$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 9eSGwNkh+6d/jjfgRzyYgIli2gKM9wU5lU96Jdik1fE= Subject key identifier: 84:56:6E:B4:C0:87:CE:B6:CA:FA:33:49:4B:C1:A5:62:F4:7D:DC:DE Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A7A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49C2 Signing time: Wed 11 Mar 2026 02:50:10 +0000 Manifest this update: Wed 11 Mar 2026 02:50:10 +0000 Manifest next update: Wed 18 Mar 2026 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: +vIs7CxUoqPTpwdHKFboRd9poYfy/TeuoQ7NQ3MEVqE=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19066 (0x4a7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 11 02:50:10 2026 GMT Not After : Mar 18 02:50:10 2026 GMT Subject: CN=69b0d862-c3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f7:41:d2:32:2d:ec:5b:d1:49:36:7f:6d:a7: a1:45:96:94:04:b9:d9:b3:0e:f8:3f:3a:fe:40:c6: 49:38:50:e9:e4:d8:e0:97:93:c4:4c:25:26:40:02: 04:a9:9c:3f:8c:20:b0:2a:c4:55:f5:3f:09:0f:9f: 9a:d9:b6:9d:69:81:9c:6e:c7:4c:e9:9b:d5:72:e8: 3a:e3:56:d1:3a:60:7a:a8:15:60:90:fe:6c:87:8b: 48:28:68:68:49:0c:f3:6c:c4:34:30:41:37:16:c4: 40:15:a5:36:48:e2:cc:61:46:5d:5f:9a:a7:1b:89: 8a:fe:4b:3b:37:02:6e:4d:2a:f9:50:ac:4d:0d:46: 82:5b:c4:6b:59:5f:31:7a:61:84:c2:11:59:9a:bd: d3:9b:5d:bb:be:ee:cc:30:7e:fb:41:0d:2e:50:ee: d6:08:03:01:c5:d5:4d:67:5c:d3:13:1b:26:45:21: 5d:b2:e0:5a:3f:f2:52:e6:bc:d9:7d:a7:40:25:8d: a2:b1:df:34:8b:a1:47:c0:63:d3:13:18:7f:78:a2: 6d:c2:e8:55:81:a5:69:eb:aa:58:c1:8e:e8:b5:1e: 8b:f7:df:4e:c3:f1:a7:eb:79:5c:ba:cb:83:df:50: 77:24:86:64:d8:ba:47:ba:cf:25:d6:4a:25:6f:49: ab:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:56:6E:B4:C0:87:CE:B6:CA:FA:33:49:4B:C1:A5:62:F4:7D:DC:DE X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a1:25:66:0e:6b:4c:70:f3:77:89:61:72:77:a6:63:a6:7f: 22:72:58:87:d7:23:c5:71:c5:33:31:81:67:85:08:8c:91:54: d7:4e:28:bd:a7:e5:26:e2:66:09:62:b4:ab:c2:d1:6f:59:26: 8f:cd:7e:f5:46:3a:2d:1b:de:01:ef:4a:65:e7:d5:1e:6e:b9: 91:13:de:ed:d5:6c:a9:eb:2b:b8:ac:d1:83:f1:b6:22:68:d9: 9d:76:da:10:b1:64:1e:4a:56:e0:e9:51:a1:be:91:7b:91:b0: df:b4:64:c2:03:7f:4a:06:65:73:f2:56:01:d8:55:36:c7:f9: 27:a0:89:fc:d7:ff:c6:39:0c:1a:e9:27:4d:46:11:b4:82:39: 59:e9:85:5a:03:d6:5c:c5:02:86:39:fc:a4:ed:1e:af:76:79: 36:9e:5e:b1:2c:50:4c:7c:bf:b8:f1:7e:d4:7b:51:43:53:5a: b8:0a:15:14:2f:ef:71:25:5a:5c:0c:1b:21:23:eb:14:5f:39: 04:48:53:bb:dc:39:90:03:b3:fc:4f:af:24:67:b7:5d:d9:be: 45:43:17:ed:11:d1:8b:3f:95:5a:ae:e0:99:98:9a:23:6b:56: e0:87:0e:8b:77:fd:02:e5:29:f1:6d:45:10:65:b4:97:3e:2a: 62:b0:b1:b5 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzExMDI1MDEwWhcNMjYwMzE4MDI1MDEwWjAYMRYwFAYD VQQDEw02OWIwZDg2Mi1jM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/dB0jIt7FvRSTZ/baehRZaUBLnZsw74Pzr+QMZJOFDp5Njgl5PETCUmQAIE qZw/jCCwKsRV9T8JD5+a2badaYGcbsdM6ZvVcug641bROmB6qBVgkP5sh4tIKGho SQzzbMQ0MEE3FsRAFaU2SOLMYUZdX5qnG4mK/ks7NwJuTSr5UKxNDUaCW8RrWV8x emGEwhFZmr3Tm127vu7MMH77QQ0uUO7WCAMBxdVNZ1zTExsmRSFdsuBaP/JS5rzZ fadAJY2isd80i6FHwGPTExh/eKJtwuhVgaVp66pYwY7otR6L999Ow/Gn63lcusuD 31B3JIZk2LpHus8l1kolb0mrwQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIRWbrTA h862yvozSUvBpWL0fdzeMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAi6ElZg5rTHDzd4lhcnemY6Z/InJYh9cjxXHFMzGBZ4UI jJFU104ovaflJuJmCWK0q8LRb1kmj81+9UY6LRveAe9KZefVHm65kRPe7dVsqesr uKzRg/G2ImjZnXbaELFkHkpW4OlRob6Re5Gw37RkwgN/SgZlc/JWAdhVNsf5J6CJ /Nf/xjkMGuknTUYRtII5WemFWgPWXMUChjn8pO0er3Z5Np5esSxQTHy/uPF+1HtR Q1NauAoVFC/vcSVaXAwbISPrFF85BEhTu9w5kAOz/E+vJGe3Xdm+RUMX7RHRiz+V Wq7gmZiaI2tW4IcOi3f9AuUp8W1FEGW0lz4qYrCxtQ== -----END CERTIFICATE-----Generated at Wed Mar 11 09:38:21 2026 by rpki-client