$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: ZlB6He8F4yHb62+PRiH7wKNp5HdJ9bYv/SGFPGzap4g= Subject key identifier: 72:16:BE:94:2D:FF:D3:93:8F:FE:D2:62:A1:24:4D:21:76:CD:D4:22 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4ADC Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A22 Signing time: Sat 11 Apr 2026 02:50:11 +0000 Manifest this update: Sat 11 Apr 2026 02:50:11 +0000 Manifest next update: Sat 18 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: VcG7pWZpUJIv65aIo82gHi8URXGOVRfou3JFQ78fDh8=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19164 (0x4adc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 11 02:50:11 2026 GMT Not After : Apr 18 02:50:11 2026 GMT Subject: CN=69d9b6e3-0ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:91:c4:db:3c:19:68:60:51:c2:c8:39:89:2e: dd:df:b0:c5:66:47:69:8d:49:72:5f:bb:21:05:f5: ff:0f:63:5d:9c:e4:33:5c:c8:cf:62:06:cd:4c:02: 43:ae:8f:42:19:1e:7a:ce:15:62:cd:f0:53:72:cb: 8e:6d:9d:bb:c8:c2:00:3e:75:74:4b:93:6d:20:82: 7e:ce:4c:c4:ea:57:c5:34:f6:80:25:42:1d:5d:a0: 69:67:3b:21:24:5e:37:44:cd:25:d7:a6:f0:9b:5a: 41:7f:84:1b:75:ee:77:aa:d4:cd:29:1e:07:f5:56: 5e:e7:f9:6c:ae:ee:34:eb:fa:5d:12:d2:54:0f:7b: 67:bb:51:8a:eb:83:18:73:44:ec:b7:a0:6b:1a:f4: 54:a5:9a:90:e2:a0:d3:1c:46:d9:2d:d9:5c:ec:8e: 23:a0:a7:9d:6c:12:0e:b7:e7:d6:f9:57:1a:2f:38: 3c:ee:fe:ca:16:14:13:58:28:ff:dd:71:70:56:85: e7:e6:8b:9b:50:4d:bf:b0:5c:45:28:62:a2:ca:ca: c4:01:96:26:b9:ad:d0:a6:27:d3:5a:c4:54:72:f5: 42:d6:e7:c9:e0:82:c8:5f:c4:3e:e3:22:c5:cf:b2: 01:18:ad:86:0e:84:30:21:e3:97:16:32:ba:51:42: a6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:16:BE:94:2D:FF:D3:93:8F:FE:D2:62:A1:24:4D:21:76:CD:D4:22 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:1b:47:59:d2:c6:7b:94:1e:cb:c4:b4:78:66:bc:a5:a1:c8: 56:6e:6d:3e:d6:5f:94:a6:c7:69:92:d5:69:0a:7f:d4:4f:f0: c9:31:7e:e5:70:e8:51:0a:e3:2f:03:c5:4c:4c:75:79:b4:bc: 68:ce:9d:7a:ef:1a:03:7f:48:f3:b0:8c:bd:75:c0:62:1b:1d: 2b:79:0c:96:b0:f9:98:b1:e5:df:ce:8f:c3:05:82:e1:29:c4: b9:e9:a8:a7:52:1c:cb:27:91:c7:a7:2c:85:50:42:14:38:de: 10:bc:42:6b:19:8e:24:02:47:ef:8b:cb:59:aa:e5:ba:c8:a7: 67:14:59:bd:05:c2:f0:25:68:55:5f:d0:c0:e5:7c:4f:27:91: de:08:21:b0:98:c0:29:a2:d2:2d:15:1b:ba:fd:a8:40:05:83: 6c:e1:45:a8:22:86:64:b3:7f:6a:de:37:6d:86:f9:a7:1a:27: 2f:03:fe:20:26:b9:3e:2d:7e:5a:42:aa:1d:4c:2f:d3:6a:77: d8:74:df:b8:b3:64:2d:84:3d:75:9d:24:53:e9:9e:67:ec:8f: 88:cb:8f:1b:85:20:e8:8a:bb:5d:f2:69:68:ee:b3:65:12:39: 1f:84:99:a3:4b:a5:0d:e2:ea:7d:6e:e3:c2:49:6e:87:56:22: 16:d8:fc:e1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICStwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDExMDI1MDExWhcNMjYwNDE4MDI1MDExWjAYMRYwFAYD VQQDEw02OWQ5YjZlMy0wY2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZHE2zwZaGBRwsg5iS7d37DFZkdpjUlyX7shBfX/D2NdnOQzXMjPYgbNTAJD ro9CGR56zhVizfBTcsuObZ27yMIAPnV0S5NtIIJ+zkzE6lfFNPaAJUIdXaBpZzsh JF43RM0l16bwm1pBf4Qbde53qtTNKR4H9VZe5/lsru406/pdEtJUD3tnu1GK64MY c0Tst6BrGvRUpZqQ4qDTHEbZLdlc7I4joKedbBIOt+fW+VcaLzg87v7KFhQTWCj/ 3XFwVoXn5oubUE2/sFxFKGKiysrEAZYmua3QpifTWsRUcvVC1ufJ4ILIX8Q+4yLF z7IBGK2GDoQwIeOXFjK6UUKmwwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFHIWvpQt /9OTj/7SYqEkTSF2zdQiMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAMRtHWdLGe5Qey8S0eGa8paHIVm5tPtZflKbHaZLVaQp/ 1E/wyTF+5XDoUQrjLwPFTEx1ebS8aM6deu8aA39I87CMvXXAYhsdK3kMlrD5mLHl 386PwwWC4SnEuemop1IcyyeRx6cshVBCFDjeELxCaxmOJAJH74vLWarlusinZxRZ vQXC8CVoVV/QwOV8TyeR3gghsJjAKaLSLRUbuv2oQAWDbOFFqCKGZLN/at43bYb5 pxonLwP+ICa5Pi1+WkKqHUwv02p32HTfuLNkLYQ9dZ0kU+meZ+yPiMuPG4Ug6Iq7 XfJpaO6zZRI5H4SZo0ulDeLqfW7jwkluh1YiFtj84Q== -----END CERTIFICATE-----Generated at Sat Apr 11 08:37:53 2026 by rpki-client