$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: vGLuLS2cZgHxlH502BEcYgnNCyxQVQ1ym5PUo/+llQM= Subject key identifier: D7:71:A0:BE:1B:FB:19:3F:2A:31:25:CA:A2:76:87:F2:1B:7F:06:30 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B59 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A9C Signing time: Tue 19 May 2026 14:50:11 +0000 Manifest this update: Tue 19 May 2026 14:50:11 +0000 Manifest next update: Tue 26 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: /GY/Y90n7Bc34Lj4oj1jb0rasQSwzVxGbkyc6p3XRwg=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 May 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19289 (0x4b59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 19 14:50:11 2026 GMT Not After : May 26 14:50:11 2026 GMT Subject: CN=6a0c78a3-e2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b3:b5:39:66:4a:6b:15:3c:b1:79:d1:77:1f: c8:62:b7:9a:f9:0e:31:36:59:46:d3:c1:3e:4b:a4: 57:13:a9:e7:62:2d:ac:4a:50:b0:11:0b:69:5f:17: be:ff:0f:70:c9:d5:14:1c:5d:f6:00:96:63:a3:52: 4c:7c:c6:c9:bc:e1:ff:e6:aa:04:3c:58:97:ba:54: 8a:24:c0:38:a6:d2:0e:5a:a8:85:c1:e5:e7:a6:0e: d3:09:03:a2:b2:32:a8:b9:98:f0:b2:11:e9:6e:94: 25:8b:0a:ae:46:05:dc:d1:12:71:a4:fe:51:a4:97: 4f:ec:d4:36:92:82:58:de:f3:36:a4:c4:e4:49:b7: d1:c8:6c:3e:ae:83:86:a5:77:5e:8b:57:7d:1d:9f: 3d:24:25:dc:95:a8:1a:0e:86:e0:23:5c:bf:49:a3: 24:9a:ef:8e:e4:d8:e9:3c:87:bc:1c:4d:71:49:6f: e0:9e:96:c3:b3:4e:73:27:48:55:5f:4d:4e:d9:db: 45:4d:75:42:65:a4:24:4e:6f:09:e5:74:0a:d2:b2: 2b:26:66:3d:e9:b0:58:dd:9f:4a:88:38:88:ea:e1: 58:e7:c0:e1:db:22:e2:63:08:d1:98:e4:bc:eb:aa: 52:15:ee:12:d5:3f:14:8d:ca:92:f2:c0:4d:9e:0b: a5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:71:A0:BE:1B:FB:19:3F:2A:31:25:CA:A2:76:87:F2:1B:7F:06:30 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b5:72:05:da:67:f1:63:50:b2:09:5a:3c:a1:4f:e9:54:e7: 16:16:9f:af:ea:84:74:82:5b:d3:68:76:1d:f6:12:37:74:fd: 2f:91:f0:96:ca:a9:90:27:ef:71:e1:24:61:ad:b2:8d:97:2b: 7a:23:79:8c:d7:c8:af:31:c8:30:3f:ab:d6:4a:8d:94:4b:83: 0c:52:3d:6b:cd:fa:3d:ac:48:4e:bc:e0:45:04:d6:68:81:75: 3c:da:40:a8:ce:40:23:14:89:95:7f:26:6e:4d:b8:82:71:45: 35:34:cc:d6:09:7b:80:91:0b:a2:15:14:15:7c:e4:29:ef:ac: 93:aa:55:91:a0:0d:96:0b:58:46:a6:3f:46:47:69:66:d8:49: e4:8c:58:53:f2:f1:5e:4b:1e:13:20:30:12:30:26:69:30:a3: 72:e2:59:d6:c8:21:7e:16:c5:2d:0c:95:5c:a5:b9:3d:2a:16: bc:68:73:eb:8b:70:f8:6a:7c:5d:9c:a1:7a:bc:95:55:09:93: 86:30:c9:5f:54:3f:be:de:5f:a0:29:2c:7e:b4:7e:ab:b6:d3: a1:11:a7:87:6f:f4:9c:21:81:ac:8b:96:46:11:b9:95:94:a6: d5:82:7c:40:f4:b8:68:14:d0:4f:b8:41:0f:35:46:47:27:12: 7e:29:28:55 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTE5MTQ1MDExWhcNMjYwNTI2MTQ1MDExWjAYMRYwFAYD VQQDEw02YTBjNzhhMy1lMmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47O1OWZKaxU8sXnRdx/IYrea+Q4xNllG08E+S6RXE6nnYi2sSlCwEQtpXxe+ /w9wydUUHF32AJZjo1JMfMbJvOH/5qoEPFiXulSKJMA4ptIOWqiFweXnpg7TCQOi sjKouZjwshHpbpQliwquRgXc0RJxpP5RpJdP7NQ2koJY3vM2pMTkSbfRyGw+roOG pXdei1d9HZ89JCXclagaDobgI1y/SaMkmu+O5NjpPIe8HE1xSW/gnpbDs05zJ0hV X01O2dtFTXVCZaQkTm8J5XQK0rIrJmY96bBY3Z9KiDiI6uFY58Dh2yLiYwjRmOS8 66pSFe4S1T8UjcqS8sBNngultwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFNdxoL4b +xk/KjElyqJ2h/IbfwYwMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAbLVyBdpn8WNQsglaPKFP6VTnFhafr+qEdIJb02h2HfYS N3T9L5HwlsqpkCfvceEkYa2yjZcreiN5jNfIrzHIMD+r1kqNlEuDDFI9a836PaxI TrzgRQTWaIF1PNpAqM5AIxSJlX8mbk24gnFFNTTM1gl7gJELohUUFXzkKe+sk6pV kaANlgtYRqY/RkdpZthJ5IxYU/LxXkseEyAwEjAmaTCjcuJZ1sghfhbFLQyVXKW5 PSoWvGhz64tw+Gp8XZyheryVVQmThjDJX1Q/vt5foCksfrR+q7bToRGnh2/0nCGB rIuWRhG5lZSm1YJ8QPS4aBTQT7hBDzVGRycSfikoVQ== -----END CERTIFICATE-----Generated at Tue May 19 21:16:38 2026 by rpki-client