$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: bk6xBqhLf5phnL5nidkzcMg+pTJPu6S/tFjUZ7Q99gY= Subject key identifier: 77:96:A3:B1:5D:72:EA:CB:D4:16:3D:F3:0D:1C:35:F8:53:A9:30:26 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B62 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA5 Signing time: Fri 22 May 2026 14:50:48 +0000 Manifest this update: Fri 22 May 2026 14:50:48 +0000 Manifest next update: Fri 29 May 2026 14:50:48 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: bfeo0VwsOuX2iBNubz38wLXUbch6d4WQqu1JQvVyLcc=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 May 2026 14:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19298 (0x4b62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 22 14:50:48 2026 GMT Not After : May 29 14:50:48 2026 GMT Subject: CN=6a106d48-cd02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:e5:3e:36:0e:53:7f:2b:e6:84:2c:54:20: c5:04:0b:c3:6c:6d:99:60:d1:a1:c5:4c:51:5a:45: 4c:e6:33:aa:62:b9:15:a6:1a:4c:73:31:09:86:96: f1:e3:a2:37:1d:be:d9:b2:6c:39:4b:5d:e0:a4:2c: 4e:b4:79:96:40:58:8b:d4:93:4a:27:a3:12:4d:c7: f7:e0:cf:58:7c:ed:2e:e4:3f:42:64:d5:fc:e1:fb: 16:e2:fc:37:60:58:74:3a:4e:a6:f8:b4:65:2e:2b: f0:35:d9:03:8d:a0:de:47:6b:f8:5a:46:e5:0b:1d: 17:6e:5c:d7:6d:1b:32:70:1e:49:a8:c9:0d:73:49: e6:77:9c:64:ff:20:5d:e7:63:af:2a:ce:89:35:8b: a7:eb:2a:63:dc:01:f6:77:a4:b1:23:40:7a:44:a8: 4e:99:77:bf:04:ef:1c:d6:73:b9:ba:0e:66:96:3b: 05:72:4d:0f:83:f8:2b:e4:d7:fa:00:bf:90:cb:ef: 29:e1:2c:2b:e5:40:90:98:11:95:b1:71:03:95:ef: f6:77:83:15:97:48:55:ce:16:86:13:2a:1a:c2:09: d8:d9:1d:55:e1:a5:af:6b:18:c3:29:93:c2:69:2f: 8b:55:4b:b5:c6:bd:e1:f8:fa:15:e0:15:d1:37:88: 85:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:96:A3:B1:5D:72:EA:CB:D4:16:3D:F3:0D:1C:35:F8:53:A9:30:26 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:18:e0:2c:e4:91:3e:4c:68:0a:6a:b9:e1:03:05:3c:74:e1: 12:c6:f8:05:cd:1d:06:45:48:df:81:9f:c6:d8:6f:d4:84:e5: 0e:75:45:2c:db:36:7d:02:27:cc:09:94:12:41:af:e8:2e:e0: da:ec:7c:19:7d:12:4f:a8:ad:14:f3:68:fa:fd:47:e5:76:86: 17:8e:e9:fe:0c:19:84:44:40:c7:c8:3d:a5:c6:20:cf:ac:81: 05:82:56:38:4f:04:8e:64:f1:8f:65:ac:98:78:12:54:0d:d2: 82:3c:70:7d:98:92:29:41:de:41:87:64:96:2d:f8:e8:b8:9f: 48:a6:bd:12:83:75:31:50:5a:55:2f:57:4f:ab:fb:69:8d:3d: 08:3e:1f:c1:5b:4e:e3:da:0d:cc:c8:7b:19:19:8c:1d:c1:b7: 1c:4c:76:c8:f1:0d:5f:94:68:49:01:49:05:b6:e7:ad:e0:14: ab:87:7e:1a:7a:27:16:56:1b:a4:ef:4b:ce:63:b7:c9:c7:3c: d1:4c:04:66:7d:72:2e:eb:ae:7a:46:31:1f:4e:b1:f8:dd:31: e1:0d:7c:cb:34:fb:9b:aa:e9:7d:e1:5d:2a:2b:17:a9:15:91: 82:e1:b6:e0:91:7e:53:aa:dc:7d:dd:72:a2:9f:54:73:86:09: 9f:95:a9:e0 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIyMTQ1MDQ4WhcNMjYwNTI5MTQ1MDQ4WjAYMRYwFAYD VQQDEw02YTEwNmQ0OC1jZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7TlPjYOU38r5oQsVCDFBAvDbG2ZYNGhxUxRWkVM5jOqYrkVphpMczEJhpbx 46I3Hb7Zsmw5S13gpCxOtHmWQFiL1JNKJ6MSTcf34M9YfO0u5D9CZNX84fsW4vw3 YFh0Ok6m+LRlLivwNdkDjaDeR2v4WkblCx0XblzXbRsycB5JqMkNc0nmd5xk/yBd 52OvKs6JNYun6ypj3AH2d6SxI0B6RKhOmXe/BO8c1nO5ug5mljsFck0Pg/gr5Nf6 AL+Qy+8p4Swr5UCQmBGVsXEDle/2d4MVl0hVzhaGEyoawgnY2R1V4aWvaxjDKZPC aS+LVUu1xr3h+PoV4BXRN4iF2QIDAQABo4ICTzCCAkswHQYDVR0OBBYEFHeWo7Fd curL1BY98w0cNfhTqTAmMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEASRjgLOSRPkxoCmq54QMFPHThEsb4Bc0dBkVI34Gfxthv 1ITlDnVFLNs2fQInzAmUEkGv6C7g2ux8GX0ST6itFPNo+v1H5XaGF47p/gwZhERA x8g9pcYgz6yBBYJWOE8EjmTxj2WsmHgSVA3SgjxwfZiSKUHeQYdkli346LifSKa9 EoN1MVBaVS9XT6v7aY09CD4fwVtO49oNzMh7GRmMHcG3HEx2yPENX5RoSQFJBbbn reAUq4d+GnonFlYbpO9LzmO3ycc80UwEZn1yLuuuekYxH06x+N0x4Q18yzT7m6rp feFdKisXqRWRguG24JF+U6rcfd1yop9Uc4YJn5Wp4A== -----END CERTIFICATE-----Generated at Fri May 22 23:32:17 2026 by rpki-client