$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: mtoj73KLNEnotVfKtgm8wkwKK2Xx7clZuy8ii7RfK3Y= Subject key identifier: 39:17:C6:F7:EA:E5:EA:56:20:28:09:0D:C8:F1:8D:00:F3:44:95:DB Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4BD4 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4B11 Signing time: Thu 25 Jun 2026 14:50:12 +0000 Manifest this update: Thu 25 Jun 2026 14:50:11 +0000 Manifest next update: Thu 02 Jul 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: WAQ2WLjSv4JqdYQnRKWEObNy5fospjnqsxhKv1oPLNc=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Jul 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19412 (0x4bd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 25 14:50:11 2026 GMT Not After : Jul 2 14:50:11 2026 GMT Subject: CN=6a3d4024-f7ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c8:51:04:8e:61:2a:1f:fb:ef:14:0e:b8:64: 74:49:7d:05:04:e7:10:46:5f:e7:00:1a:dd:44:80: 2c:25:64:9a:d8:45:9f:17:39:b1:25:06:6a:4c:be: 6f:0d:af:05:42:78:a8:af:93:a1:09:7c:ca:28:2f: 57:c2:58:85:98:d3:46:ba:06:23:a8:46:bb:b0:ee: b5:2b:31:f3:dc:9b:fa:17:73:76:e5:98:22:cd:a9: 71:bb:80:b2:db:1d:8e:16:f6:f4:3e:e5:6a:ba:19: 80:5e:b4:5b:f9:36:98:51:40:e5:dc:6f:87:8f:72: ab:3d:5c:c8:14:31:51:9d:49:a4:ff:ac:6b:b1:99: 67:1e:2d:cb:47:0d:a8:7a:a7:1d:f1:5b:89:1a:0a: 55:41:6c:7c:86:00:aa:7a:b0:55:0e:b2:cf:18:65: 98:4b:72:ca:71:61:bc:0e:85:d1:3a:1c:d8:d2:d6: 29:b2:89:bb:5c:2c:49:fe:68:f2:e4:3c:25:c7:1a: a4:6b:da:bc:41:15:49:65:df:02:05:25:cb:b6:fc: 9d:af:ab:e4:33:c7:73:0a:74:61:a8:a8:d5:98:42: 6a:2f:25:1c:a6:87:4a:8b:a7:d6:b5:ff:f0:6c:13: 7e:f1:6d:2e:5f:f0:22:34:46:c6:11:91:b3:b0:a1: 4f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:17:C6:F7:EA:E5:EA:56:20:28:09:0D:C8:F1:8D:00:F3:44:95:DB X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:04:b1:7c:ec:df:5a:d8:70:09:11:01:57:4f:f9:bc:80:a5: db:b6:bc:7d:d7:b4:bc:e5:4f:0a:9c:49:43:f2:4f:67:59:3b: 96:26:4a:e3:88:e1:e6:99:f1:4a:4a:1b:b9:d0:f5:55:01:81: b1:68:0a:02:dd:01:75:59:5c:fd:21:ea:b7:16:b8:49:b7:69: 58:53:3c:5d:23:9e:0f:ae:fb:e0:d8:86:ad:a7:f7:17:02:ec: 31:fb:cf:89:e0:e2:e5:70:2c:45:91:99:75:55:a9:d2:c7:48: b2:72:bc:82:98:a1:90:77:6e:41:c1:bc:29:fa:59:92:b3:6c: 41:fd:47:ff:0f:8d:1f:5f:bc:28:f4:2d:82:c7:49:c5:f4:de: b0:2c:bd:43:23:a8:e6:b1:20:17:68:73:96:4a:f2:45:55:aa: 54:20:85:45:8c:c4:81:d3:e2:d6:bc:48:d5:ec:f7:48:7d:59: 75:a5:d9:92:14:0a:1f:7b:13:14:4f:07:14:a2:61:4e:06:c6: 7e:9b:64:82:3e:3a:26:fc:10:90:78:f0:b5:e4:74:00:f0:ec: 6a:d4:eb:b9:70:b2:b7:fd:b4:e6:f3:a6:f6:e7:7e:c2:50:27: b5:db:57:e9:2a:4e:01:01:5a:0d:09:c3:72:66:7a:f6:3e:57: c0:01:fd:cf -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjI1MTQ1MDExWhcNMjYwNzAyMTQ1MDExWjAYMRYwFAYD VQQDEw02YTNkNDAyNC1mN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MhRBI5hKh/77xQOuGR0SX0FBOcQRl/nABrdRIAsJWSa2EWfFzmxJQZqTL5v Da8FQnior5OhCXzKKC9XwliFmNNGugYjqEa7sO61KzHz3Jv6F3N25Zgizalxu4Cy 2x2OFvb0PuVquhmAXrRb+TaYUUDl3G+Hj3KrPVzIFDFRnUmk/6xrsZlnHi3LRw2o eqcd8VuJGgpVQWx8hgCqerBVDrLPGGWYS3LKcWG8DoXROhzY0tYpsom7XCxJ/mjy 5Dwlxxqka9q8QRVJZd8CBSXLtvydr6vkM8dzCnRhqKjVmEJqLyUcpodKi6fWtf/w bBN+8W0uX/AiNEbGEZGzsKFP6QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFDkXxvfq 5epWICgJDcjxjQDzRJXbMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAgwSxfOzfWthwCREBV0/5vICl27a8fde0vOVPCpxJQ/JP Z1k7liZK44jh5pnxSkobudD1VQGBsWgKAt0BdVlc/SHqtxa4SbdpWFM8XSOeD677 4NiGraf3FwLsMfvPieDi5XAsRZGZdVWp0sdIsnK8gpihkHduQcG8KfpZkrNsQf1H /w+NH1+8KPQtgsdJxfTesCy9QyOo5rEgF2hzlkryRVWqVCCFRYzEgdPi1rxI1ez3 SH1ZdaXZkhQKH3sTFE8HFKJhTgbGfptkgj46JvwQkHjwteR0APDsatTruXCyt/20 5vOm9ud+wlAntdtX6SpOAQFaDQnDcmZ69j5XwAH9zw== -----END CERTIFICATE-----Generated at Thu Jun 25 17:16:16 2026 by rpki-client