$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: xUk2Zj7pgZ6u/SEwqbINr/SGtNCBtJP7AosyuiB0NO4= Subject key identifier: E6:3F:3B:34:8F:53:BF:B5:5B:6F:73:95:D1:24:AF:55:57:10:91:59 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BE2 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B1E Signing time: Mon 29 Jun 2026 15:01:54 +0000 Manifest this update: Mon 29 Jun 2026 15:01:54 +0000 Manifest next update: Mon 06 Jul 2026 15:01:54 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: DV94CXXLoOxfYhVUmfv8mapZoknZjnuTcHiStplhy9g=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 7: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 8: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 13: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Jul 2026 15:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19426 (0x4be2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 29 15:01:54 2026 GMT Not After : Jul 6 15:01:54 2026 GMT Subject: CN=6a4288e2-b93d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:c5:e3:6d:12:0d:3b:19:9c:ae:10:87:66:6c: 16:38:86:34:fc:ae:85:17:75:8e:b0:b6:64:55:9a: 37:62:61:3d:ce:b9:06:65:8d:6b:3b:eb:c2:cc:bb: 37:b3:b7:52:14:a8:ca:90:2a:99:a5:37:95:44:14: 4f:aa:24:22:e6:c5:4f:24:40:09:a5:4e:ed:d8:63: 6a:ef:13:3d:d4:d0:c7:84:b5:bd:68:b5:a6:81:05: d5:2b:39:b6:49:ec:16:09:5d:e3:95:cd:5f:08:8a: 79:10:10:9b:88:72:42:41:75:31:18:a4:99:77:9a: 61:41:15:71:5a:03:cd:4c:4a:fc:3f:8e:dc:41:07: 8b:08:ce:60:f2:a5:27:60:e9:96:85:74:45:15:9f: 6c:ac:dd:5f:38:cf:4c:0e:57:93:0f:31:61:d2:96: 12:76:90:7d:2b:d4:54:ed:57:3a:dd:93:7d:a5:2a: ad:1c:70:7d:a2:a5:50:15:f7:e8:d0:32:77:da:37: 00:b9:ed:08:b2:9f:f2:d7:e9:e5:1f:be:b1:24:ad: f5:a6:53:11:fd:67:a9:fa:f7:e1:f9:e8:c5:c6:d2: 29:8e:a9:ab:6f:20:f9:ec:be:0a:24:7c:75:9a:09: 4f:b8:6b:12:41:18:65:a0:d9:92:71:7d:41:9b:4e: 35:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3F:3B:34:8F:53:BF:B5:5B:6F:73:95:D1:24:AF:55:57:10:91:59 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f9:b3:fa:c6:fc:fb:f4:8e:1b:05:09:d3:b3:ab:b0:cc:e4: 3d:5a:b8:ba:a9:0a:e1:b3:c4:8a:df:71:30:82:ae:06:88:14: f9:43:4d:9e:9d:fb:42:43:03:c8:31:71:a8:d9:1e:d1:ee:b3: 1a:c4:f1:74:14:24:46:af:d0:38:90:fd:4c:1c:76:28:a8:ea: e3:69:dc:60:2e:1d:67:f6:7e:2e:4d:c0:fe:ff:5d:f0:b7:59: 77:58:ad:df:6b:6d:b6:50:1b:92:02:cf:89:cf:e2:e8:22:ce: a2:41:0b:cc:51:f8:ff:4f:eb:fc:fa:9d:b3:fe:e3:56:3d:ac: 34:f2:d4:12:a3:16:7a:0b:21:ef:1a:23:01:30:c0:12:8a:2e: d0:09:fe:a1:09:74:82:9f:27:b8:25:db:15:a7:76:98:0d:3c: 70:fb:b8:ee:a1:64:1c:51:6a:fe:fc:8e:90:ba:9e:5a:93:0c: 2d:92:27:64:f3:d5:47:68:64:02:49:63:60:70:df:24:bd:b5: c4:e9:ce:be:49:69:06:9c:ef:68:f8:a7:17:ca:11:e8:19:9e: 11:ff:ce:42:64:93:df:57:5d:de:0b:70:37:62:2c:c1:f0:75: 1c:af:a4:84:5d:41:ab:cc:15:d2:78:fc:83:30:24:c7:c9:fb: 3a:c4:34:b0 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI5MTUwMTU0WhcNMjYwNzA2MTUwMTU0WjAYMRYwFAYD VQQDEw02YTQyODhlMi1iOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAicXjbRINOxmcrhCHZmwWOIY0/K6FF3WOsLZkVZo3YmE9zrkGZY1rO+vCzLs3 s7dSFKjKkCqZpTeVRBRPqiQi5sVPJEAJpU7t2GNq7xM91NDHhLW9aLWmgQXVKzm2 SewWCV3jlc1fCIp5EBCbiHJCQXUxGKSZd5phQRVxWgPNTEr8P47cQQeLCM5g8qUn YOmWhXRFFZ9srN1fOM9MDleTDzFh0pYSdpB9K9RU7Vc63ZN9pSqtHHB9oqVQFffo 0DJ32jcAue0Isp/y1+nlH76xJK31plMR/Wep+vfh+ejFxtIpjqmrbyD57L4KJHx1 mglPuGsSQRhloNmScX1Bm041cwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOY/OzSP U7+1W29zldEkr1VXEJFZMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAmfmz+sb8+/SOGwUJ07OrsMzkPVq4uqkK4bPEit9xMIKu BogU+UNNnp37QkMDyDFxqNke0e6zGsTxdBQkRq/QOJD9TBx2KKjq42ncYC4dZ/Z+ Lk3A/v9d8LdZd1it32tttlAbkgLPic/i6CLOokELzFH4/0/r/Pqds/7jVj2sNPLU EqMWegsh7xojATDAEoou0An+oQl0gp8nuCXbFad2mA08cPu47qFkHFFq/vyOkLqe WpMMLZInZPPVR2hkAkljYHDfJL21xOnOvklpBpzvaPinF8oR6BmeEf/OQmST31dd 3gtwN2IswfB1HK+khF1Bq8wV0nj8gzAkx8n7OsQ0sA== -----END CERTIFICATE-----Generated at Mon Jun 29 21:08:40 2026 by rpki-client