$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: JadVkYAh3SthtWZLT77GBGB0D9O4WLVFARBq4VMpFoQ= Subject key identifier: C8:59:D8:5C:23:63:7A:A8:C9:A2:47:4C:5B:8A:64:A6:16:74:F1:AD Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B7C Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4ABE Signing time: Sat 30 May 2026 14:50:11 +0000 Manifest this update: Sat 30 May 2026 14:50:11 +0000 Manifest next update: Sat 06 Jun 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: UTu1L5mxfOffExMG3Mju4lfEcKTGddmrFOa4cQPzTsA=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jun 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19324 (0x4b7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 30 14:50:11 2026 GMT Not After : Jun 6 14:50:11 2026 GMT Subject: CN=6a1af923-19f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b1:32:63:ae:d4:b0:f3:41:bd:dc:8a:88:83: ca:24:19:88:03:97:c0:ff:1d:7b:32:28:30:3f:83: ab:1d:1d:a0:b4:21:bb:38:60:d9:6b:a0:73:72:0c: 47:2f:a7:a2:d1:6d:ab:df:fb:db:5a:47:9e:50:a2: 8f:d6:94:9d:f6:42:84:65:2e:7f:bf:d7:15:95:03: a6:62:a3:84:c5:19:96:e7:47:af:35:1b:76:e4:dd: 3a:df:0a:3c:02:9c:4a:67:e0:c9:d7:17:0a:9c:cc: 6c:67:d2:9b:b9:82:27:8c:3c:cf:b1:2f:f2:84:80: 70:81:7e:66:e6:97:82:32:03:09:c8:f7:70:e6:d1: ce:b4:0d:8c:cb:f4:37:b0:e1:34:7a:bc:76:48:ee: 92:15:41:48:b3:7c:d5:59:03:d4:7b:6b:15:52:85: c5:8c:17:08:09:02:db:26:0d:85:6d:32:f8:33:40: ae:f5:c4:b5:ff:c2:69:de:85:6a:39:f0:3e:bd:4f: 7c:6b:83:d8:8d:01:db:b2:c9:06:2d:b7:e5:d4:98: 30:6e:48:8f:a1:3f:25:9a:a4:c9:86:df:ca:ee:1c: 0c:de:b0:16:31:e1:c3:76:d8:fa:da:c0:73:9c:54: af:3e:3b:94:fa:e5:a9:83:ea:91:45:c9:9a:bc:b4: be:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:59:D8:5C:23:63:7A:A8:C9:A2:47:4C:5B:8A:64:A6:16:74:F1:AD X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:e1:80:93:06:1e:9c:19:c9:83:54:1a:fd:89:0d:15:8e:d7: c8:60:5a:77:70:67:75:ab:98:4e:cf:a5:ee:9a:99:85:d2:e5: c2:db:e7:3c:68:61:81:fa:77:21:f9:03:72:2d:4e:3d:e3:19: 71:e7:6f:d0:58:7e:1b:52:c2:fe:58:53:4c:bc:55:1f:ff:36: 49:f2:f4:47:af:f8:58:97:d8:56:b0:de:80:5f:ed:20:04:eb: cd:40:f0:40:21:33:62:2d:1e:3e:dd:31:5f:c9:d6:05:c7:71: 22:6e:68:58:e0:40:1d:1f:aa:f4:f6:d0:38:b6:ca:10:06:c5: 5f:49:38:0c:1d:2e:22:78:c2:6e:a3:14:68:84:3f:24:86:49: 01:bb:03:a8:1d:cc:d2:61:bd:c1:2f:a8:aa:b7:9e:d8:98:c0: 4f:a2:25:ec:65:e9:e9:79:81:77:45:3f:90:6f:26:30:e1:cb: 22:0e:af:ed:8b:bc:c1:58:9c:13:7d:ec:69:a6:ab:e5:ef:0b: 6c:fe:29:9d:da:60:b3:bc:c2:3e:50:3e:f6:19:43:84:85:54: 2a:5b:54:e9:97:f6:7f:18:6c:38:ca:6f:0a:28:b4:0b:11:68: 9f:2e:fe:8b:ce:05:27:02:02:7d:aa:94:43:74:fe:f1:02:59: d1:a3:0d:72 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTMwMTQ1MDExWhcNMjYwNjA2MTQ1MDExWjAYMRYwFAYD VQQDEw02YTFhZjkyMy0xOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07EyY67UsPNBvdyKiIPKJBmIA5fA/x17MigwP4OrHR2gtCG7OGDZa6BzcgxH L6ei0W2r3/vbWkeeUKKP1pSd9kKEZS5/v9cVlQOmYqOExRmW50evNRt25N063wo8 ApxKZ+DJ1xcKnMxsZ9KbuYInjDzPsS/yhIBwgX5m5peCMgMJyPdw5tHOtA2My/Q3 sOE0erx2SO6SFUFIs3zVWQPUe2sVUoXFjBcICQLbJg2FbTL4M0Cu9cS1/8Jp3oVq OfA+vU98a4PYjQHbsskGLbfl1JgwbkiPoT8lmqTJht/K7hwM3rAWMeHDdtj62sBz nFSvPjuU+uWpg+qRRcmavLS+vwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMhZ2Fwj Y3qoyaJHTFuKZKYWdPGtMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAdeGAkwYenBnJg1Qa/YkNFY7XyGBad3BndauYTs+l7pqZ hdLlwtvnPGhhgfp3IfkDci1OPeMZcedv0Fh+G1LC/lhTTLxVH/82SfL0R6/4WJfY VrDegF/tIATrzUDwQCEzYi0ePt0xX8nWBcdxIm5oWOBAHR+q9PbQOLbKEAbFX0k4 DB0uInjCbqMUaIQ/JIZJAbsDqB3M0mG9wS+oqree2JjAT6Il7GXp6XmBd0U/kG8m MOHLIg6v7Yu8wVicE33saaar5e8LbP4pndpgs7zCPlA+9hlDhIVUKltU6Zf2fxhs OMpvCii0CxFony7+i84FJwICfaqUQ3T+8QJZ0aMNcg== -----END CERTIFICATE-----Generated at Sat May 30 17:51:36 2026 by rpki-client