$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: ZmF67u+n13CaPc9ZQLSSRFJ2Qc1/QUCvcwwvLbsbk/M= Subject key identifier: 20:2B:FC:E2:0B:0E:4C:FF:11:A7:B1:F8:39:41:86:FE:CD:74:94:1A Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BD7 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B14 Signing time: Fri 26 Jun 2026 14:56:27 +0000 Manifest this update: Fri 26 Jun 2026 14:56:26 +0000 Manifest next update: Fri 03 Jul 2026 14:56:26 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 89fAFLqYq47g6zNyvl6XMKDpTmEF+Uz7u/rzvCxfQPg=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jul 2026 14:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19415 (0x4bd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 26 14:56:26 2026 GMT Not After : Jul 3 14:56:26 2026 GMT Subject: CN=6a3e931a-9064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:95:13:02:9d:b8:dd:d1:78:03:05:cd:73:e0: 46:24:d2:bf:0d:47:66:77:9e:5b:27:8c:e1:55:54: f0:ed:3e:88:22:6f:01:1b:c9:34:b8:c5:7c:1c:42: fe:e6:8d:3f:5e:e9:9d:c3:f2:64:80:90:87:e7:46: 8c:a2:89:c5:c0:1d:cf:9b:f4:db:fb:c3:0d:5b:8e: 70:5d:7e:86:0f:2a:bf:a9:91:82:e6:4c:ac:c4:96: 2f:8c:09:78:31:48:7b:74:84:92:8c:74:e4:46:cf: 0e:be:70:59:87:47:f5:be:14:1b:f0:af:cf:7d:af: 5b:cd:10:c1:98:63:46:4c:0a:1b:f4:55:98:bc:6b: 76:a8:45:e3:4d:d6:2d:34:85:11:2c:15:90:51:1d: 94:17:9f:53:2f:49:14:35:2e:b3:21:71:3b:b3:e6: 6d:d0:4c:03:31:cf:5e:ae:da:9c:b8:86:65:ae:f9: 37:71:26:3e:c9:a2:56:31:0b:fc:59:c9:43:5b:2d: a7:f0:21:5e:1c:f8:6f:12:80:ee:4b:e2:47:42:61: e9:83:51:51:da:5d:52:c0:18:36:30:2a:eb:5f:6f: e5:8a:6f:c4:74:26:c2:da:f9:70:23:cb:e7:6a:73: 48:7c:8d:97:09:4f:25:b1:3e:2f:70:10:da:0d:a8: 1a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2B:FC:E2:0B:0E:4C:FF:11:A7:B1:F8:39:41:86:FE:CD:74:94:1A X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:d4:b1:61:a7:02:a2:50:3a:23:66:f5:b9:18:ec:8c:93:a9: 81:81:c2:83:5a:41:59:0b:06:b5:46:94:f1:c0:25:01:63:fa: f8:8f:f7:87:84:23:e2:81:98:75:4c:da:24:ae:88:01:b4:68: 63:02:54:19:50:02:78:3b:17:e2:d2:53:2c:13:12:b7:b2:e0: 14:a1:e3:89:d7:ea:53:89:bf:dd:5e:7d:9d:0d:ca:1e:ec:c8: d9:b9:91:17:a0:85:e7:70:f4:e4:e8:0b:32:0d:93:9f:b7:b8: a5:86:4c:96:2a:a3:21:21:5e:91:bc:f6:fa:c2:c2:5e:36:fb: 39:28:56:f9:88:76:dc:a0:89:26:7d:e8:e4:b2:f4:22:ac:87: e4:59:1a:4b:be:45:58:66:5a:c1:fc:39:9e:05:f6:f6:0d:69: 9d:08:23:72:27:79:8f:02:8b:52:5e:a7:67:86:e1:6d:ea:cb: 57:c7:5d:a3:6f:bd:46:4e:c2:13:e0:a0:ee:88:f5:43:8e:d1: f0:26:ce:57:79:3a:d1:5a:ae:42:56:0e:86:58:c6:8c:1b:3d: ec:b2:c3:8c:99:24:15:a7:77:c9:86:89:b7:a1:f1:c8:26:03: 37:75:ec:39:ca:fd:10:b6:ed:5f:c9:19:27:b7:8b:ae:c4:3c: 0e:9f:65:b2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI2MTQ1NjI2WhcNMjYwNzAzMTQ1NjI2WjAYMRYwFAYD VQQDEw02YTNlOTMxYS05MDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55UTAp243dF4AwXNc+BGJNK/DUdmd55bJ4zhVVTw7T6IIm8BG8k0uMV8HEL+ 5o0/Xumdw/JkgJCH50aMoonFwB3Pm/Tb+8MNW45wXX6GDyq/qZGC5kysxJYvjAl4 MUh7dISSjHTkRs8OvnBZh0f1vhQb8K/Pfa9bzRDBmGNGTAob9FWYvGt2qEXjTdYt NIURLBWQUR2UF59TL0kUNS6zIXE7s+Zt0EwDMc9ertqcuIZlrvk3cSY+yaJWMQv8 WclDWy2n8CFeHPhvEoDuS+JHQmHpg1FR2l1SwBg2MCrrX2/lim/EdCbC2vlwI8vn anNIfI2XCU8lsT4vcBDaDagaewIDAQABo4ICTzCCAkswHQYDVR0OBBYEFCAr/OIL Dkz/Eaex+DlBhv7NdJQaMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEArdSxYacColA6I2b1uRjsjJOpgYHCg1pBWQsGtUaU8cAl AWP6+I/3h4Qj4oGYdUzaJK6IAbRoYwJUGVACeDsX4tJTLBMSt7LgFKHjidfqU4m/ 3V59nQ3KHuzI2bmRF6CF53D05OgLMg2Tn7e4pYZMliqjISFekbz2+sLCXjb7OShW +Yh23KCJJn3o5LL0IqyH5FkaS75FWGZawfw5ngX29g1pnQgjcid5jwKLUl6nZ4bh berLV8ddo2+9Rk7CE+Cg7oj1Q47R8CbOV3k60VquQlYOhljGjBs97LLDjJkkFad3 yYaJt6HxyCYDN3XsOcr9ELbtX8kZJ7eLrsQ8Dp9lsg== -----END CERTIFICATE-----Generated at Fri Jun 26 17:47:47 2026 by rpki-client