$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: tj7EgoHWgjer2LjdpIVHWDctZoM+thEq8+8lqYBpQe8= Subject key identifier: 56:E9:82:B4:40:74:23:42:A6:48:9D:AD:9F:A8:A2:67:4A:EE:62:EB Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B37 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A7A Signing time: Fri 08 May 2026 14:53:06 +0000 Manifest this update: Fri 08 May 2026 14:53:06 +0000 Manifest next update: Fri 15 May 2026 14:53:06 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: YZXePORaBtvOi6XTEE2zETbQ2dxBT+Vmp2uhWpUnNJY=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 May 2026 14:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19255 (0x4b37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 8 14:53:06 2026 GMT Not After : May 15 14:53:06 2026 GMT Subject: CN=69fdf8d2-1e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:72:9f:08:51:9b:4a:20:ea:1d:c7:1f:66:d1: d9:25:9b:f0:68:2d:f7:61:3e:0f:87:cd:6b:76:02: 96:bf:27:61:d0:7f:ed:41:80:51:cc:0e:0f:8d:9d: 39:27:c6:31:ae:53:7f:c5:30:40:a4:fb:14:d7:19: b3:ae:54:14:4e:84:ba:1c:07:d4:b8:99:0d:33:ba: 86:04:be:94:68:d9:4d:2d:34:da:68:de:47:d1:c1: 3c:ab:1a:27:b6:15:7f:0b:19:de:65:1d:27:d4:68: 39:de:b6:07:71:3a:a1:83:08:bd:8f:30:f2:e0:20: a8:c1:95:c4:23:53:94:fb:dc:f7:87:3e:35:1b:ac: c6:b3:a0:6d:2b:86:e8:e2:74:79:81:36:d4:18:c1: 4f:f2:32:0b:ee:d7:af:06:11:a8:24:a0:92:d2:cc: fa:47:0c:12:97:29:6e:0b:d2:c1:4d:8a:71:fa:86: 55:44:c2:69:a4:81:13:8b:4c:8f:b1:33:ea:44:27: 0f:ad:e4:80:40:99:74:f0:db:5a:66:e7:f0:28:b1: 50:ad:d1:d2:50:eb:fa:db:d1:f1:fc:5b:50:1d:9a: 49:29:57:10:c5:37:b7:cc:1f:1b:9e:a7:d3:2c:88: 6e:f9:d6:7d:73:a6:38:80:94:18:85:55:d9:a7:5a: 8f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E9:82:B4:40:74:23:42:A6:48:9D:AD:9F:A8:A2:67:4A:EE:62:EB X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f7:5a:e7:e7:5a:59:0c:b0:7c:47:e8:ad:c5:77:b9:4f:c9: 26:9c:1e:a8:1d:23:e4:f2:6a:a0:53:07:4b:44:b3:86:6f:1e: de:db:8a:a4:3e:08:1e:25:c3:bc:35:c1:4d:45:d5:35:ce:ab: 38:f9:73:c2:3b:c0:6a:41:21:5e:a0:3b:92:2f:80:e0:2b:2f: 2d:55:a2:77:d5:96:12:d5:a3:fa:dc:66:d3:23:a6:18:a0:03: 40:8f:f0:6a:f7:04:ec:f5:b3:2d:22:f9:71:fc:02:0b:85:bc: 9b:ca:92:93:b7:61:ce:ac:55:d1:a2:68:cc:a9:38:1a:79:28: fd:48:73:79:ee:81:96:3b:4a:cd:3d:8b:b5:c2:11:f5:51:10: d5:69:65:dd:e5:5b:8b:34:a9:eb:c7:24:e0:bd:7e:60:af:35: 9f:8f:be:6f:fd:d1:8f:82:3d:9d:c4:c6:79:6e:60:b6:c4:ef: 7f:11:5f:22:b3:b5:2b:9a:26:d9:51:6f:89:fe:63:20:7c:f5: 1c:1c:9f:47:ff:4a:23:c6:5b:df:4c:a8:a6:8a:40:da:d2:be: bd:85:4e:5c:f8:4f:74:f9:ec:14:fb:fa:63:76:4a:9c:dc:eb: 53:94:b3:d4:e5:fe:2e:ac:3e:67:ab:c8:b5:ea:3c:da:26:f1: 23:68:c8:a2 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA4MTQ1MzA2WhcNMjYwNTE1MTQ1MzA2WjAYMRYwFAYD VQQDEw02OWZkZjhkMi0xZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkHKfCFGbSiDqHccfZtHZJZvwaC33YT4Ph81rdgKWvydh0H/tQYBRzA4PjZ05 J8YxrlN/xTBApPsU1xmzrlQUToS6HAfUuJkNM7qGBL6UaNlNLTTaaN5H0cE8qxon thV/CxneZR0n1Gg53rYHcTqhgwi9jzDy4CCowZXEI1OU+9z3hz41G6zGs6BtK4bo 4nR5gTbUGMFP8jIL7tevBhGoJKCS0sz6RwwSlyluC9LBTYpx+oZVRMJppIETi0yP sTPqRCcPreSAQJl08NtaZufwKLFQrdHSUOv629Hx/FtQHZpJKVcQxTe3zB8bnqfT LIhu+dZ9c6Y4gJQYhVXZp1qPKQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFbpgrRA dCNCpkidrZ+oomdK7mLrMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEALPda5+daWQywfEforcV3uU/JJpweqB0j5PJqoFMHS0Sz hm8e3tuKpD4IHiXDvDXBTUXVNc6rOPlzwjvAakEhXqA7ki+A4CsvLVWid9WWEtWj +txm0yOmGKADQI/wavcE7PWzLSL5cfwCC4W8m8qSk7dhzqxV0aJozKk4Gnko/Uhz ee6BljtKzT2LtcIR9VEQ1Wll3eVbizSp68ck4L1+YK81n4++b/3Rj4I9ncTGeW5g tsTvfxFfIrO1K5om2VFvif5jIHz1HByfR/9KI8Zb30yopopA2tK+vYVOXPhPdPns FPv6Y3ZKnNzrU5Sz1OX+Lqw+Z6vIteo82ibxI2jIog== -----END CERTIFICATE-----Generated at Fri May 8 17:56:12 2026 by rpki-client