$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: yyT2/V/iFu8Sa4WzSjuDkdEIZCNRwCcB2eEq9ZGijeM= Subject key identifier: A1:67:36:E8:8D:40:06:98:3D:F2:A9:51:1C:E6:1B:AE:39:6E:4F:E1 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B68 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AAB Signing time: Sun 24 May 2026 14:50:12 +0000 Manifest this update: Sun 24 May 2026 14:50:11 +0000 Manifest next update: Sun 31 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 0/DUl9v/V1WHDZruBKCurP0HDsktmt4ZeAQN5jZRarI=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 May 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19304 (0x4b68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 24 14:50:11 2026 GMT Not After : May 31 14:50:11 2026 GMT Subject: CN=6a131023-4874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8e:98:d9:40:f4:16:6c:da:7d:eb:61:05:08: 69:c3:92:88:ec:54:14:81:42:23:37:f7:cd:a1:0d: 19:8d:8f:4f:52:c7:6b:4f:42:01:40:98:2b:10:8d: 84:25:68:3b:fd:a0:7b:aa:8a:ea:da:43:90:ba:78: 14:8b:d4:07:98:14:22:c1:7e:4f:76:3f:35:25:47: eb:9c:25:da:c6:db:96:68:52:d8:f3:7f:01:94:da: 8e:fc:c5:b3:71:64:9a:f0:5b:b7:8b:ab:7a:9d:c2: 97:fe:87:83:98:20:cd:64:3f:35:1a:98:cd:70:e2: 3c:d1:7a:f3:36:d8:9b:b0:23:42:2a:c9:00:0e:ba: 0b:e2:18:5a:22:bb:7a:82:26:df:71:75:23:7b:8c: b9:ff:d9:55:6c:7a:85:c7:12:08:3f:fc:ce:2c:3d: 86:a6:e3:cf:7a:91:e9:8f:5d:f3:b8:53:7d:5c:fb: 2f:4c:53:77:1a:3e:66:a7:a7:cd:77:71:35:8d:93: 4c:32:3d:12:44:09:6a:60:5f:e9:05:08:f2:51:7d: 70:8d:89:65:cc:e0:81:17:fd:82:b0:8b:2c:a5:0c: 1d:41:5d:7d:7d:15:0d:da:de:da:4e:a0:e8:ea:a5: 0a:34:dd:8f:d0:5d:f8:bb:bc:3a:de:b0:7a:04:b6: 54:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:67:36:E8:8D:40:06:98:3D:F2:A9:51:1C:E6:1B:AE:39:6E:4F:E1 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:62:a2:32:02:01:44:1b:0c:e7:a0:2d:d6:a0:1f:5a:18:4c: d2:9f:e9:02:75:c2:b1:13:a1:4e:74:8d:39:b0:c3:4e:5a:c0: 29:2e:7d:b5:65:4b:b9:a1:69:54:55:2d:b9:2f:02:93:9c:2e: 5c:fa:43:2f:d5:c6:fe:52:31:0d:5a:aa:10:92:4d:6e:68:3e: 58:aa:47:0b:07:d4:d9:22:29:56:01:6e:bd:5c:6e:81:1f:fe: a3:7d:22:82:9a:f2:09:80:60:72:90:88:67:47:77:7e:23:07: 6c:ed:39:35:4e:01:ee:50:31:aa:c0:59:d7:de:e4:19:ed:21: 67:13:89:fe:d2:25:1c:73:2d:17:fc:d1:0f:6a:34:67:1e:f8: 81:9e:d3:39:ad:a0:da:f1:ab:69:16:1e:57:11:9a:8b:a0:ab: 06:0f:e5:69:81:9c:87:a4:15:fa:76:2d:be:d8:94:26:72:f8: e1:87:c6:1a:43:bd:de:5f:06:1b:94:92:a6:97:be:b9:53:01: 96:69:f2:c0:71:15:34:3b:29:ca:34:03:58:ed:18:1b:03:de: d8:f8:ac:5a:b4:6e:cc:4e:1d:61:56:50:ec:2d:29:cf:98:bb: ce:de:32:6c:47:bb:bb:4e:7b:2c:c8:b1:25:47:76:f6:b7:15: 26:64:e4:ec -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI0MTQ1MDExWhcNMjYwNTMxMTQ1MDExWjAYMRYwFAYD VQQDEw02YTEzMTAyMy00ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro6Y2UD0FmzafethBQhpw5KI7FQUgUIjN/fNoQ0ZjY9PUsdrT0IBQJgrEI2E JWg7/aB7qorq2kOQungUi9QHmBQiwX5Pdj81JUfrnCXaxtuWaFLY838BlNqO/MWz cWSa8Fu3i6t6ncKX/oeDmCDNZD81GpjNcOI80XrzNtibsCNCKskADroL4hhaIrt6 gibfcXUje4y5/9lVbHqFxxIIP/zOLD2GpuPPepHpj13zuFN9XPsvTFN3Gj5mp6fN d3E1jZNMMj0SRAlqYF/pBQjyUX1wjYllzOCBF/2CsIsspQwdQV19fRUN2t7aTqDo 6qUKNN2P0F34u7w63rB6BLZUrwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFKFnNuiN QAaYPfKpURzmG645bk/hMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAhGKiMgIBRBsM56At1qAfWhhM0p/pAnXCsROhTnSNObDD TlrAKS59tWVLuaFpVFUtuS8Ck5wuXPpDL9XG/lIxDVqqEJJNbmg+WKpHCwfU2SIp VgFuvVxugR/+o30igpryCYBgcpCIZ0d3fiMHbO05NU4B7lAxqsBZ197kGe0hZxOJ /tIlHHMtF/zRD2o0Zx74gZ7TOa2g2vGraRYeVxGai6CrBg/laYGch6QV+nYtvtiU JnL44YfGGkO93l8GG5SSppe+uVMBlmnywHEVNDspyjQDWO0YGwPe2PisWrRuzE4d YVZQ7C0pz5i7zt4ybEe7u057LMixJUd29rcVJmTk7A== -----END CERTIFICATE-----Generated at Mon May 25 01:11:53 2026 by rpki-client