$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 3e9XZ97pgin3XTSXpQHDgmnYGqoMcKY67/BRqOUjMvw= Subject key identifier: DE:0E:28:33:43:DD:EA:FB:77:20:95:DA:A3:12:EE:4C:DD:CD:7C:44 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B13 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A58 Signing time: Tue 28 Apr 2026 03:16:42 +0000 Manifest this update: Tue 28 Apr 2026 03:16:41 +0000 Manifest next update: Tue 05 May 2026 03:16:41 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Mb4TuAyRpV5b571bP9+Bvco7cTiMjTO0J0NxTnPqW8M=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 3: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 May 2026 03:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19219 (0x4b13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 28 03:16:41 2026 GMT Not After : May 5 03:16:41 2026 GMT Subject: CN=69f02699-c002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:12:05:72:c8:3b:f3:84:d2:2c:5f:35:d6: a0:c5:22:c7:d5:e3:de:82:1c:9f:e4:ae:6a:f9:d3: d7:12:bf:03:4f:8e:cb:f9:4f:4a:ec:05:05:e3:cc: 5d:36:dd:a9:a0:dd:02:0e:31:f3:25:ec:f2:ee:36: c9:e7:89:ea:58:89:de:19:d6:af:36:23:9e:96:ae: ab:a3:5d:cc:ce:f4:4a:be:f4:a1:f0:4c:fc:58:66: 5f:ac:75:69:b0:84:1f:10:9b:eb:94:19:54:ee:c0: 94:74:01:54:16:ee:0c:6f:8e:1b:aa:4d:14:e5:82: 6b:b5:25:5d:22:5c:7e:a1:37:ff:c0:e5:07:a7:70: 48:68:c3:6c:5d:7f:d5:2c:55:09:ef:a2:ca:68:61: a3:53:a6:e5:31:80:66:10:b8:bd:e3:e0:56:59:08: a4:6f:b8:88:22:96:7a:db:3d:5e:94:9b:f5:86:d3: 24:4f:7d:b4:b0:15:3a:89:bd:8b:cd:ca:63:df:23: 2e:8c:58:e4:36:d9:00:c6:b0:87:3d:eb:e9:cf:5f: 03:80:98:95:63:45:43:a2:dd:ee:50:fb:04:fb:59: 77:ca:f1:7e:83:b0:7f:f1:25:d4:e6:8d:2b:aa:0b: be:ca:f7:42:3e:d4:ff:4c:ee:55:3c:76:a7:15:23: a4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0E:28:33:43:DD:EA:FB:77:20:95:DA:A3:12:EE:4C:DD:CD:7C:44 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:59:fd:eb:62:90:44:11:16:dd:6a:04:3b:e1:16:4f:b3:c6: e2:45:b4:02:76:4c:96:46:27:fe:58:9e:61:dd:37:9a:ad:9d: 59:c6:2a:6b:26:3b:b6:10:ba:62:68:e3:b5:82:67:4b:70:91: 82:0e:fd:db:bd:03:1f:dc:bd:57:cc:50:cb:9d:32:4d:33:84: 6f:86:70:60:73:2b:13:c0:4b:2f:bb:0f:e8:b4:c8:52:68:77: 9d:7d:72:63:39:e8:ca:17:8f:ee:88:3c:c0:a2:d3:c3:ba:1f: 28:58:2f:02:d2:7d:1c:45:9e:f8:19:76:35:24:e3:36:2e:64: 26:86:8a:ca:bf:de:84:f1:04:c8:69:16:bf:ea:2a:7c:aa:e3: 06:95:8b:8d:12:af:1a:2a:5e:70:bb:48:c1:a2:f6:79:0a:73: 55:c4:8f:f5:ba:9d:f0:9e:2f:85:5c:bf:b2:14:61:4a:ab:2d: 1d:a9:12:75:14:14:f5:dc:eb:92:b7:01:53:23:5a:2d:a0:12: d4:38:b1:53:42:52:c3:a7:84:d3:d9:96:71:77:c8:cb:02:c1: ea:c2:a7:82:f6:0a:fd:f8:42:86:d3:1c:b3:2c:b5:16:82:62: fe:ff:7d:e9:64:82:40:f5:83:90:2a:3f:58:91:03:47:bc:de: cc:39:f5:16 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI4MDMxNjQxWhcNMjYwNTA1MDMxNjQxWjAYMRYwFAYD VQQDEw02OWYwMjY5OS1jMDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOwSBXLIO/OE0ixfNdagxSLH1ePeghyf5K5q+dPXEr8DT47L+U9K7AUF48xd Nt2poN0CDjHzJezy7jbJ54nqWIneGdavNiOelq6ro13MzvRKvvSh8Ez8WGZfrHVp sIQfEJvrlBlU7sCUdAFUFu4Mb44bqk0U5YJrtSVdIlx+oTf/wOUHp3BIaMNsXX/V LFUJ76LKaGGjU6blMYBmELi94+BWWQikb7iIIpZ62z1elJv1htMkT320sBU6ib2L zcpj3yMujFjkNtkAxrCHPevpz18DgJiVY0VDot3uUPsE+1l3yvF+g7B/8SXU5o0r qgu+yvdCPtT/TO5VPHanFSOkXwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFN4OKDND 3er7dyCV2qMS7kzdzXxEMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAr1n962KQRBEW3WoEO+EWT7PG4kW0AnZMlkYn/lieYd03 mq2dWcYqayY7thC6YmjjtYJnS3CRgg79270DH9y9V8xQy50yTTOEb4ZwYHMrE8BL L7sP6LTIUmh3nX1yYznoyheP7og8wKLTw7ofKFgvAtJ9HEWe+Bl2NSTjNi5kJoaK yr/ehPEEyGkWv+oqfKrjBpWLjRKvGipecLtIwaL2eQpzVcSP9bqd8J4vhVy/shRh SqstHakSdRQU9dzrkrcBUyNaLaAS1DixU0JSw6eE09mWcXfIywLB6sKngvYK/fhC htMcsyy1FoJi/v996WSCQPWDkCo/WJEDR7zezDn1Fg== -----END CERTIFICATE-----Generated at Tue Apr 28 11:38:00 2026 by rpki-client