$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: NpY1DaKY5BCSpS+L8ViiF5j3QbyQ9qiaaqpnek9vXY4= Subject key identifier: 7E:D5:B5:0C:3A:3A:D9:AD:29:1A:83:5C:19:17:E4:43:B2:24:E9:60 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BC9 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B06 Signing time: Mon 22 Jun 2026 02:50:11 +0000 Manifest this update: Mon 22 Jun 2026 02:50:10 +0000 Manifest next update: Mon 29 Jun 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: BwxotwWxPLUaeucxHttjm5ZE5EeJxPUl/W3hO8IPUb8=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 12: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19401 (0x4bc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 22 02:50:10 2026 GMT Not After : Jun 29 02:50:10 2026 GMT Subject: CN=6a38a2e3-dc24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:df:4f:13:95:82:a2:bd:d8:27:24:24:13: e6:08:d6:dd:f7:bf:72:7f:da:1f:d9:90:c3:2d:c6: fb:74:f2:65:02:10:6d:6a:b4:74:33:d3:a3:03:e4: 37:3c:0b:b5:ca:b8:07:30:bd:3e:03:f7:fb:e1:76: 9b:57:28:ab:41:8d:de:0c:a7:7c:3a:2e:62:4d:51: ea:cb:d6:44:67:24:c0:17:47:20:62:e5:19:13:0d: e3:03:21:ee:d7:fc:c8:54:73:bc:a5:82:20:64:04: 83:7f:2c:e6:1f:bb:9e:ea:39:84:25:65:e9:ce:65: e8:9d:79:ec:48:08:04:66:8f:0f:c4:c8:68:aa:1d: f5:d2:d0:b6:eb:dc:08:4c:51:91:57:76:7a:62:d7: 69:99:77:6c:6b:19:ed:68:e6:60:4a:73:51:38:65: 51:9e:55:ee:95:b2:10:98:1c:91:63:e2:b3:08:8a: 8c:0a:e4:a0:20:e9:38:57:33:11:ef:df:0f:95:d2: 83:26:9f:ed:5d:58:b4:b3:1c:e3:a7:75:a2:1f:4d: 50:93:26:27:cb:57:15:15:8e:8f:13:4d:c7:55:5e: 92:d1:2e:1f:8f:8b:47:45:d8:30:7b:65:93:9e:41: 79:17:97:67:cd:af:69:3e:95:18:3c:ac:ae:3e:17: 87:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D5:B5:0C:3A:3A:D9:AD:29:1A:83:5C:19:17:E4:43:B2:24:E9:60 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:60:1d:ed:d1:7e:15:9b:bc:76:2e:71:2f:fd:97:31:30:c4: 56:04:3f:97:54:7c:72:6e:80:d9:65:11:8d:d8:80:28:d0:73: 65:ae:61:6d:f8:f0:7f:30:75:8c:ec:06:11:c2:fb:02:d0:11: ce:04:42:88:07:be:0f:89:4f:b4:0f:ed:02:95:7f:c0:7a:e8: 4f:95:96:98:22:f0:fb:29:26:e3:03:69:ab:0b:9c:f4:f3:42: 8b:50:e9:81:54:13:b2:dd:7d:6a:2e:6d:5f:ef:f5:8a:6f:ea: 23:07:2e:0f:3b:07:f7:00:3d:f4:f5:fb:cc:36:55:5f:8a:6a: f6:89:db:d0:31:82:e3:31:bf:8a:c3:dd:c1:d9:f7:0c:92:a1: dc:53:71:7e:63:c6:58:75:6e:11:0a:8e:22:63:33:86:80:e8: ca:63:a9:12:cf:02:ba:eb:3e:08:23:e3:0a:b0:8c:a1:a1:6b: d9:02:70:b7:d8:bd:e7:bf:1e:ed:a8:80:02:c5:a9:49:b2:b7: f7:70:d2:cd:17:2a:5b:d5:63:a9:59:94:bf:6e:d6:67:dd:16: d5:08:0a:55:cc:88:72:80:87:5b:8f:09:63:7f:4d:da:ed:b5: b4:5d:fe:f5:84:09:fb:36:44:0b:68:36:e9:b1:a3:e4:f2:1b: a4:f2:49:30 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjIyMDI1MDEwWhcNMjYwNjI5MDI1MDEwWjAYMRYwFAYD VQQDEw02YTM4YTJlMy1kYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHPfTxOVgqK92CckJBPmCNbd979yf9of2ZDDLcb7dPJlAhBtarR0M9OjA+Q3 PAu1yrgHML0+A/f74XabVyirQY3eDKd8Oi5iTVHqy9ZEZyTAF0cgYuUZEw3jAyHu 1/zIVHO8pYIgZASDfyzmH7ue6jmEJWXpzmXonXnsSAgEZo8PxMhoqh310tC269wI TFGRV3Z6YtdpmXdsaxntaOZgSnNROGVRnlXulbIQmByRY+KzCIqMCuSgIOk4VzMR 798PldKDJp/tXVi0sxzjp3WiH01QkyYny1cVFY6PE03HVV6S0S4fj4tHRdgwe2WT nkF5F5dnza9pPpUYPKyuPheHvQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFH7VtQw6 OtmtKRqDXBkX5EOyJOlgMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAeWAd7dF+FZu8di5xL/2XMTDEVgQ/l1R8cm6A2WURjdiA KNBzZa5hbfjwfzB1jOwGEcL7AtARzgRCiAe+D4lPtA/tApV/wHroT5WWmCLw+ykm 4wNpqwuc9PNCi1DpgVQTst19ai5tX+/1im/qIwcuDzsH9wA99PX7zDZVX4pq9onb 0DGC4zG/isPdwdn3DJKh3FNxfmPGWHVuEQqOImMzhoDoymOpEs8Cuus+CCPjCrCM oaFr2QJwt9i9578e7aiAAsWpSbK393DSzRcqW9VjqVmUv27WZ90W1QgKVcyIcoCH W48JY39N2u21tF3+9YQJ+zZEC2g26bGj5PIbpPJJMA== -----END CERTIFICATE-----Generated at Mon Jun 22 13:25:35 2026 by rpki-client