$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: WuvGEvxwT8tFKnWUjipJ+fogdOyR+6+4Gd0YBp151Sw= Subject key identifier: 99:2C:8A:D9:FE:94:93:D9:10:1F:12:97:6C:C8:6A:87:ED:94:B4:C6 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B28 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A6B Signing time: Sun 03 May 2026 14:50:11 +0000 Manifest this update: Sun 03 May 2026 14:50:11 +0000 Manifest next update: Sun 10 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: /pn5FLhUZSYfgGhJ3E9XVzdXNgoYAcWyuxf2HwcD9OA=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19240 (0x4b28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 3 14:50:11 2026 GMT Not After : May 10 14:50:11 2026 GMT Subject: CN=69f760a3-af30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:40:6a:f8:aa:70:37:b4:ac:22:86:18:bb: 74:fd:f9:11:b7:15:0f:d9:a4:3e:af:55:d8:54:71: d0:bc:f2:9e:90:3e:f0:51:15:e2:13:a8:78:6b:17: 4e:89:cc:f5:cb:4a:da:d2:8d:a9:d7:be:3c:0c:2b: f7:61:db:ce:7f:2c:9c:b4:90:da:9e:96:3c:8f:43: 2c:c6:9c:3d:99:82:7b:f2:e8:13:c4:78:76:73:90: 47:74:c3:90:d9:1b:bb:bb:37:ae:6c:f9:8c:43:b4: a5:09:f2:f0:4f:5e:67:fb:6e:2e:e9:30:56:39:ba: b4:3b:45:fb:60:07:cc:44:e2:95:da:d2:78:f6:c1: 8b:6c:25:07:70:1e:0b:73:fe:4d:d5:ce:b6:a4:4a: 62:9f:cd:07:55:08:0e:40:59:4a:fe:e8:ee:1f:e4: e4:fd:69:60:0f:0a:28:31:01:ed:4f:da:97:8c:30: f5:70:ce:22:88:a9:87:50:8c:02:52:55:2d:ea:b0: 6f:11:af:76:9e:2e:1b:c5:05:b5:ee:39:2f:2d:25: 04:87:3a:0f:ea:23:9a:d2:7c:60:d9:db:62:dc:c0: 6b:55:b1:80:75:e3:54:32:61:22:db:ac:27:6f:1e: b3:ea:81:2b:7d:39:dc:fc:40:be:c8:0a:f6:bc:d1: 1b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2C:8A:D9:FE:94:93:D9:10:1F:12:97:6C:C8:6A:87:ED:94:B4:C6 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e8:14:33:c6:fa:d5:38:c0:fd:9d:59:04:53:6d:a0:ea:32: b9:f9:a7:e7:33:9b:fb:86:23:c3:a6:1b:7d:f3:52:85:d3:92: d6:a9:8c:4e:e7:a3:95:5a:0e:f7:b7:cc:88:e6:d8:9e:9b:e0: 59:2b:48:77:2f:9c:70:e5:15:46:fc:69:5c:5a:cd:0c:04:90: 1c:07:a6:f8:27:26:ed:79:ea:75:27:52:b0:27:da:44:f9:91: 1d:ea:db:8d:9f:f0:10:99:6c:41:44:07:1b:e1:7d:57:e8:81: 2f:a6:18:35:e1:3d:46:62:da:0b:5c:07:c8:3b:eb:ad:4f:79: b1:33:e6:2f:4e:da:3e:ca:f1:e1:14:c9:48:a9:39:45:c9:f6: 56:c9:65:3a:33:ad:ba:d2:5e:de:8b:bb:1c:d9:ad:f1:1e:d7: da:f0:15:ad:2b:be:7a:2b:ac:6c:9c:bf:18:7f:1c:a8:c5:20: 77:d5:19:b5:7c:bd:c9:5e:8a:cd:97:5d:bb:75:f4:75:d8:79: a6:b0:b2:5b:eb:98:8b:99:ab:8b:06:e5:d0:5a:2a:f0:bd:ac: 60:e5:18:12:12:2e:bc:ba:30:b3:ac:6e:b9:c6:78:d8:87:79: 36:36:51:63:09:50:78:a7:f9:27:3c:8c:5d:80:2d:f4:b2:7a: 74:a8:12:5d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTAzMTQ1MDExWhcNMjYwNTEwMTQ1MDExWjAYMRYwFAYD VQQDEw02OWY3NjBhMy1hZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw5AaviqcDe0rCKGGLt0/fkRtxUP2aQ+r1XYVHHQvPKekD7wURXiE6h4axdO icz1y0ra0o2p1748DCv3YdvOfyyctJDanpY8j0Msxpw9mYJ78ugTxHh2c5BHdMOQ 2Ru7uzeubPmMQ7SlCfLwT15n+24u6TBWObq0O0X7YAfMROKV2tJ49sGLbCUHcB4L c/5N1c62pEpin80HVQgOQFlK/ujuH+Tk/WlgDwooMQHtT9qXjDD1cM4iiKmHUIwC UlUt6rBvEa92ni4bxQW17jkvLSUEhzoP6iOa0nxg2dti3MBrVbGAdeNUMmEi26wn bx6z6oErfTnc/EC+yAr2vNEbRwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFJksitn+ lJPZEB8Sl2zIaoftlLTGMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAEOgUM8b61TjA/Z1ZBFNtoOoyufmn5zOb+4Yjw6YbffNS hdOS1qmMTuejlVoO97fMiObYnpvgWStIdy+ccOUVRvxpXFrNDASQHAem+Ccm7Xnq dSdSsCfaRPmRHerbjZ/wEJlsQUQHG+F9V+iBL6YYNeE9RmLaC1wHyDvrrU95sTPm L07aPsrx4RTJSKk5Rcn2VsllOjOtutJe3ou7HNmt8R7X2vAVrSu+eiusbJy/GH8c qMUgd9UZtXy9yV6KzZddu3X0ddh5prCyW+uYi5mriwbl0Foq8L2sYOUYEhIuvLow s6xuucZ42Id5NjZRYwlQeKf5JzyMXYAt9LJ6dKgSXQ== -----END CERTIFICATE-----Generated at Mon May 4 00:09:27 2026 by rpki-client