$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: /MoQUo18RGLF2iMuHjzJHBJGxazimkLFTwt8dPjRUV0= Subject key identifier: BF:46:DC:64:4B:23:14:33:81:72:DD:51:78:6D:B4:84:CD:3B:E7:C6 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B08 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A4D Signing time: Sat 25 Apr 2026 02:50:11 +0000 Manifest this update: Sat 25 Apr 2026 02:50:11 +0000 Manifest next update: Sat 02 May 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 2zKA8EQiJYNex7ivWZHI/Vz/q9eBH2l57DkFdIVuNoE=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19208 (0x4b08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 25 02:50:11 2026 GMT Not After : May 2 02:50:11 2026 GMT Subject: CN=69ec2be3-4d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:6a:41:e1:6f:c2:56:cd:05:23:c0:66:11: 03:29:10:2f:82:6d:7c:ab:cc:2f:45:50:7d:d9:3c: 3d:e7:ae:84:72:b3:1b:34:61:fb:16:5a:ad:0e:eb: ed:46:f4:22:9f:93:5d:40:6a:ea:e5:32:62:3a:c5: c5:13:b3:c7:0a:5e:d4:f5:2e:ea:69:a8:a8:ce:7e: a9:c4:2a:8f:42:bc:41:16:55:ec:68:06:6d:45:19: ab:74:ad:38:85:72:e7:b3:d3:01:a2:10:3a:cb:73: cc:1b:dc:53:7b:89:d6:f1:a0:23:fd:69:7b:ef:b3: f8:b3:e0:2d:82:80:36:df:f8:c0:03:35:c9:ac:de: a5:34:04:1c:b4:f8:65:15:7f:f1:fd:94:74:7f:92: 23:2d:15:ef:61:a8:56:6d:90:95:56:46:67:ad:de: aa:74:e8:eb:9c:01:4b:ce:1f:ff:00:84:dc:18:4b: 1b:5e:ac:d1:ec:3f:2f:1e:e4:61:87:0c:ed:7d:6b: 7d:13:69:4d:92:20:1e:e8:9b:f0:c3:5e:ed:9a:8e: 9d:2b:b4:e2:e7:e8:b2:9d:ce:e2:68:87:45:56:d4: 7e:20:8c:5f:6c:6b:16:37:dc:a6:c2:f8:af:4c:7a: 7c:92:9a:51:88:2d:9c:a3:6a:b4:cd:bf:2a:8a:a3: 76:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:46:DC:64:4B:23:14:33:81:72:DD:51:78:6D:B4:84:CD:3B:E7:C6 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:9a:da:95:6a:28:a1:5d:55:cc:62:42:b7:88:56:02:d6:24: 9f:4d:4e:b6:54:e8:0c:1f:56:f6:86:31:3e:37:85:d5:0f:9b: 3f:9e:1d:95:92:aa:03:06:dc:1f:4a:b0:43:50:ac:87:3d:f5: af:72:b6:2f:07:ad:42:16:1c:33:96:fd:47:37:30:bf:70:3b: 55:33:56:e3:19:32:48:8a:b0:ba:f1:c0:a0:e9:6b:49:98:95: 84:b9:39:a0:18:a0:ff:2d:f9:1d:aa:9e:f0:62:90:34:bf:37: 30:c6:03:5d:cc:31:63:26:41:3c:d0:98:11:c4:3f:5b:85:3b: 0e:d9:12:5e:9e:44:60:01:a8:96:6f:b5:aa:39:05:39:ff:aa: 6c:62:9b:69:88:c7:e6:ea:30:9e:07:a6:2c:e2:a2:fd:de:82: 7d:d1:52:ae:6f:5d:1e:55:40:0f:e4:60:a9:a2:c9:38:30:a5: 6a:af:a9:ac:41:ac:3b:99:03:fa:e6:39:08:ee:cf:b1:0c:1e: b3:b1:b4:02:36:c5:72:40:f6:33:a2:33:c4:4e:f4:e7:c1:10: 0b:d2:96:83:fa:86:65:99:4a:0c:04:33:93:7a:c1:bb:fd:4c: ef:bc:57:bc:c8:5e:a8:d4:d8:5f:df:dd:f3:5b:18:c2:89:92: 12:11:95:79 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDI1MDI1MDExWhcNMjYwNTAyMDI1MDExWjAYMRYwFAYD VQQDEw02OWVjMmJlMy00ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkBqQeFvwlbNBSPAZhEDKRAvgm18q8wvRVB92Tw9566EcrMbNGH7FlqtDuvt RvQin5NdQGrq5TJiOsXFE7PHCl7U9S7qaaiozn6pxCqPQrxBFlXsaAZtRRmrdK04 hXLns9MBohA6y3PMG9xTe4nW8aAj/Wl777P4s+AtgoA23/jAAzXJrN6lNAQctPhl FX/x/ZR0f5IjLRXvYahWbZCVVkZnrd6qdOjrnAFLzh//AITcGEsbXqzR7D8vHuRh hwztfWt9E2lNkiAe6Jvww17tmo6dK7Ti5+iync7iaIdFVtR+IIxfbGsWN9ymwviv THp8kppRiC2co2q0zb8qiqN2LQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFL9G3GRL IxQzgXLdUXhttITNO+fGMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAk5ralWoooV1VzGJCt4hWAtYkn01OtlToDB9W9oYxPjeF 1Q+bP54dlZKqAwbcH0qwQ1Cshz31r3K2LwetQhYcM5b9Rzcwv3A7VTNW4xkySIqw uvHAoOlrSZiVhLk5oBig/y35Haqe8GKQNL83MMYDXcwxYyZBPNCYEcQ/W4U7DtkS Xp5EYAGolm+1qjkFOf+qbGKbaYjH5uowngemLOKi/d6CfdFSrm9dHlVAD+RgqaLJ ODClaq+prEGsO5kD+uY5CO7PsQwes7G0AjbFckD2M6IzxE7058EQC9KWg/qGZZlK DAQzk3rBu/1M77xXvMheqNTYX9/d81sYwomSEhGVeQ== -----END CERTIFICATE-----Generated at Sat Apr 25 12:52:31 2026 by rpki-client