$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: C4T9s9l/Rtm0VT82hGIoWOR3RrD/U7nXqBQfYAmbPNA= Subject key identifier: BB:5E:74:24:55:30:2A:65:C1:DE:4C:42:EC:31:2D:88:B0:74:22:80 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B65 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA8 Signing time: Sat 23 May 2026 14:50:11 +0000 Manifest this update: Sat 23 May 2026 14:50:11 +0000 Manifest next update: Sat 30 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: H1rj75dvxeqHXPoWobmj1TVf7SclRICregGnEWVIdsU=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 May 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19301 (0x4b65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 23 14:50:11 2026 GMT Not After : May 30 14:50:11 2026 GMT Subject: CN=6a11bea3-c990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9d:c9:ad:6a:b0:df:46:9b:c7:69:0f:e8:97: 45:0e:d1:f8:34:49:cb:ab:03:2e:9d:ff:5d:62:8c: d1:41:f9:66:07:12:5e:c0:6c:87:85:90:50:12:d4: 06:fb:a6:77:9e:54:50:a4:78:b5:a8:e3:63:cf:e9: 68:2f:b9:d0:4f:ad:c8:22:d9:61:60:db:c8:83:be: cc:c1:67:39:fe:7c:6b:ae:1b:27:c1:40:3e:a6:da: f7:cf:e7:c0:ad:e5:d8:d6:0e:7b:c4:75:ed:4c:4c: ad:05:93:fb:73:01:13:15:58:74:59:ac:3d:2f:70: 69:f8:f6:1a:b7:ce:d4:e0:44:d6:df:91:4d:73:6b: 3f:70:99:94:07:84:a0:3b:4b:b8:aa:b2:5c:97:2f: 65:48:12:d8:b2:f6:f4:92:7d:5a:da:b6:fb:b7:82: c7:cb:cd:f9:06:d7:0f:de:af:ee:c2:50:2f:3b:ea: 8f:51:3c:43:2e:09:43:d3:2f:c1:5f:62:eb:70:11: dc:52:c2:4b:35:b3:76:be:30:c2:94:67:e5:1a:60: 78:4b:04:fa:57:34:53:80:fa:82:0b:6b:4e:2e:d7: 91:93:22:80:e0:6c:e3:07:36:fb:a4:e9:26:bb:ad: 78:90:1c:ad:b2:c5:78:a0:d8:69:ec:bf:cc:b2:77: 51:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5E:74:24:55:30:2A:65:C1:DE:4C:42:EC:31:2D:88:B0:74:22:80 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1e:33:f9:67:11:0f:1e:cd:6a:b8:bf:95:44:db:a1:3e:96: 8a:dc:ed:dc:51:1c:37:cb:a2:8a:dc:52:ba:75:2f:59:49:46: 6b:ee:e7:e1:26:f1:ee:1d:25:22:57:de:64:5a:40:ae:4b:f3: 6b:ab:ae:16:ab:6e:0d:9f:d8:02:6c:e4:6d:20:3d:f0:80:fd: c0:d3:50:3f:e8:f2:e9:d7:09:9f:ff:2c:77:a6:b7:7c:61:10: f7:a1:23:2b:5f:82:03:36:85:64:cc:77:5c:a9:e7:2f:6e:cd: d1:37:83:22:67:08:b5:49:60:21:5b:2b:31:76:d7:78:8a:f0: f3:82:4c:ad:b5:b9:b7:36:99:21:b6:64:02:3d:4e:c7:09:f6: 4f:da:e3:30:44:33:d6:00:c0:a6:cb:ff:00:0c:7a:a0:ca:a5: a3:80:87:6c:db:f2:60:fb:53:cd:ab:84:25:05:d3:19:e2:b1: 92:13:43:cf:4a:9f:a3:50:6c:bc:8e:50:6e:08:6c:1a:a0:22: cf:77:ba:09:7f:90:e7:c2:fc:60:11:d7:02:f2:9c:27:8d:55: b8:d7:70:77:a4:ae:c0:05:3e:3f:eb:04:5b:93:92:93:62:56: ca:c6:36:c1:d0:c8:90:5b:07:88:9d:6c:9e:e7:e9:48:3a:06: ff:6b:74:78 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIzMTQ1MDExWhcNMjYwNTMwMTQ1MDExWjAYMRYwFAYD VQQDEw02YTExYmVhMy1jOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1J3JrWqw30abx2kP6JdFDtH4NEnLqwMunf9dYozRQflmBxJewGyHhZBQEtQG +6Z3nlRQpHi1qONjz+loL7nQT63IItlhYNvIg77MwWc5/nxrrhsnwUA+ptr3z+fA reXY1g57xHXtTEytBZP7cwETFVh0Waw9L3Bp+PYat87U4ETW35FNc2s/cJmUB4Sg O0u4qrJcly9lSBLYsvb0kn1a2rb7t4LHy835BtcP3q/uwlAvO+qPUTxDLglD0y/B X2LrcBHcUsJLNbN2vjDClGflGmB4SwT6VzRTgPqCC2tOLteRkyKA4GzjBzb7pOkm u614kBytssV4oNhp7L/MsndRrwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLtedCRV MCplwd5MQuwxLYiwdCKAMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAih4z+WcRDx7Nari/lUTboT6Witzt3FEcN8uiitxSunUv WUlGa+7n4Sbx7h0lIlfeZFpArkvza6uuFqtuDZ/YAmzkbSA98ID9wNNQP+jy6dcJ n/8sd6a3fGEQ96EjK1+CAzaFZMx3XKnnL27N0TeDImcItUlgIVsrMXbXeIrw84JM rbW5tzaZIbZkAj1Oxwn2T9rjMEQz1gDApsv/AAx6oMqlo4CHbNvyYPtTzauEJQXT GeKxkhNDz0qfo1BsvI5QbghsGqAiz3e6CX+Q58L8YBHXAvKcJ41VuNdwd6SuwAU+ P+sEW5OSk2JWysY2wdDIkFsHiJ1snufpSDoG/2t0eA== -----END CERTIFICATE-----Generated at Sat May 23 23:45:48 2026 by rpki-client