$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: UQWPjjj5TvUxhuafEt2UV5ElFHXYkpiHzEY78yWArBg= Subject key identifier: 7B:A9:13:86:9A:C0:D6:6C:88:0D:ED:F6:7A:20:C8:7D:C4:51:D3:6E Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B73 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AB5 Signing time: Wed 27 May 2026 14:50:12 +0000 Manifest this update: Wed 27 May 2026 14:50:11 +0000 Manifest next update: Wed 03 Jun 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: G/OVS/5DVYMFMl6fe5YGqotD2vFGV80UAJqrB3vV6IU=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19315 (0x4b73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 27 14:50:11 2026 GMT Not After : Jun 3 14:50:11 2026 GMT Subject: CN=6a1704a4-1268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:d6:67:8e:80:7f:be:9d:22:3f:42:42:de: 42:38:10:e9:b1:dd:cd:d2:52:68:65:f0:9c:4d:88: c8:0d:9b:cd:2d:64:fa:5f:c2:cc:f6:cb:d9:1c:f1: 6b:66:6f:1c:40:81:a7:e5:7d:b1:59:1b:2f:27:2f: 93:c1:da:01:4a:d8:23:c9:f9:1c:8a:5d:c2:4f:9e: bf:7b:9c:78:a5:b7:78:b4:c6:3b:44:f2:13:bf:67: d9:29:3c:e9:6a:26:7d:50:be:f2:a8:21:cb:e5:50: 31:c3:fe:52:98:53:eb:1b:fa:6f:43:9d:85:e1:06: 51:27:4a:23:e4:4f:b7:4a:8e:32:ba:74:3c:c1:39: aa:aa:94:37:bc:20:1c:d9:d6:d6:96:ca:7f:a7:7c: bb:95:1b:c3:e0:43:0e:71:9b:0b:cc:2d:77:07:f9: c9:bd:4e:52:54:43:54:a0:74:42:0a:72:1f:7f:f4: 33:7c:96:c6:3d:ad:f7:ca:9c:f8:a1:39:d3:3a:16: 59:26:54:f4:a6:c9:ac:3f:08:c5:96:71:69:39:04: d3:a9:2c:4e:2c:5e:c0:d7:32:98:a5:70:62:51:55: 96:75:64:9b:68:5f:77:78:fe:ee:f6:87:a7:3b:15: e6:b4:fb:d3:63:13:80:f3:7b:b2:13:4f:19:13:c6: 77:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A9:13:86:9A:C0:D6:6C:88:0D:ED:F6:7A:20:C8:7D:C4:51:D3:6E X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8f:cd:f5:19:ac:04:3f:63:b7:d3:97:f0:e1:a2:c7:b7:be: b9:3e:1e:76:49:5f:81:78:22:3b:8c:7a:21:b6:af:b9:05:b7: 43:ed:68:0f:ca:17:3b:77:19:fe:a2:3e:32:9b:a1:f1:37:63: 1d:38:21:4c:ba:c4:8c:07:21:b6:93:1a:25:16:eb:54:87:dd: e2:4a:d9:61:7b:d3:d7:51:d5:53:10:a9:15:49:04:cf:8a:ca: b1:c5:38:51:38:d5:f5:97:ca:ad:cd:3e:85:7d:31:ab:40:86: 04:74:8d:9c:ee:f6:ba:a2:12:ed:ed:59:9e:f2:59:39:91:65: 0e:20:a7:7f:fd:84:61:b6:93:7a:eb:d4:41:4d:56:9d:67:95: a3:80:4d:6b:52:c7:40:e8:5c:97:32:71:21:75:42:9e:98:5b: 8b:a5:4b:fd:ac:ec:71:c1:e3:4b:cf:29:01:05:76:67:d5:cf: 9c:10:52:57:a3:29:58:21:09:9a:41:64:d5:dd:07:8b:c1:ae: c4:7d:6a:29:28:0c:17:e9:d8:eb:c0:c5:9e:28:ef:f0:a2:fe: 39:42:5b:78:e3:c4:93:c3:52:90:b0:82:09:a9:85:4c:bd:d9: 0a:8a:1d:c3:ce:1e:07:62:70:71:af:44:bd:8b:53:2b:84:08: a0:22:09:5c -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI3MTQ1MDExWhcNMjYwNjAzMTQ1MDExWjAYMRYwFAYD VQQDEw02YTE3MDRhNC0xMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws/WZ46Af76dIj9CQt5COBDpsd3N0lJoZfCcTYjIDZvNLWT6X8LM9svZHPFr Zm8cQIGn5X2xWRsvJy+TwdoBStgjyfkcil3CT56/e5x4pbd4tMY7RPITv2fZKTzp aiZ9UL7yqCHL5VAxw/5SmFPrG/pvQ52F4QZRJ0oj5E+3So4yunQ8wTmqqpQ3vCAc 2dbWlsp/p3y7lRvD4EMOcZsLzC13B/nJvU5SVENUoHRCCnIff/QzfJbGPa33ypz4 oTnTOhZZJlT0psmsPwjFlnFpOQTTqSxOLF7A1zKYpXBiUVWWdWSbaF93eP7u9oen OxXmtPvTYxOA83uyE08ZE8Z3MwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFHupE4aa wNZsiA3t9nogyH3EUdNuMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAI4/N9RmsBD9jt9OX8OGix7e+uT4edklfgXgiO4x6Ibav uQW3Q+1oD8oXO3cZ/qI+Mpuh8TdjHTghTLrEjAchtpMaJRbrVIfd4krZYXvT11HV UxCpFUkEz4rKscU4UTjV9ZfKrc0+hX0xq0CGBHSNnO72uqIS7e1ZnvJZOZFlDiCn f/2EYbaTeuvUQU1WnWeVo4BNa1LHQOhclzJxIXVCnphbi6VL/azsccHjS88pAQV2 Z9XPnBBSV6MpWCEJmkFk1d0Hi8GuxH1qKSgMF+nY68DFnijv8KL+OUJbeOPEk8NS kLCCCamFTL3ZCoodw84eB2Jwca9EvYtTK4QIoCIJXA== -----END CERTIFICATE-----Generated at Wed May 27 20:40:47 2026 by rpki-client