$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: VdMpy90gHzPD15D85r0HHSERvJmR2hzwffdheIybpvs= Subject key identifier: 8B:0E:9A:76:D4:57:9A:CE:FD:85:41:62:90:E5:38:57:FE:A0:E8:E0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B63 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA6 Signing time: Sat 23 May 2026 02:50:11 +0000 Manifest this update: Sat 23 May 2026 02:50:10 +0000 Manifest next update: Sat 30 May 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: GmdZID71fgEFcdkJq8sTaI/ZPnbLMUg/TlB43dwdVi8=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19299 (0x4b63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 23 02:50:10 2026 GMT Not After : May 30 02:50:10 2026 GMT Subject: CN=6a1115e3-89a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:52:34:7e:80:da:fd:43:bc:ee:fa:3f:5b:a3: e3:e2:a8:2e:09:b2:e0:06:00:65:42:8f:ef:85:0e: cb:88:25:d8:a7:ff:54:06:29:71:c4:d4:04:ef:d7: 87:d4:04:ef:10:74:22:df:2d:72:3a:cf:bf:77:fe: 51:d2:66:e4:e5:8f:1a:47:21:b3:3f:0a:60:4e:5e: ed:a0:70:94:29:bd:7e:4b:9b:b6:17:38:29:81:a4: ce:5c:7f:03:1e:3d:da:4f:4a:af:a7:39:7f:19:7c: b9:f4:79:3f:55:3a:6b:09:17:22:ba:62:06:cd:58: 81:fd:0f:6e:35:d7:10:22:16:3a:aa:b9:64:a9:e3: d9:a3:cf:64:e5:f5:92:27:78:8a:14:5f:74:3c:1b: 6a:94:46:88:54:dd:a4:e0:8d:ed:4e:c4:e7:cc:64: ae:94:4f:4e:93:bb:f8:4a:79:d7:5f:b7:44:e5:b3: ad:12:63:85:6d:b2:87:21:22:22:6f:1f:2b:6f:a4: fc:50:5a:92:36:5e:da:32:88:50:0c:2e:bd:0b:cb: 81:a3:b7:f6:13:c1:c2:2f:07:19:72:ce:e1:3b:76: a1:bd:42:3b:88:57:05:9f:08:a8:da:72:2a:b9:c2: e4:03:64:e9:b7:54:39:e1:24:4d:be:5a:04:0f:d5: ed:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0E:9A:76:D4:57:9A:CE:FD:85:41:62:90:E5:38:57:FE:A0:E8:E0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e4:47:3a:6c:5b:21:f5:b7:a7:39:a5:4d:40:d7:c6:be:cd: 06:83:97:d6:dc:67:be:90:f0:84:c9:0d:af:f9:ee:67:a4:3a: 6c:86:0b:ed:2a:37:59:fe:f9:cf:cb:b3:7d:b1:77:77:0f:4d: d1:d3:61:75:42:d7:bc:27:a5:41:f6:05:5c:27:4a:e0:d9:11: b1:9b:b9:3f:43:d5:79:e0:01:6a:41:e4:c1:11:2a:e6:d7:86: 0d:25:9f:e4:5e:ac:9d:06:7f:e6:57:24:93:14:5c:a3:3e:2a: 96:ca:2a:26:49:9b:12:0d:b0:1a:3f:ae:f5:d7:04:cf:9e:77: fd:ef:f9:ac:c1:c3:b3:a6:ad:45:00:a8:13:b7:77:c0:15:9c: 08:e6:11:07:5f:99:b7:98:ae:4e:bd:54:e9:4e:8e:d3:e9:a2: ad:5e:02:f6:23:aa:d1:a4:fa:fc:fb:78:e4:38:dc:67:38:9a: 6b:57:2a:d7:01:79:94:1b:24:cc:2e:5a:34:6a:4b:99:bf:87: e7:fa:10:7c:07:42:e5:96:cf:fb:24:85:5c:97:42:61:89:53: 80:c6:09:7a:c9:4f:e0:9a:91:8c:de:70:00:c1:80:08:79:17: ba:72:2f:7e:c6:d4:7b:99:46:7d:67:c4:db:62:5b:47:15:d0: 84:bc:b3:99 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIzMDI1MDEwWhcNMjYwNTMwMDI1MDEwWjAYMRYwFAYD VQQDEw02YTExMTVlMy04OWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FI0foDa/UO87vo/W6Pj4qguCbLgBgBlQo/vhQ7LiCXYp/9UBilxxNQE79eH 1ATvEHQi3y1yOs+/d/5R0mbk5Y8aRyGzPwpgTl7toHCUKb1+S5u2FzgpgaTOXH8D Hj3aT0qvpzl/GXy59Hk/VTprCRciumIGzViB/Q9uNdcQIhY6qrlkqePZo89k5fWS J3iKFF90PBtqlEaIVN2k4I3tTsTnzGSulE9Ok7v4SnnXX7dE5bOtEmOFbbKHISIi bx8rb6T8UFqSNl7aMohQDC69C8uBo7f2E8HCLwcZcs7hO3ahvUI7iFcFnwio2nIq ucLkA2Tpt1Q54SRNvloED9XtnQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIsOmnbU V5rO/YVBYpDlOFf+oOjgMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAKuRHOmxbIfW3pzmlTUDXxr7NBoOX1txnvpDwhMkNr/nu Z6Q6bIYL7So3Wf75z8uzfbF3dw9N0dNhdULXvCelQfYFXCdK4NkRsZu5P0PVeeAB akHkwREq5teGDSWf5F6snQZ/5lckkxRcoz4qlsoqJkmbEg2wGj+u9dcEz553/e/5 rMHDs6atRQCoE7d3wBWcCOYRB1+Zt5iuTr1U6U6O0+mirV4C9iOq0aT6/Pt45Djc Zziaa1cq1wF5lBskzC5aNGpLmb+H5/oQfAdC5ZbP+ySFXJdCYYlTgMYJeslP4JqR jN5wAMGACHkXunIvfsbUe5lGfWfE22JbRxXQhLyzmQ== -----END CERTIFICATE-----Generated at Sat May 23 08:37:23 2026 by rpki-client