$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: w1l9ljBMmuDwkGoMNYpFw+ZILaDf/pJmKMmnIPbCiw0= Subject key identifier: 4B:A0:3A:21:70:4D:D0:35:12:ED:3A:80:06:25:87:0D:0C:6E:A8:41 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BDD Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B1A Signing time: Sun 28 Jun 2026 14:50:12 +0000 Manifest this update: Sun 28 Jun 2026 14:50:12 +0000 Manifest next update: Sun 05 Jul 2026 14:50:12 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ck0aM8ai3S3pHjpJiHRwU4OVo2i5Mjfbi7rGXCe8q+0=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 12: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Jul 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19421 (0x4bdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 28 14:50:12 2026 GMT Not After : Jul 5 14:50:12 2026 GMT Subject: CN=6a4134a4-c206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1a:a5:4c:d3:19:92:32:01:81:a5:fe:b8:fe: 97:5f:47:7a:7b:1a:b9:aa:76:38:ce:41:e0:1c:00: a9:4a:b3:a1:92:cd:bd:4b:41:31:7f:ce:c8:69:77: 72:94:ec:7d:f7:4d:26:49:fc:96:5f:21:3a:08:8f: 20:b7:1e:70:32:22:4b:9f:e9:f0:84:70:5e:89:7a: 92:c2:da:77:da:e3:e1:b3:ba:44:8a:f4:83:75:0b: 41:69:16:0c:8b:c8:9b:54:e8:0a:52:80:aa:f3:92: 3d:13:d5:f2:4c:b0:f7:3b:04:eb:d6:d8:34:02:bb: 87:3b:c5:6a:91:c8:6f:49:14:86:e7:95:3d:f1:a2: 7a:60:cc:8a:7b:21:b6:6e:bc:5d:08:10:58:bc:b4: 56:d9:ed:64:b9:08:50:fb:fa:98:fe:55:dd:9c:57: c7:a5:54:2c:e0:af:88:29:38:14:63:e6:6d:8b:7f: bc:c5:e1:ec:c4:c0:14:a3:f3:00:e2:a7:0e:5e:b2: 83:e9:3c:15:bd:34:69:dd:ec:f1:6d:3d:6c:ab:68: a3:c6:95:af:95:32:0f:e7:ac:fd:66:d4:11:87:99: ab:ee:bc:d2:32:b4:86:40:b6:b8:c5:15:1f:ba:8c: db:6f:01:f1:9b:3e:fa:07:e7:38:3d:21:f0:61:28: a6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A0:3A:21:70:4D:D0:35:12:ED:3A:80:06:25:87:0D:0C:6E:A8:41 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d0:39:dd:91:dc:89:ef:ea:b8:58:84:4b:87:96:50:fd:f1: e1:a3:92:70:a1:81:ea:49:73:3e:6d:99:ba:cc:2e:b6:be:38: 69:6f:11:f4:75:b6:a3:44:f6:13:f5:4e:f3:cb:02:26:f7:ff: 02:29:db:ca:97:80:06:3b:12:10:c4:c7:a9:dd:9e:de:c6:d2: 74:0e:5d:cb:eb:16:4d:fd:0a:9f:b5:c4:fe:fe:89:2d:43:48: d3:6a:a2:47:55:fc:ed:d1:58:1d:12:7a:58:f4:49:1d:6f:48: 69:9b:e5:84:20:d1:22:64:67:75:78:e3:fd:37:66:c2:a8:6f: 7d:51:12:cf:fc:44:80:21:a0:e4:76:a6:eb:87:d3:ad:ac:a5: 28:d7:1f:7c:18:ae:ac:56:81:86:02:bf:39:76:43:65:49:23: 9b:95:19:c6:6b:47:ff:77:06:d5:00:26:93:8b:43:5d:85:88: 23:0a:cd:41:5b:ab:1f:a2:73:bf:c7:49:2d:ef:f5:a1:a8:15: 02:85:17:a9:63:ca:15:2c:6e:e7:d6:a6:01:d6:6c:65:98:d8: 4e:5f:f8:2f:ef:cb:7d:b9:f2:b5:24:2b:4f:bc:1f:37:12:41: 2d:f2:31:d5:07:02:2a:27:3d:dd:d2:39:3d:96:26:04:06:d1: 77:ec:b2:ae -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI4MTQ1MDEyWhcNMjYwNzA1MTQ1MDEyWjAYMRYwFAYD VQQDEw02YTQxMzRhNC1jMjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRqlTNMZkjIBgaX+uP6XX0d6exq5qnY4zkHgHACpSrOhks29S0Exf87IaXdy lOx9900mSfyWXyE6CI8gtx5wMiJLn+nwhHBeiXqSwtp32uPhs7pEivSDdQtBaRYM i8ibVOgKUoCq85I9E9XyTLD3OwTr1tg0AruHO8VqkchvSRSG55U98aJ6YMyKeyG2 brxdCBBYvLRW2e1kuQhQ+/qY/lXdnFfHpVQs4K+IKTgUY+Zti3+8xeHsxMAUo/MA 4qcOXrKD6TwVvTRp3ezxbT1sq2ijxpWvlTIP56z9ZtQRh5mr7rzSMrSGQLa4xRUf uozbbwHxmz76B+c4PSHwYSimdQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFEugOiFw TdA1Eu06gAYlhw0MbqhBMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAktA53ZHcie/quFiES4eWUP3x4aOScKGB6klzPm2Zuswu tr44aW8R9HW2o0T2E/VO88sCJvf/AinbypeABjsSEMTHqd2e3sbSdA5dy+sWTf0K n7XE/v6JLUNI02qiR1X87dFYHRJ6WPRJHW9IaZvlhCDRImRndXjj/TdmwqhvfVES z/xEgCGg5Ham64fTraylKNcffBiurFaBhgK/OXZDZUkjm5UZxmtH/3cG1QAmk4tD XYWIIwrNQVurH6Jzv8dJLe/1oagVAoUXqWPKFSxu59amAdZsZZjYTl/4L+/Lfbny tSQrT7wfNxJBLfIx1QcCKic93dI5PZYmBAbRd+yyrg== -----END CERTIFICATE-----Generated at Sun Jun 28 20:35:40 2026 by rpki-client