$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: CG9ovKouDeBmU7LHzHwlRtrj7u7yNPbz3iAs6b1Vbcs= Subject key identifier: C9:0D:E0:61:8C:B4:A0:D3:27:A3:DB:6B:FC:04:4C:EB:6D:5A:AD:54 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AB2 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49F9 Signing time: Sat 28 Mar 2026 14:50:11 +0000 Manifest this update: Sat 28 Mar 2026 14:50:11 +0000 Manifest next update: Sat 04 Apr 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 7x15jlc1CkCoLBbJFEvSJg/WUdwgzaWRleEY5J1Kgyk=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19122 (0x4ab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 28 14:50:11 2026 GMT Not After : Apr 4 14:50:11 2026 GMT Subject: CN=69c7eaa3-cca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:5c:7d:5d:52:24:67:db:fb:61:fb:2e:9e: 9e:5a:20:47:6f:c7:22:e5:20:8a:28:1e:63:95:2d: 7e:c6:bd:1f:07:24:e9:04:df:4e:bb:12:e5:65:af: 52:6a:0c:d1:70:03:e4:56:13:fe:6e:2a:bf:36:b0: a3:06:59:60:76:e3:c1:ba:38:8e:d0:cf:06:89:df: 1c:39:22:28:61:05:4b:6e:45:78:87:2b:9a:83:ed: 00:94:f9:5b:3a:ae:0b:06:4c:03:e7:89:13:34:28: df:38:d8:03:44:15:75:a3:20:0d:0a:6a:6b:02:4d: 8b:27:b2:c8:91:7b:a3:86:ee:66:74:f3:93:74:a8: 68:fd:ae:04:6a:15:3d:37:22:b3:55:43:db:57:3d: 7c:b3:f3:e0:5f:ae:53:d0:e0:c7:af:b5:ac:91:25: a9:17:b1:60:2e:ac:0b:c5:5a:e6:c6:fd:17:32:ef: 40:68:56:fb:77:f6:24:9f:6c:e8:04:c2:f0:e7:e8: 4e:9b:b1:bd:45:87:fc:31:2c:ad:0b:9e:05:35:74: bd:d7:b9:46:af:21:81:97:dd:e2:f7:1c:0f:f3:2b: 1d:16:9f:ba:9e:55:8b:b1:25:81:19:31:34:3d:e8: c7:3e:a5:25:45:95:d5:d2:49:3f:35:c2:2d:0d:a6: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0D:E0:61:8C:B4:A0:D3:27:A3:DB:6B:FC:04:4C:EB:6D:5A:AD:54 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:03:88:c1:f3:49:4c:9e:59:4d:0e:10:6c:d3:49:f1:42:ba: b5:b8:4d:91:7d:db:58:d2:e7:44:98:f6:c0:45:87:11:aa:63: b4:1b:f1:2e:17:ab:0e:9a:31:d9:f4:92:de:b3:54:ae:ff:39: 79:dc:55:94:cd:3d:9f:e6:7a:57:90:13:32:bf:cb:8e:cc:d3: 6b:b1:48:ef:27:2a:06:45:0b:75:12:99:0b:a6:01:74:4e:7b: e6:3c:19:2b:27:b8:7c:4f:da:25:18:db:fc:3e:99:4f:13:48: b4:fd:23:8a:3d:be:ac:65:13:24:32:44:dd:4a:b2:91:47:0d: da:7c:b4:9f:6f:2e:c1:ea:c8:94:8d:9a:f6:46:8e:c4:16:f2: ee:5c:7e:5d:0e:77:f0:05:5f:49:ec:f6:38:86:68:b9:7c:4f: 95:f5:cf:13:05:ef:63:24:bb:5a:e5:b4:3b:ed:b1:61:07:02: b2:d6:b4:fe:16:14:23:8a:a6:a5:40:24:c5:4a:50:77:1d:e3: fb:ed:76:47:aa:67:9d:df:c6:7d:26:8b:4b:e0:5b:6d:63:1e: 79:0b:46:da:ac:f3:bd:68:dd:07:6e:8e:6f:7f:ee:32:ca:7c: d0:1c:c0:7e:2e:3f:5c:49:de:e4:9e:6d:0b:68:ce:f6:b2:9c: 7f:e6:99:85 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzI4MTQ1MDExWhcNMjYwNDA0MTQ1MDExWjAYMRYwFAYD VQQDEw02OWM3ZWFhMy1jY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNNcfV1SJGfb+2H7Lp6eWiBHb8ci5SCKKB5jlS1+xr0fByTpBN9OuxLlZa9S agzRcAPkVhP+biq/NrCjBllgduPBujiO0M8Gid8cOSIoYQVLbkV4hyuag+0AlPlb Oq4LBkwD54kTNCjfONgDRBV1oyANCmprAk2LJ7LIkXujhu5mdPOTdKho/a4EahU9 NyKzVUPbVz18s/PgX65T0ODHr7WskSWpF7FgLqwLxVrmxv0XMu9AaFb7d/Ykn2zo BMLw5+hOm7G9RYf8MSytC54FNXS917lGryGBl93i9xwP8ysdFp+6nlWLsSWBGTE0 PejHPqUlRZXV0kk/NcItDaae/wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMkN4GGM tKDTJ6Pba/wETOttWq1UMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAkQOIwfNJTJ5ZTQ4QbNNJ8UK6tbhNkX3bWNLnRJj2wEWH EapjtBvxLherDpox2fSS3rNUrv85edxVlM09n+Z6V5ATMr/LjszTa7FI7ycqBkUL dRKZC6YBdE575jwZKye4fE/aJRjb/D6ZTxNItP0jij2+rGUTJDJE3UqykUcN2ny0 n28uwerIlI2a9kaOxBby7lx+XQ538AVfSez2OIZouXxPlfXPEwXvYyS7WuW0O+2x YQcCsta0/hYUI4qmpUAkxUpQdx3j++12R6pnnd/GfSaLS+BbbWMeeQtG2qzzvWjd B26Ob3/uMsp80BzAfi4/XEne5J5tC2jO9rKcf+aZhQ== -----END CERTIFICATE-----Generated at Sat Mar 28 23:29:02 2026 by rpki-client