$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: wk/6f/r9mOgdLVxDz0goXvT2yV0licX+K4T9KChEtpE= Subject key identifier: E5:40:2A:C7:D4:53:13:E1:3E:6C:8F:0D:AD:42:2D:1A:46:EF:DD:FF Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A86 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49CE Signing time: Sun 15 Mar 2026 02:50:11 +0000 Manifest this update: Sun 15 Mar 2026 02:50:10 +0000 Manifest next update: Sun 22 Mar 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 39xvYCMp6xDqzuMudBohRmyMbtAqEurQFsF6N3sdDZw=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Mar 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19078 (0x4a86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 15 02:50:10 2026 GMT Not After : Mar 22 02:50:10 2026 GMT Subject: CN=69b61e63-3d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:97:25:2b:5d:e1:2d:e3:95:20:b5:de:db: 1a:27:44:94:4a:d6:d2:5a:33:cd:a4:a8:88:10:29: 43:c1:88:84:9d:e9:85:10:48:06:b3:f3:7f:14:a0: 9d:0d:aa:c6:ad:af:16:6a:68:13:d0:6f:e4:84:4b: 1d:73:b1:b6:57:55:7f:f1:90:87:df:c3:4d:bb:8e: 75:c6:db:1c:79:8d:e8:36:57:18:bd:88:45:75:5c: 2c:2d:82:6b:cb:b6:75:84:6a:11:8d:03:92:95:b4: 59:e7:a9:83:6b:82:b4:53:8b:68:b5:4c:b8:50:83: 0a:d5:a1:1e:60:4d:28:30:dd:c4:96:b9:31:1b:59: e6:1f:ae:80:c9:60:18:a3:52:9f:eb:88:2b:b6:0e: 92:09:0b:db:a8:11:6e:a9:a9:05:eb:a4:f7:bc:8f: 67:63:d7:9b:8b:38:6e:82:d3:2b:1d:75:63:14:ba: 66:d3:81:0b:88:7f:a2:c2:55:bb:20:2c:a4:47:54: 13:e3:92:25:9c:ec:97:e8:70:f2:a5:d9:8a:be:17: 9b:83:f2:0a:e3:c3:fd:8c:06:8a:a6:a2:de:17:3b: 9e:76:25:ab:0e:43:4c:07:09:6d:9e:91:4d:de:c9: 58:7f:f1:e9:1e:b6:de:1f:a6:bd:69:8c:73:4e:2f: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:40:2A:C7:D4:53:13:E1:3E:6C:8F:0D:AD:42:2D:1A:46:EF:DD:FF X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:db:87:c5:f9:24:5f:b0:e1:bb:f9:5d:2c:70:f4:16:fe:97: 3f:7f:15:80:5e:85:bf:e0:5c:4f:98:42:94:14:2c:a4:8f:8b: 20:7c:39:c0:34:b6:fc:dc:2a:61:a5:c7:fa:a0:2d:d1:86:4b: b7:3c:1e:c3:9d:fe:7e:3e:53:46:44:5c:a7:3e:e7:00:db:ee: b2:fc:7d:cb:e2:30:4b:34:3f:fa:36:47:62:0d:24:e7:9a:96: c2:fc:d5:25:d8:3f:eb:29:ff:62:25:bb:f4:9a:7d:47:05:90: 76:d2:eb:e2:ad:06:2b:48:84:83:68:9c:f7:ba:ec:c6:79:ae: bc:40:96:c1:47:be:8b:a8:a1:c3:1c:a6:97:68:cd:fa:86:24: 01:76:59:5b:85:7b:1e:f0:20:19:13:46:c4:a6:85:3b:38:eb: 4d:17:f0:c7:5a:97:93:47:dd:b7:cb:71:43:ab:ee:9e:ca:2e: a2:20:fe:28:08:0b:e9:4c:15:f0:ef:4f:ca:8f:bb:4b:cc:c7: 86:b0:e9:a0:c4:ef:f6:60:c9:47:f5:84:9e:ca:e3:00:61:8d: cd:90:64:db:69:47:a8:af:99:87:8a:87:27:06:be:49:54:ae: 98:e6:e6:2c:85:3f:60:61:25:fd:b5:b4:ae:40:83:57:5e:fb: 9a:51:e3:dc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzE1MDI1MDEwWhcNMjYwMzIyMDI1MDEwWjAYMRYwFAYD VQQDEw02OWI2MWU2My0zZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu36XJStd4S3jlSC13tsaJ0SUStbSWjPNpKiIEClDwYiEnemFEEgGs/N/FKCd DarGra8WamgT0G/khEsdc7G2V1V/8ZCH38NNu451xtsceY3oNlcYvYhFdVwsLYJr y7Z1hGoRjQOSlbRZ56mDa4K0U4totUy4UIMK1aEeYE0oMN3ElrkxG1nmH66AyWAY o1Kf64grtg6SCQvbqBFuqakF66T3vI9nY9ebizhugtMrHXVjFLpm04ELiH+iwlW7 ICykR1QT45IlnOyX6HDypdmKvhebg/IK48P9jAaKpqLeFzuediWrDkNMBwltnpFN 3slYf/HpHrbeH6a9aYxzTi+MNwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOVAKsfU UxPhPmyPDa1CLRpG793/MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAp9uHxfkkX7Dhu/ldLHD0Fv6XP38VgF6Fv+BcT5hClBQs pI+LIHw5wDS2/NwqYaXH+qAt0YZLtzwew53+fj5TRkRcpz7nANvusvx9y+IwSzQ/ +jZHYg0k55qWwvzVJdg/6yn/YiW79Jp9RwWQdtLr4q0GK0iEg2ic97rsxnmuvECW wUe+i6ihwxyml2jN+oYkAXZZW4V7HvAgGRNGxKaFOzjrTRfwx1qXk0fdt8txQ6vu nsouoiD+KAgL6UwV8O9Pyo+7S8zHhrDpoMTv9mDJR/WEnsrjAGGNzZBk22lHqK+Z h4qHJwa+SVSumObmLIU/YGEl/bW0rkCDV177mlHj3A== -----END CERTIFICATE-----Generated at Sun Mar 15 09:54:37 2026 by rpki-client