$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Lcx6cZJK6+uIJ4CaTJkNw+NhmSKbPw7EYV45BN8vrHc= Subject key identifier: EA:2C:4E:7F:AA:F6:1A:F6:9D:E9:AD:69:DC:2D:54:73:4F:9E:8A:27 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B3A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A7D Signing time: Sat 09 May 2026 14:50:11 +0000 Manifest this update: Sat 09 May 2026 14:50:11 +0000 Manifest next update: Sat 16 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ayqd6BuOMWia42jhmq/3qu9oQ7kqOXR1KTj2MCh+Vhk=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 12: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19258 (0x4b3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 9 14:50:11 2026 GMT Not After : May 16 14:50:11 2026 GMT Subject: CN=69ff49a3-83d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b5:87:41:d3:dc:bc:0f:ed:dc:04:fd:26:68: 14:af:41:e1:c4:22:01:09:a6:be:9e:04:3e:17:75: 4b:a6:2a:50:04:d7:89:38:67:7c:4a:a5:52:20:80: f3:fe:75:f0:52:4f:65:e2:28:6a:49:ea:30:99:64: 5a:f6:cc:81:3d:08:77:bb:f8:c0:2a:4e:bf:7f:ae: 1e:90:9c:01:3f:c2:c5:57:dc:9b:37:57:54:4c:8c: 1c:28:64:f5:b3:83:a6:42:c8:93:63:ed:e5:f0:2b: 1b:3e:9e:a0:d6:66:ea:ee:2c:05:7e:57:62:74:51: b4:fd:06:1e:d3:35:ce:e3:f3:5d:04:f8:1d:9a:86: 61:91:70:f8:58:f7:ea:3c:06:10:70:ad:f9:2c:81: e5:bb:71:6e:5e:1b:c3:83:a6:30:ca:bd:1f:82:c7: 72:d6:2c:fe:4a:72:75:b4:e8:4a:94:db:c5:3c:f6: 59:53:3d:98:7a:b4:50:b2:dd:67:14:31:7d:91:d6: 35:68:52:68:f1:e1:71:da:24:f4:f6:d7:71:da:47: 9c:5f:5a:1b:98:71:f6:81:9b:ac:fe:69:fc:00:96: 82:02:a0:ba:11:a5:32:df:37:82:36:aa:4d:7e:9b: 46:65:fe:12:87:b8:e4:f2:e5:c8:a4:fc:59:ac:8d: c4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2C:4E:7F:AA:F6:1A:F6:9D:E9:AD:69:DC:2D:54:73:4F:9E:8A:27 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:4b:e2:57:ec:f0:de:a9:cd:f7:b6:4f:53:a9:d7:3a:69:b1: 96:e4:61:ba:1f:db:a5:54:e8:b9:28:14:93:c1:52:24:4c:4e: ae:6b:0e:c7:2a:3e:4d:84:fd:8e:2a:7d:05:29:22:2b:e3:ba: 0b:e9:f8:33:97:a5:c7:16:6c:ae:61:0a:be:1d:23:41:fe:b5: 0d:2f:92:b3:04:42:52:33:ae:73:44:6b:5a:4c:d6:ce:78:8d: b1:e8:8e:d2:35:67:c6:d1:11:ed:75:49:c8:f1:3e:2c:14:3d: 85:73:17:99:62:60:ff:09:16:19:eb:42:a3:ce:84:94:b6:19: 10:56:e8:af:35:82:2d:d5:f4:ed:64:9e:f3:ba:21:cb:00:00: 4b:41:d7:6e:b7:f3:b8:28:f1:a4:d5:d6:e1:33:fb:3c:8d:4e: b7:03:a9:8a:71:bd:d4:89:e2:50:cb:5b:69:2a:44:46:b6:96: 0e:58:c7:77:40:f3:03:d9:90:ea:21:c3:6b:f0:be:d1:9c:52: 51:04:84:99:31:e0:46:8a:3d:3c:d7:38:dc:88:12:c4:38:f0: 7c:c2:c4:9b:f0:63:ab:a9:f0:9b:b3:85:42:51:2c:fe:38:5e: 06:2a:19:62:21:f4:1b:b6:b7:26:c4:6a:5e:b3:32:c0:37:8a: 73:1d:03:e5 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA5MTQ1MDExWhcNMjYwNTE2MTQ1MDExWjAYMRYwFAYD VQQDEw02OWZmNDlhMy04M2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbWHQdPcvA/t3AT9JmgUr0HhxCIBCaa+ngQ+F3VLpipQBNeJOGd8SqVSIIDz /nXwUk9l4ihqSeowmWRa9syBPQh3u/jAKk6/f64ekJwBP8LFV9ybN1dUTIwcKGT1 s4OmQsiTY+3l8CsbPp6g1mbq7iwFfldidFG0/QYe0zXO4/NdBPgdmoZhkXD4WPfq PAYQcK35LIHlu3FuXhvDg6Ywyr0fgsdy1iz+SnJ1tOhKlNvFPPZZUz2YerRQst1n FDF9kdY1aFJo8eFx2iT09tdx2kecX1obmHH2gZus/mn8AJaCAqC6EaUy3zeCNqpN fptGZf4Sh7jk8uXIpPxZrI3EPQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOosTn+q 9hr2nemtadwtVHNPnoonMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAUkviV+zw3qnN97ZPU6nXOmmxluRhuh/bpVTouSgUk8FS JExOrmsOxyo+TYT9jip9BSkiK+O6C+n4M5elxxZsrmEKvh0jQf61DS+SswRCUjOu c0RrWkzWzniNseiO0jVnxtER7XVJyPE+LBQ9hXMXmWJg/wkWGetCo86ElLYZEFbo rzWCLdX07WSe87ohywAAS0HXbrfzuCjxpNXW4TP7PI1OtwOpinG91IniUMtbaSpE RraWDljHd0DzA9mQ6iHDa/C+0ZxSUQSEmTHgRoo9PNc43IgSxDjwfMLEm/Bjq6nw m7OFQlEs/jheBioZYiH0G7a3JsRqXrMywDeKcx0D5Q== -----END CERTIFICATE-----Generated at Sat May 9 17:50:02 2026 by rpki-client