$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 23BdiTz69uHcYzza4Wpjtr3M9e5g0g+CXzQAn8McBxs= Subject key identifier: 1D:D8:A5:92:E1:1B:2B:88:1C:7B:C6:A1:1B:0B:E1:46:0C:2B:5B:77 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B0A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A4F Signing time: Sat 25 Apr 2026 14:50:10 +0000 Manifest this update: Sat 25 Apr 2026 14:50:10 +0000 Manifest next update: Sat 02 May 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 6WrFXtCIClF4iu1FJsNhhNozBbeqrbCpHvRkV/NpL/k=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 12: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19210 (0x4b0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 25 14:50:10 2026 GMT Not After : May 2 14:50:10 2026 GMT Subject: CN=69ecd4a2-c430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6f:d2:ea:fb:7f:64:08:36:bc:cf:50:70:bc: 90:fc:b5:d1:d3:3e:50:31:db:6f:15:af:5b:a4:4d: 4f:db:c9:53:e4:2e:b2:65:8d:d8:78:5c:ea:bf:80: 78:2e:73:03:c3:55:cd:22:13:af:2b:b2:b6:f0:75: 0f:80:8d:e3:c0:c2:5c:4f:a5:34:c3:4a:58:a1:8c: b3:4d:e7:66:ee:4b:da:9a:eb:4d:c7:92:27:7a:f7: ef:bc:db:7a:ab:93:73:dc:3f:63:95:9f:a0:78:dc: f2:58:58:1a:7b:7b:32:ab:b5:b2:a7:eb:51:cc:2a: 97:c3:0c:0d:d1:7e:01:1a:ae:63:23:13:4e:cc:25: 3a:6c:33:8a:ea:78:ea:54:0d:f2:41:a2:64:0a:68: ab:34:d3:5e:4f:1c:95:e8:34:62:46:e5:35:21:d6: 00:e6:93:6a:34:1d:86:e2:a2:4b:22:b7:5d:45:30: 1b:83:b8:18:f9:6d:fe:40:04:a5:4e:01:88:33:a3: cc:38:cd:ef:17:5f:6a:59:45:49:42:f6:00:0d:ff: 66:1b:e2:9f:6d:74:b3:73:47:13:49:2c:b9:1a:cf: ab:fe:72:da:76:f0:a2:29:09:b6:dc:90:23:21:b3: c9:6a:34:80:d6:c1:c0:44:7b:1b:1d:7e:b4:a4:11: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D8:A5:92:E1:1B:2B:88:1C:7B:C6:A1:1B:0B:E1:46:0C:2B:5B:77 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:01:16:cb:8b:fc:48:b1:ca:cd:65:ea:14:88:00:11:c3:08: 67:14:c0:f0:e4:d7:3b:93:eb:44:72:c0:28:b6:5b:4f:74:3d: 47:5c:55:a5:63:1e:dd:27:d5:28:5a:5b:05:5d:57:8f:40:22: d6:57:95:8f:b3:fd:23:58:40:83:25:4c:fe:f8:5d:6d:fd:5b: 17:09:ee:81:4b:6e:43:19:e5:02:2c:60:40:82:3f:da:36:50: f7:e6:5a:7c:90:80:4c:55:10:83:7a:9c:66:e6:56:fd:d2:35: d9:44:a8:b6:2c:26:9a:1b:05:25:c8:02:f1:d7:75:7e:e7:07: 2c:72:75:ed:62:77:14:4d:86:de:3d:7e:9f:4a:9f:0d:62:c4: 65:26:38:e6:80:8e:06:dc:2c:32:ac:93:b2:7e:6e:3b:3a:03: e2:2f:be:f5:32:e6:97:e9:c8:0d:8e:75:1d:8d:4a:ee:e7:29: 18:94:48:79:19:cf:19:3e:fe:24:b3:3e:0f:a6:9b:ab:8c:e4: 1c:69:fa:77:81:1a:4d:76:3e:3d:11:1e:18:43:5e:33:32:03: 4c:96:d8:88:c9:8f:fe:c4:20:f8:90:1b:ad:03:4c:e9:a3:34: 9a:49:15:6f:4d:c8:cf:e4:27:9f:01:25:25:0c:35:9b:56:14: 05:6a:fc:dd -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI1MTQ1MDEwWhcNMjYwNTAyMTQ1MDEwWjAYMRYwFAYD VQQDEw02OWVjZDRhMi1jNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W/S6vt/ZAg2vM9QcLyQ/LXR0z5QMdtvFa9bpE1P28lT5C6yZY3YeFzqv4B4 LnMDw1XNIhOvK7K28HUPgI3jwMJcT6U0w0pYoYyzTedm7kvamutNx5InevfvvNt6 q5Nz3D9jlZ+geNzyWFgae3syq7Wyp+tRzCqXwwwN0X4BGq5jIxNOzCU6bDOK6njq VA3yQaJkCmirNNNeTxyV6DRiRuU1IdYA5pNqNB2G4qJLIrddRTAbg7gY+W3+QASl TgGIM6PMOM3vF19qWUVJQvYADf9mG+KfbXSzc0cTSSy5Gs+r/nLadvCiKQm23JAj IbPJajSA1sHARHsbHX60pBF5ZwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFB3YpZLh GyuIHHvGoRsL4UYMK1t3MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEArAEWy4v8SLHKzWXqFIgAEcMIZxTA8OTXO5PrRHLAKLZb T3Q9R1xVpWMe3SfVKFpbBV1Xj0Ai1leVj7P9I1hAgyVM/vhdbf1bFwnugUtuQxnl AixgQII/2jZQ9+ZafJCATFUQg3qcZuZW/dI12USotiwmmhsFJcgC8dd1fucHLHJ1 7WJ3FE2G3j1+n0qfDWLEZSY45oCOBtwsMqyTsn5uOzoD4i++9TLml+nIDY51HY1K 7ucpGJRIeRnPGT7+JLM+D6abq4zkHGn6d4EaTXY+PREeGENeMzIDTJbYiMmP/sQg +JAbrQNM6aM0mkkVb03Iz+QnnwElJQw1m1YUBWr83Q== -----END CERTIFICATE-----Generated at Sat Apr 25 19:49:36 2026 by rpki-client