59:20 2026 GMT Subject: CN=69a45449-3393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:89:2c:d4:c9:92:15:33:cb:2d:d6:eb:9e:b3: a6:97:cc:a2:26:d0:96:67:7b:91:c9:c6:56:c1:7f: 3a:92:75:42:26:a4:be:3e:dd:0c:88:29:26:bc:6a: 9a:47:8b:ae:2c:c3:ee:1a:a5:d1:02:3e:cf:28:b6: c7:8f:f7:48:5e:82:70:66:fd:b5:60:52:90:5f:6d: 91:df:da:f3:b2:60:cd:7f:5e:60:83:86:a8:00:88: 26:57:d1:26:fc:99:bd:f2:38:a3:88:5f:aa:b7:89: 16:96:40:53:72:79:3e:17:aa:f6:a5:99:1a:a4:bc: 84:1b:09:09:df:28:13:76:dd:4b:b3:94:4b:da:f5: 5d:68:c0:d7:24:9c:c3:ee:65:6a:17:d4:b0:5e:9a: c3:01:6c:a6:4c:25:52:21:b8:fb:0f:11:e4:58:f8: e8:67:a5:c3:ad:55:0f:67:34:85:0a:57:92:29:53: 7a:88:ba:b6:b1:29:ee:e5:d6:7c:95:e8:19:40:76: 40:a3:d0:69:31:ba:8c:b2:07:51:1f:c7:31:56:8b: d7:a9:97:a1:d4:9a:6c:30:9d:9c:20:0b:a3:ee:46: da:9e:54:a6:18:ba:98:a5:1c:0c:c0:ce:89:84:45: d3:08:e3:b4:bd:9f:0c:a6:dd:70:6f:e8:b1:c3:64: 4c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B3:C4:7F:94:5A:EC:B4:6D:2B:FD:AC:09:67:DD:B6:E8:49:80:D2 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:dc:56:3a:0a:15:33:88:22:3b:6c:50:f7:a7:ba:30:43:86: 8b:a0:cf:c5:5a:2b:0b:d5:ac:99:90:4b:7a:3b:88:88:4d:47: 2e:4c:2d:cf:db:2b:7d:04:bd:83:b0:e4:74:49:47:cb:d5:af: 53:51:95:2a:48:8f:cc:da:f9:58:e8:20:3a:37:94:3f:ba:94: c7:1d:09:30:ef:c5:34:9a:05:f2:94:92:cd:68:92:c4:b5:6c: d0:14:bd:cd:bd:7f:aa:1d:c1:12:5b:c2:5b:91:fb:29:08:8a: fb:47:13:b2:a9:f3:83:b7:0f:93:09:0e:55:77:71:73:4f:a7: 4c:e7:76:d1:2b:da:20:5c:03:2e:c2:b6:01:1d:b5:0a:88:37: a2:71:fc:e5:8f:b8:e7:11:0f:17:bb:49:e6:2a:7c:32:13:8b: f5:f8:82:86:5b:13:95:7c:59:f5:be:f2:ec:ab:17:7b:eb:67: 02:7c:8b:c4:78:dd:3b:d0:48:da:29:5a:18:4c:11:5c:73:85: f4:a1:fb:3d:ce:0c:fa:dc:a4:89:ab:26:db:27:ca:3f:16:ce: 6a:f4:04:79:68:14:a6:6c:5d:2a:60:73:27:f3:01:0c:39:32: c6:79:d9:33:e7:f4:98:59:5b:5c:51:ef:77:6a:fc:84:13:b2: 53:72:01:2d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzAxMTQ1OTIwWhcNMjYwMzA4MTQ1OTIwWjAYMRYwFAYD VQQDEw02OWE0NTQ0OS0zMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApoks1MmSFTPLLdbrnrOml8yiJtCWZ3uRycZWwX86knVCJqS+Pt0MiCkmvGqa R4uuLMPuGqXRAj7PKLbHj/dIXoJwZv21YFKQX22R39rzsmDNf15gg4aoAIgmV9Em /Jm98jijiF+qt4kWlkBTcnk+F6r2pZkapLyEGwkJ3ygTdt1Ls5RL2vVdaMDXJJzD 7mVqF9SwXprDAWymTCVSIbj7DxHkWPjoZ6XDrVUPZzSFCleSKVN6iLq2sSnu5dZ8 legZQHZAo9BpMbqMsgdRH8cxVovXqZeh1JpsMJ2cIAuj7kbanlSmGLqYpRwMwM6J hEXTCOO0vZ8Mpt1wb+ixw2RM5QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFNmzxH+U Wuy0bSv9rAln3bboSYDSMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAGtxWOgoVM4giO2xQ96e6MEOGi6DPxVorC9WsmZBLejuI iE1HLkwtz9srfQS9g7DkdElHy9WvU1GVKkiPzNr5WOggOjeUP7qUxx0JMO/FNJoF 8pSSzWiSxLVs0BS9zb1/qh3BElvCW5H7KQiK+0cTsqnzg7cPkwkOVXdxc0+nTOd2 0SvaIFwDLsK2AR21Cog3onH85Y+45xEPF7tJ5ip8MhOL9fiChlsTlXxZ9b7y7KsX e+tnAnyLxHjdO9BI2ilaGEwRXHOF9KH7Pc4M+tykiasm2yfKPxbOavQEeWgUpmxd KmBzJ/MBDDkyxnnZM+f0mFlbXFHvd2r8hBOyU3IBLQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:24 2026 by rpki-client