$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: //4BuVZdYVLsI4Ur/Xa3w7v6V7EPmA+Gc87iCxRsmOU= Subject key identifier: B8:1E:34:11:E5:46:38:29:15:30:27:C4:8F:0F:BA:45:7D:CC:38:F0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BC3 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B00 Signing time: Sat 20 Jun 2026 02:50:11 +0000 Manifest this update: Sat 20 Jun 2026 02:50:11 +0000 Manifest next update: Sat 27 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: omBOo8M3mH3V+3H0jcOM9C40lB8O77zhHeiCK6QwTqY=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19395 (0x4bc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 20 02:50:11 2026 GMT Not After : Jun 27 02:50:11 2026 GMT Subject: CN=6a35ffe3-54fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8e:60:d2:55:01:1e:a9:89:dc:ec:07:22:f5: 0e:f7:29:fb:db:f3:6d:ca:25:85:4d:4b:f6:01:6c: 4d:92:eb:28:0f:3a:79:5e:21:64:2c:d8:ab:6b:6b: 24:28:17:89:e3:04:d0:e0:f0:76:f7:e5:c7:a5:2e: 22:0e:d8:0b:36:57:63:fc:ac:5d:63:36:14:cb:69: 59:de:bb:2d:df:f2:0e:40:bf:1a:fc:36:d3:04:3e: fc:d0:57:1c:3c:3e:67:53:46:5f:d1:9e:73:5d:d4: f1:80:c2:8d:17:c5:21:16:e3:5d:02:ca:3f:66:93: 50:2d:98:7c:61:5d:7b:0b:b7:7f:24:f9:93:7b:ea: 4d:bc:26:d3:a8:da:0b:2f:31:a6:70:e9:61:3f:a1: db:88:a9:3d:96:5a:9b:02:df:9d:ed:7d:fc:c1:7d: f7:9d:cb:22:6b:58:d3:67:16:5e:40:34:e1:e8:34: da:b4:a0:6f:a7:8d:f9:98:7b:07:f6:b7:89:ae:de: 7d:14:f7:c9:99:d6:2c:a8:5a:fd:a3:23:56:f3:a7: 11:82:07:4b:12:b5:1d:97:29:ae:83:cc:06:ec:46: 25:f7:45:77:cf:ea:75:1c:de:07:ae:82:0e:42:c1: 08:50:f0:b7:10:35:67:c5:7e:55:ed:0c:3e:0b:6f: 5f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1E:34:11:E5:46:38:29:15:30:27:C4:8F:0F:BA:45:7D:CC:38:F0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ef:8c:b2:2f:09:b2:03:e3:7f:e5:44:a7:e6:ff:1b:36:7b: 53:d3:ea:fe:3a:cf:b3:18:52:51:8b:c5:85:8a:b7:e2:4a:e1: 3a:cc:cd:a5:39:7e:a5:4a:1c:3f:d0:9a:27:d6:8b:2d:a4:ff: a6:9b:c6:1d:87:b3:68:6a:a3:b5:39:b9:41:6d:c9:bd:c5:df: be:75:e2:91:21:b1:75:84:ee:fd:d9:70:b3:e8:30:3c:21:7f: 56:26:5b:85:fa:46:73:3c:61:b9:93:ac:a4:ec:ad:04:a8:c2: 98:42:db:23:85:b7:e9:a5:70:e3:93:36:1b:af:f2:e1:7c:b8: 0d:88:06:ce:fa:b8:a7:fe:c5:36:7d:c5:a3:98:16:c9:f2:c6: a7:0a:b9:b3:ca:70:83:f0:c9:c6:30:07:9a:76:98:9d:82:cf: 08:8f:99:63:11:2d:f1:b5:11:75:f6:34:53:40:80:28:aa:d8: 30:97:18:c8:db:8f:40:ea:18:6e:6f:8d:a1:27:cb:0e:8c:4c: de:5d:87:e6:3e:8d:ca:55:bf:74:0d:a3:d2:e3:4c:3d:b1:14: d8:1b:82:58:57:0d:55:44:28:9c:82:7c:a9:b7:98:21:6e:9b: 3d:c7:d4:12:a2:47:36:75:b0:be:a4:d7:ed:46:bf:79:71:c6: dd:78:77:0f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjIwMDI1MDExWhcNMjYwNjI3MDI1MDExWjAYMRYwFAYD VQQDEw02YTM1ZmZlMy01NGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y5g0lUBHqmJ3OwHIvUO9yn72/NtyiWFTUv2AWxNkusoDzp5XiFkLNira2sk KBeJ4wTQ4PB29+XHpS4iDtgLNldj/KxdYzYUy2lZ3rst3/IOQL8a/DbTBD780Fcc PD5nU0Zf0Z5zXdTxgMKNF8UhFuNdAso/ZpNQLZh8YV17C7d/JPmTe+pNvCbTqNoL LzGmcOlhP6HbiKk9llqbAt+d7X38wX33ncsia1jTZxZeQDTh6DTatKBvp435mHsH 9reJrt59FPfJmdYsqFr9oyNW86cRggdLErUdlymug8wG7EYl90V3z+p1HN4HroIO QsEIUPC3EDVnxX5V7Qw+C29fvwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLgeNBHl RjgpFTAnxI8PukV9zDjwMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAAe+Msi8JsgPjf+VEp+b/GzZ7U9Pq/jrPsxhSUYvFhYq3 4krhOszNpTl+pUocP9CaJ9aLLaT/ppvGHYezaGqjtTm5QW3JvcXfvnXikSGxdYTu /dlws+gwPCF/ViZbhfpGczxhuZOspOytBKjCmELbI4W36aVw45M2G6/y4Xy4DYgG zvq4p/7FNn3Fo5gWyfLGpwq5s8pwg/DJxjAHmnaYnYLPCI+ZYxEt8bURdfY0U0CA KKrYMJcYyNuPQOoYbm+NoSfLDoxM3l2H5j6NylW/dA2j0uNMPbEU2BuCWFcNVUQo nIJ8qbeYIW6bPcfUEqJHNnWwvqTX7Ua/eXHG3Xh3Dw== -----END CERTIFICATE-----Generated at Sat Jun 20 11:24:29 2026 by rpki-client