$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: f2B1XxR8LkRPJjbqJbewc7A0zWfcZQZa/feUCXcHl7s= Subject key identifier: 2E:16:F2:21:04:02:90:01:BA:01:BB:03:53:B2:F2:12:80:D5:04:FD Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A59 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49A2 Signing time: Sat 28 Feb 2026 14:50:12 +0000 Manifest this update: Sat 28 Feb 2026 14:50:11 +0000 Manifest next update: Sat 07 Mar 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: WryP7V4AJbd0AzEGIO3RAUQBWnMOq5+Q1y4mIYtAcDs=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19033 (0x4a59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 28 14:50:11 2026 GMT Not After : Mar 7 14:50:11 2026 GMT Subject: CN=69a300a3-b391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7e:d0:11:5a:19:9b:c6:0d:fe:fc:55:b1:3d: 29:5e:82:9e:2c:73:28:3f:42:53:29:8a:52:c8:5b: b3:85:aa:93:9c:a9:fd:98:5f:ac:6d:52:d2:e0:52: bc:ee:d8:95:18:30:71:b5:4a:b8:4e:98:54:ed:e8: 36:f0:ed:bc:25:30:4e:da:ae:a4:6c:da:86:bf:c1: 7a:1c:d7:5c:5a:66:79:60:3a:cf:e0:24:89:3e:64: 1d:7e:40:8d:b3:05:cf:ab:e7:fd:a6:e9:c2:4e:1e: 2b:05:37:05:ff:40:40:37:eb:bb:e4:60:33:65:78: 0e:45:96:3c:61:84:3b:cb:38:1d:ba:8e:3e:a2:f4: a4:e4:cc:ee:65:52:15:f7:41:db:56:23:99:70:df: d3:0d:a1:a6:79:d5:36:6a:8c:4b:81:ef:68:8f:97: 85:3d:74:a5:55:eb:cd:8a:49:43:a3:f7:62:a4:88: 51:4e:a0:11:c1:4c:db:1c:69:53:83:11:31:9e:0a: b6:77:2b:79:ae:d5:15:05:f4:bc:35:1d:7e:7b:69: c3:af:86:a5:50:b1:d5:5f:9d:87:c8:9c:7c:e3:b3: a9:56:22:40:38:fe:b2:be:5f:b9:4e:5f:3b:11:ed: f9:51:c8:bd:24:06:d2:a7:24:80:22:ec:fe:a6:d7: 03:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:16:F2:21:04:02:90:01:BA:01:BB:03:53:B2:F2:12:80:D5:04:FD X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:04:54:13:ee:8a:d3:30:9d:84:74:bb:91:62:5a:e1:37:2d: 14:61:1c:08:63:b0:ec:91:84:2b:86:99:50:dc:da:83:c1:03: 57:be:86:36:3b:bd:00:53:b6:a2:df:57:cf:17:c4:56:d1:88: 2f:64:9b:36:9d:2f:87:c5:cf:f8:3c:27:eb:18:13:ef:22:6a: d3:a4:49:ec:2e:aa:02:06:e1:d7:0a:fe:07:80:29:49:80:0e: 25:89:75:c0:0c:d9:15:31:0a:83:c1:0a:cb:3b:06:26:b7:61: 4e:96:4f:fa:ae:63:cd:cb:eb:5d:e5:fd:6f:09:da:7c:d1:65: 32:a9:c4:c2:8c:13:a4:16:6c:01:0a:df:95:ff:77:1b:41:90: 27:df:7a:e0:c9:40:b4:2e:9f:86:b0:ae:6d:98:ac:ea:37:0e: 5c:a6:f3:4b:7c:de:1b:58:6c:f1:32:02:e8:ea:2c:4c:cb:b7: 3c:5f:d2:88:fb:13:c2:2b:13:83:c7:54:55:04:80:20:fc:86: 91:90:e9:c9:bd:c8:72:38:f7:6e:63:6f:c0:bd:56:05:69:0c: 97:b8:d0:9d:d6:fb:34:7c:65:99:70:34:b2:0f:24:c6:3b:b9: 89:b1:33:c1:43:6b:18:a9:52:53:08:af:d3:ba:73:47:ec:34: 31:22:70:40 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjI4MTQ1MDExWhcNMjYwMzA3MTQ1MDExWjAYMRYwFAYD VQQDEw02OWEzMDBhMy1iMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjn7QEVoZm8YN/vxVsT0pXoKeLHMoP0JTKYpSyFuzhaqTnKn9mF+sbVLS4FK8 7tiVGDBxtUq4TphU7eg28O28JTBO2q6kbNqGv8F6HNdcWmZ5YDrP4CSJPmQdfkCN swXPq+f9punCTh4rBTcF/0BAN+u75GAzZXgORZY8YYQ7yzgduo4+ovSk5MzuZVIV 90HbViOZcN/TDaGmedU2aoxLge9oj5eFPXSlVevNiklDo/dipIhRTqARwUzbHGlT gxExngq2dyt5rtUVBfS8NR1+e2nDr4alULHVX52HyJx847OpViJAOP6yvl+5Tl87 Ee35Uci9JAbSpySAIuz+ptcDmQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFC4W8iEE ApABugG7A1Oy8hKA1QT9MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAcQRUE+6K0zCdhHS7kWJa4TctFGEcCGOw7JGEK4aZUNza g8EDV76GNju9AFO2ot9XzxfEVtGIL2SbNp0vh8XP+Dwn6xgT7yJq06RJ7C6qAgbh 1wr+B4ApSYAOJYl1wAzZFTEKg8EKyzsGJrdhTpZP+q5jzcvrXeX9bwnafNFlMqnE wowTpBZsAQrflf93G0GQJ9964MlAtC6fhrCubZis6jcOXKbzS3zeG1hs8TIC6Oos TMu3PF/SiPsTwisTg8dUVQSAIPyGkZDpyb3Icjj3bmNvwL1WBWkMl7jQndb7NHxl mXA0sg8kxju5ibEzwUNrGKlSUwiv07pzR+w0MSJwQA== -----END CERTIFICATE-----Generated at Sat Feb 28 20:02:13 2026 by rpki-client