$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 6EDm43YDI8E+7nofuk+ZUNlR2EO282LcvIN+En/0PsU= Subject key identifier: CD:1F:8D:6F:21:AA:49:82:84:0B:E0:7E:8D:71:24:47:8F:9C:81:AE Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B17 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A5B Signing time: Tue 28 Apr 2026 15:12:07 +0000 Manifest this update: Tue 28 Apr 2026 15:12:07 +0000 Manifest next update: Tue 05 May 2026 15:12:07 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Z2NiwTM0LtNeg1g070bKoU3MdP9koxB9f16Ch/jM0QU=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 15:12:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19223 (0x4b17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 28 15:12:07 2026 GMT Not After : May 5 15:12:07 2026 GMT Subject: CN=69f0ce47-c90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:71:8b:c9:ef:ff:60:fa:03:ee:4f:f7:81:7b: 56:7d:ff:69:a9:a4:8d:2e:37:93:1c:eb:5f:d8:37: cc:09:d8:22:8c:6b:71:48:c4:3b:87:a6:1f:b8:4c: 4b:cc:f5:1a:60:12:29:2a:08:fe:8a:2b:f0:14:f0: 7f:0f:0f:59:90:3b:d2:5a:90:3e:4d:81:30:d9:0f: 80:4d:a2:d7:23:e5:d2:f8:23:8c:1e:f3:fc:33:7c: 42:16:49:6a:a1:9c:09:fa:15:31:72:d6:5c:c0:2b: 21:c4:6e:4c:64:a4:b5:e9:74:4e:03:98:42:46:2e: 24:7f:02:9a:8f:39:86:4f:d4:03:37:29:0d:32:5f: 51:fa:d5:59:46:d4:6b:10:64:3c:35:61:68:ae:6f: 1e:09:52:31:fa:46:b9:0f:2f:99:ad:52:fb:d2:0e: ca:b3:53:fc:64:a4:47:1a:ab:f7:f7:21:70:cb:31: 60:64:98:20:1c:a9:04:53:f7:1a:60:85:c9:26:54: 52:47:40:8c:cf:18:7b:11:7c:5b:d9:90:1f:cf:15: 14:35:eb:8f:10:91:6f:24:97:73:70:a4:65:a7:b0: 7c:d3:b0:8b:c2:3b:36:3d:e1:07:e9:33:f7:c4:ff: 5e:b7:a4:21:1c:41:37:e3:ad:e5:39:81:ed:32:a7: 1d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:1F:8D:6F:21:AA:49:82:84:0B:E0:7E:8D:71:24:47:8F:9C:81:AE X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:96:65:02:20:88:7b:53:8a:ca:93:f7:c8:53:68:d0:e8:ca: 20:f2:3c:e7:eb:50:97:28:3b:d5:30:7a:b3:d5:68:a7:12:bc: f4:8a:e8:9b:c5:18:90:4f:16:68:5a:a7:87:39:9c:cd:8a:09: 10:59:f9:9f:9b:da:a6:51:44:68:2c:bd:c3:c2:01:13:0d:1e: 43:ac:f4:16:df:b7:65:0d:2e:3a:9d:f6:d4:ba:ed:50:5b:7e: 56:de:e6:be:e8:52:d6:98:73:c7:b6:ca:4d:34:4f:4e:20:1f: 32:6c:91:a8:34:69:a4:0e:63:78:65:e8:f3:f7:63:7b:bb:79: 41:99:eb:85:a8:10:6b:b1:44:f0:1b:22:7b:97:2c:e6:85:28: c0:24:6f:fb:f3:e7:58:e7:20:13:a4:b9:83:29:46:a6:1e:bf: 4a:40:c8:21:39:4b:d9:81:e8:97:e1:bc:0a:d2:fb:8b:ad:1b: 7a:06:de:4d:f5:0b:f0:61:38:16:db:40:b4:68:30:13:83:7d: 07:fb:b1:53:35:d0:bd:fa:ce:ea:3a:33:1d:71:cd:50:cd:c4: 6c:96:61:58:5c:cb:3e:a8:fc:30:b4:49:47:e4:61:0a:c3:5c: eb:e1:de:a5:59:72:7b:d2:2c:87:a0:37:6c:b9:aa:ed:c6:d5: 6c:5d:2c:c8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI4MTUxMjA3WhcNMjYwNTA1MTUxMjA3WjAYMRYwFAYD VQQDEw02OWYwY2U0Ny1jOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHGLye//YPoD7k/3gXtWff9pqaSNLjeTHOtf2DfMCdgijGtxSMQ7h6YfuExL zPUaYBIpKgj+iivwFPB/Dw9ZkDvSWpA+TYEw2Q+ATaLXI+XS+COMHvP8M3xCFklq oZwJ+hUxctZcwCshxG5MZKS16XROA5hCRi4kfwKajzmGT9QDNykNMl9R+tVZRtRr EGQ8NWForm8eCVIx+ka5Dy+ZrVL70g7Ks1P8ZKRHGqv39yFwyzFgZJggHKkEU/ca YIXJJlRSR0CMzxh7EXxb2ZAfzxUUNeuPEJFvJJdzcKRlp7B807CLwjs2PeEH6TP3 xP9et6QhHEE3463lOYHtMqcdJwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFM0fjW8h qkmChAvgfo1xJEePnIGuMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAcpZlAiCIe1OKypP3yFNo0OjKIPI85+tQlyg71TB6s9Vo pxK89Irom8UYkE8WaFqnhzmczYoJEFn5n5vaplFEaCy9w8IBEw0eQ6z0Ft+3ZQ0u Op321LrtUFt+Vt7mvuhS1phzx7bKTTRPTiAfMmyRqDRppA5jeGXo8/dje7t5QZnr hagQa7FE8Bsie5cs5oUowCRv+/PnWOcgE6S5gylGph6/SkDIITlL2YHol+G8CtL7 i60begbeTfUL8GE4FttAtGgwE4N9B/uxUzXQvfrO6jozHXHNUM3EbJZhWFzLPqj8 MLRJR+RhCsNc6+HepVlye9Ish6A3bLmq7cbVbF0syA== -----END CERTIFICATE-----Generated at Tue Apr 28 17:47:25 2026 by rpki-client