$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: A+MrRi2UXePdtzdzQT5137z/Mh9CQ2sGG3LPr384GyM= Subject key identifier: 9B:19:0D:33:56:DA:53:47:D0:8D:A0:79:E5:81:96:E6:3E:21:1F:65 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BC6 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B03 Signing time: Sun 21 Jun 2026 02:50:11 +0000 Manifest this update: Sun 21 Jun 2026 02:50:11 +0000 Manifest next update: Sun 28 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Hq+PQw/emSh1gjxw5YYSSEiTgYBSJ1L8u17K7uEgpK4=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 6: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19398 (0x4bc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 21 02:50:11 2026 GMT Not After : Jun 28 02:50:11 2026 GMT Subject: CN=6a375163-9d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:f2:34:98:c0:3d:8e:de:dd:b4:a2:ce:27: 30:7a:95:8a:b5:db:40:f2:3e:20:6d:f1:6c:eb:c1: 3a:d0:3d:04:f7:47:e9:cc:fd:f8:ca:98:a8:d6:12: 2f:e0:30:2e:be:4d:d9:68:93:d2:ab:09:f2:9d:3e: 10:0e:dc:83:9b:db:62:68:ed:c3:9b:6a:68:83:61: 9b:4a:f7:81:68:a5:f9:23:2f:f7:4d:3b:1b:a7:00: 23:4d:f2:99:7a:cb:5e:7d:f8:5c:d9:ac:b1:8e:70: aa:c0:84:a5:2a:59:94:a0:b6:c1:e5:94:99:48:53: e7:fd:c0:da:37:a0:49:e5:81:64:36:ed:13:28:66: 21:62:62:3e:cc:86:8a:ba:9b:65:c7:5b:cb:70:27: fb:0a:52:85:2c:78:59:ba:d8:1a:fa:b6:a7:8d:2a: 48:c8:4d:38:34:7b:d4:65:58:36:b2:04:08:2a:e0: 6e:2c:4f:00:5d:11:33:97:79:4f:2b:a6:90:f5:52: c5:12:b3:d6:01:33:ad:cd:14:c8:00:75:a8:90:c2: 52:73:1b:43:12:82:78:12:ff:3e:b0:5e:6a:1d:78: 2b:06:04:94:cf:fd:8b:b3:13:fd:e5:62:f1:3b:03: 55:bd:0a:73:da:05:ea:05:3d:d7:c0:37:41:65:68: 66:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:19:0D:33:56:DA:53:47:D0:8D:A0:79:E5:81:96:E6:3E:21:1F:65 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:3d:8c:7d:6f:a2:25:0e:65:d0:eb:4d:22:f5:8d:d4:18:76: e3:93:9d:36:ec:08:c9:fa:a0:0c:9e:f5:8d:66:7c:9c:95:a4: 48:c6:0d:6e:b7:46:ed:eb:1d:f9:0b:e7:66:9d:8f:8a:f2:b9: 40:2f:0f:09:1e:cd:9b:77:5f:13:ff:ca:58:d0:55:8e:3f:40: d7:58:b4:a5:98:89:89:45:d2:83:25:a6:6b:a7:87:b1:69:1b: 95:fe:3e:dd:5e:f6:24:54:c5:0c:86:8a:f0:b4:18:21:1c:05: a0:a7:38:b9:6b:a4:dd:3c:65:43:74:3a:5c:39:fd:bf:b0:c8: bd:14:d0:d1:fb:ea:17:5f:ef:ce:ee:ac:2b:97:cd:e0:88:03: 20:1f:ed:02:22:e0:1f:57:47:fc:85:62:33:d1:ec:74:b7:13: ce:6b:64:ba:be:08:2d:fc:d5:b6:40:ea:8a:3c:ba:79:12:95: d3:3d:1b:2e:8b:08:12:d5:73:e1:c8:a4:f4:b5:78:59:eb:94: 17:70:14:51:9e:ef:d0:1d:33:51:73:e7:4d:dc:07:00:98:45: b1:a5:03:19:09:ef:d7:c1:66:f5:a7:70:a4:93:2d:af:a3:f0: b9:dc:ff:74:1e:b9:67:e3:41:08:99:f5:43:48:f3:e4:d6:92: 83:47:e5:07 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjIxMDI1MDExWhcNMjYwNjI4MDI1MDExWjAYMRYwFAYD VQQDEw02YTM3NTE2My05ZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtfyNJjAPY7e3bSizicwepWKtdtA8j4gbfFs68E60D0E90fpzP34ypio1hIv 4DAuvk3ZaJPSqwnynT4QDtyDm9tiaO3Dm2pog2GbSveBaKX5Iy/3TTsbpwAjTfKZ esteffhc2ayxjnCqwISlKlmUoLbB5ZSZSFPn/cDaN6BJ5YFkNu0TKGYhYmI+zIaK uptlx1vLcCf7ClKFLHhZutga+ranjSpIyE04NHvUZVg2sgQIKuBuLE8AXREzl3lP K6aQ9VLFErPWATOtzRTIAHWokMJScxtDEoJ4Ev8+sF5qHXgrBgSUz/2LsxP95WLx OwNVvQpz2gXqBT3XwDdBZWhmuwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFJsZDTNW 2lNH0I2geeWBluY+IR9lMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAEj2MfW+iJQ5l0OtNIvWN1Bh245OdNuwIyfqgDJ71jWZ8 nJWkSMYNbrdG7esd+QvnZp2PivK5QC8PCR7Nm3dfE//KWNBVjj9A11i0pZiJiUXS gyWma6eHsWkblf4+3V72JFTFDIaK8LQYIRwFoKc4uWuk3TxlQ3Q6XDn9v7DIvRTQ 0fvqF1/vzu6sK5fN4IgDIB/tAiLgH1dH/IViM9HsdLcTzmtkur4ILfzVtkDqijy6 eRKV0z0bLosIEtVz4cik9LV4WeuUF3AUUZ7v0B0zUXPnTdwHAJhFsaUDGQnv18Fm 9adwpJMtr6Pwudz/dB65Z+NBCJn1Q0jz5NaSg0flBw== -----END CERTIFICATE-----Generated at Sun Jun 21 11:38:44 2026 by rpki-client