$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Dw2QeUSl6DuBb2OGlpOmyvKOzbFgdEVHUVLNrWAWIbc= Subject key identifier: 62:57:5B:93:07:5F:73:5D:7F:EA:69:8D:A2:88:DC:BB:C1:E7:C7:2B Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4ADE Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A24 Signing time: Sat 11 Apr 2026 14:50:11 +0000 Manifest this update: Sat 11 Apr 2026 14:50:11 +0000 Manifest next update: Sat 18 Apr 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: nyFg9yhV7mh+yOwKqqv7XEshOCyIRKmIOTrQafkYOLM=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19166 (0x4ade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 11 14:50:11 2026 GMT Not After : Apr 18 14:50:11 2026 GMT Subject: CN=69da5fa3-f44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a8:65:3d:ef:e8:3f:2e:a6:a4:e4:1f:30:7d: 82:1b:6a:df:44:1c:b7:ee:63:d8:dc:85:4c:64:b1: e5:89:76:0a:64:3c:ff:1e:ff:e1:4b:31:85:93:a1: 81:97:07:42:b6:c3:d2:89:ea:bc:9d:7b:32:6e:f0: 5e:65:20:06:f3:db:65:dd:82:7a:d2:36:71:b9:4c: e9:90:bb:90:3e:fd:de:5d:f1:96:03:f2:c9:61:50: f7:01:96:1f:29:d6:ca:5a:f1:48:ae:c2:9a:65:b3: 1b:82:fe:dc:03:b6:ba:54:2d:60:e2:1c:55:4f:07: c8:9a:78:3d:9c:f0:67:21:aa:f1:86:8e:9c:c5:92: 11:0d:e4:37:48:1c:80:c6:49:7a:37:a1:c1:c9:a7: d2:75:0f:44:41:23:85:e7:7c:85:ed:ce:6a:97:79: 38:b0:5e:23:a4:bc:f1:35:af:49:31:65:fb:6b:3a: a0:c4:ad:24:6f:26:f6:c7:37:6b:a6:21:c3:ce:95: 88:1e:a7:ca:99:06:92:ae:95:a7:a7:df:ab:6b:d9: 50:c8:d9:a9:96:a9:76:d1:72:f5:a5:e0:9f:b3:ba: 97:80:16:87:a5:a7:67:27:5e:66:f5:7c:84:66:a6: e9:f0:60:e8:cb:b5:53:e6:3a:12:01:3c:a7:ad:2a: 8c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:57:5B:93:07:5F:73:5D:7F:EA:69:8D:A2:88:DC:BB:C1:E7:C7:2B X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b0:7e:98:a0:93:19:86:30:94:b0:b7:6f:dd:41:eb:bc:1d: 98:4f:5e:cd:ba:b8:de:15:46:c6:70:33:44:c7:53:c4:e9:f0: bc:53:93:24:f3:ee:f6:95:f1:fd:3e:43:2b:6e:b7:8b:ea:d0: 05:ae:f5:8f:47:8d:1a:22:af:ef:24:4a:b6:b6:6b:64:68:92: 4c:ae:77:82:87:6f:9f:d2:30:48:93:01:95:ef:79:14:4f:7a: f5:63:6e:5a:74:f8:51:5e:ef:54:a3:af:f1:14:18:a9:8c:da: 5b:54:ec:7f:9c:10:dc:86:58:e3:13:c5:a1:f8:a1:19:59:b8: 81:c5:a8:bf:91:cd:93:d9:ec:a7:d8:b9:69:51:bd:23:18:63: 57:2a:52:f3:8e:21:57:aa:ce:9b:df:18:9e:29:08:87:60:42: c6:93:27:1b:bf:83:52:6b:b5:43:17:90:5e:89:34:57:07:6c: 80:a2:b8:d7:69:4b:c6:ef:0f:d7:94:fb:df:58:9d:29:4c:96: 6b:f1:53:18:c6:a8:c5:88:64:4f:a5:a4:8f:6b:5a:db:25:10: 42:a6:5a:36:01:df:d1:43:60:49:89:7e:fb:d4:6a:6e:9b:08: 01:00:f0:a9:d5:2f:35:c2:3b:d0:05:ac:11:76:a8:18:99:7e: c5:02:85:2e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDExMTQ1MDExWhcNMjYwNDE4MTQ1MDExWjAYMRYwFAYD VQQDEw02OWRhNWZhMy1mNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjKhlPe/oPy6mpOQfMH2CG2rfRBy37mPY3IVMZLHliXYKZDz/Hv/hSzGFk6GB lwdCtsPSieq8nXsybvBeZSAG89tl3YJ60jZxuUzpkLuQPv3eXfGWA/LJYVD3AZYf KdbKWvFIrsKaZbMbgv7cA7a6VC1g4hxVTwfImng9nPBnIarxho6cxZIRDeQ3SByA xkl6N6HByafSdQ9EQSOF53yF7c5ql3k4sF4jpLzxNa9JMWX7azqgxK0kbyb2xzdr piHDzpWIHqfKmQaSrpWnp9+ra9lQyNmplql20XL1peCfs7qXgBaHpadnJ15m9XyE Zqbp8GDoy7VT5joSATynrSqMnQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGJXW5MH X3Ndf+ppjaKI3LvB58crMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAd7B+mKCTGYYwlLC3b91B67wdmE9ezbq43hVGxnAzRMdT xOnwvFOTJPPu9pXx/T5DK263i+rQBa71j0eNGiKv7yRKtrZrZGiSTK53godvn9Iw SJMBle95FE969WNuWnT4UV7vVKOv8RQYqYzaW1Tsf5wQ3IZY4xPFofihGVm4gcWo v5HNk9nsp9i5aVG9IxhjVypS844hV6rOm98YnikIh2BCxpMnG7+DUmu1QxeQXok0 VwdsgKK412lLxu8P15T731idKUyWa/FTGMaoxYhkT6Wkj2ta2yUQQqZaNgHf0UNg SYl++9RqbpsIAQDwqdUvNcI70AWsEXaoGJl+xQKFLg== -----END CERTIFICATE-----Generated at Sat Apr 11 23:47:09 2026 by rpki-client