$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 1P46Bl0erGSo/WsBZIO7DdpJfxBEmphUoGBULjIW9Ho= Subject key identifier: FB:B6:46:D8:98:01:0B:03:D0:FD:DA:25:11:B3:03:B1:2C:53:B6:5C Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4ADB Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A21 Signing time: Fri 10 Apr 2026 15:01:30 +0000 Manifest this update: Fri 10 Apr 2026 15:01:29 +0000 Manifest next update: Fri 17 Apr 2026 15:01:29 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: sSMnQlljQGWO3ZzxTQY5rDQnjsSPwV7cz9MrU34llYY=) 2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19163 (0x4adb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 10 15:01:29 2026 GMT Not After : Apr 17 15:01:29 2026 GMT Subject: CN=69d910c9-7474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e7:d6:7a:cf:5d:a3:d1:d0:f4:4a:33:16:cd: 17:2f:51:97:68:22:59:f8:7f:ab:cd:fa:48:85:e8: 54:de:96:bd:a5:ae:63:d6:c7:02:12:d2:61:12:ee: 6b:ea:56:08:97:1a:0a:00:7c:00:df:ae:74:2c:8f: d7:bd:cc:cb:88:f4:03:2b:3c:27:47:59:f7:4f:f6: d3:c7:b0:33:6f:d2:e1:3f:fb:a7:3e:e0:fb:8b:14: 0d:58:e4:4f:0a:3c:44:48:a4:2c:00:ef:16:7b:0c: 32:66:56:16:ac:f9:a7:cb:41:71:1c:7f:0d:d2:f4: 21:5a:38:84:73:18:2a:90:23:b2:f8:67:89:1c:65: 7b:8f:43:ad:84:9d:b4:d0:4f:1c:07:08:be:a6:29: e9:ab:4b:5b:d5:0c:ab:68:09:3a:22:fb:49:90:76: 13:a8:07:ce:e0:c9:a7:b9:db:e7:21:93:e2:2b:5b: 08:7d:3f:9b:1c:0d:af:ff:6a:60:c3:48:5d:04:57: 93:75:f5:8f:8d:fe:9e:3f:1b:9a:61:ff:1a:a8:cf: 22:de:8d:45:b3:89:55:8b:93:de:51:26:94:25:e5: 4e:4a:90:f2:93:28:fc:6d:f1:43:50:96:9c:ba:7b: 7e:82:63:0b:85:d6:dd:ea:ba:aa:06:61:5a:fa:50: 87:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B6:46:D8:98:01:0B:03:D0:FD:DA:25:11:B3:03:B1:2C:53:B6:5C X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:15:3e:a7:35:70:b7:bf:0f:12:ad:e8:90:71:79:96:8c:5d: d1:9f:da:e3:7d:3c:cd:73:0d:59:b6:c3:da:7d:b0:c6:61:87: 90:cd:69:d4:ff:a4:53:67:6e:95:72:06:2c:d0:54:01:33:19: 11:fd:c4:83:60:53:a7:2f:b0:b4:ff:84:24:84:bb:e1:06:f8: bc:9b:34:e5:9b:19:24:fd:2b:9c:72:91:76:c2:77:43:57:1b: a9:c2:4f:92:3a:03:b3:fe:9b:98:69:54:03:44:ef:f1:3a:8d: 54:cd:0a:59:18:ba:44:a9:47:45:94:95:7e:ec:72:21:1e:bc: 3d:8f:be:11:f7:c9:67:cd:2b:89:c0:c8:29:0a:d0:39:cc:58: 4a:d1:b8:0f:f3:96:7f:e9:85:e1:fa:a9:2f:a3:c3:14:2c:a0: 51:7c:0b:8b:8e:1b:8b:70:9f:cb:93:a5:fa:59:77:4a:40:41: b0:33:bc:a8:b1:9c:2f:a8:b3:2d:5b:d7:ae:71:aa:25:c8:40: 83:0d:fb:15:73:1e:1a:a1:53:d5:ed:cb:e3:ac:86:5f:70:8e: f2:25:d4:64:27:b6:66:e9:10:99:c5:90:85:8a:25:c1:94:ab: 3c:0a:a9:1d:b5:6c:48:4d:c3:2c:09:b6:2e:4d:d3:b7:d0:25: 27:d1:36:02 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICStswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDEwMTUwMTI5WhcNMjYwNDE3MTUwMTI5WjAYMRYwFAYD VQQDEw02OWQ5MTBjOS03NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOfWes9do9HQ9EozFs0XL1GXaCJZ+H+rzfpIhehU3pa9pa5j1scCEtJhEu5r 6lYIlxoKAHwA3650LI/XvczLiPQDKzwnR1n3T/bTx7Azb9LhP/unPuD7ixQNWORP CjxESKQsAO8WewwyZlYWrPmny0FxHH8N0vQhWjiEcxgqkCOy+GeJHGV7j0OthJ20 0E8cBwi+pinpq0tb1QyraAk6IvtJkHYTqAfO4MmnudvnIZPiK1sIfT+bHA2v/2pg w0hdBFeTdfWPjf6ePxuaYf8aqM8i3o1Fs4lVi5PeUSaUJeVOSpDykyj8bfFDUJac unt+gmMLhdbd6rqqBmFa+lCHGQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPu2RtiY AQsD0P3aJRGzA7EsU7ZcMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAHRU+pzVwt78PEq3okHF5loxd0Z/a4308zXMNWbbD2n2w xmGHkM1p1P+kU2dulXIGLNBUATMZEf3Eg2BTpy+wtP+EJIS74Qb4vJs05ZsZJP0r nHKRdsJ3Q1cbqcJPkjoDs/6bmGlUA0Tv8TqNVM0KWRi6RKlHRZSVfuxyIR68PY++ EffJZ80ricDIKQrQOcxYStG4D/OWf+mF4fqpL6PDFCygUXwLi44bi3Cfy5Ol+ll3 SkBBsDO8qLGcL6izLVvXrnGqJchAgw37FXMeGqFT1e3L46yGX3CO8iXUZCe2ZukQ mcWQhYolwZSrPAqpHbVsSE3DLAm2Lk3Tt9AlJ9E2Ag== -----END CERTIFICATE-----Generated at Fri Apr 10 17:48:22 2026 by rpki-client