$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: MlBeIguMqsM7BOrEtUExQtXFk0iMLBCL2+rp38C9ZbQ= Subject key identifier: F4:56:C6:64:A9:1B:9C:BE:7B:AC:D4:3E:F3:D0:65:96:E1:AE:9B:E6 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AD8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A1E Signing time: Thu 09 Apr 2026 14:50:11 +0000 Manifest this update: Thu 09 Apr 2026 14:50:11 +0000 Manifest next update: Thu 16 Apr 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: sNmzIzVOix+jhvIcXRgjISQJV30xRQ7jRlqDIyhWqIg=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 5: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 6: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Apr 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19160 (0x4ad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 9 14:50:11 2026 GMT Not After : Apr 16 14:50:11 2026 GMT Subject: CN=69d7bca3-c5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b0:33:60:8b:4b:2f:38:49:f9:48:d7:8c:f4: 65:4a:02:7b:38:cd:ec:57:ac:0a:b8:63:5d:74:79: dc:de:f5:68:50:39:f4:1a:d1:02:06:44:68:ae:10: c4:1e:c8:a2:b9:ec:32:ce:f2:0e:f8:a8:f8:d1:24: 50:ae:36:11:fd:ae:c0:38:22:5c:c2:04:36:e7:86: 16:1c:4d:57:46:d3:70:a8:52:9f:b1:ea:4a:35:1a: 02:09:b7:e5:de:19:3c:49:58:0d:f2:d7:d8:e5:21: b3:e4:5a:19:f2:cb:90:ab:33:f2:f4:e0:06:a1:c1: 46:17:76:e7:ad:07:3d:6e:1c:ac:3f:44:a7:d5:3f: 78:87:7d:81:61:39:5b:db:94:8d:81:5d:3c:29:13: d3:1d:fc:74:e6:66:ae:2f:4f:1e:58:3d:a4:bf:ea: ae:24:de:d8:5a:02:c9:6e:d0:63:fa:4f:54:65:c7: 52:18:29:1d:8a:6d:3b:24:a9:40:90:4f:6f:e9:76: 9b:b8:16:6a:b4:0a:dc:75:38:fb:b1:e6:d7:19:e8: 2c:a5:79:2d:db:95:e1:52:77:87:c4:97:2e:10:de: fa:04:40:93:35:23:41:e1:c7:ee:2a:24:94:8a:53: e5:8d:bf:fc:2e:c0:c9:ae:b7:e4:6d:4a:9a:d6:7b: cb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:56:C6:64:A9:1B:9C:BE:7B:AC:D4:3E:F3:D0:65:96:E1:AE:9B:E6 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d1:f3:56:19:e9:da:a3:54:98:6a:4a:28:5c:08:1e:7a:0f: 24:18:42:c3:53:f1:9d:78:27:a3:79:18:d1:b2:3a:d7:de:6c: e5:de:2b:42:72:76:cc:da:f2:27:3f:4a:30:4c:7a:29:d9:e2: 4d:1e:d3:5f:3b:af:45:ef:4c:0f:88:70:43:16:68:c7:74:d9: 27:6a:55:40:66:0b:b5:13:c4:13:1e:73:69:35:43:8c:f3:f9: cf:39:6c:eb:e7:2d:32:46:dc:e8:38:05:16:ed:b3:1f:07:ae: 8c:f8:7c:61:c5:00:90:2f:61:0e:80:5a:5f:72:4d:8b:f4:93: 77:01:25:67:15:db:a0:bb:b6:21:e7:1d:7d:88:39:e3:2c:63: f3:45:60:ea:ce:a2:fa:8d:9f:8c:f0:fe:4b:a1:0d:2b:93:71: 8e:e3:9e:ec:42:e3:8c:96:35:b3:17:0c:5b:5c:59:c3:5b:a6: 56:6a:2f:63:e0:6c:62:b4:15:b8:c9:43:57:58:8a:95:1d:31: 29:d2:f4:8a:cd:df:12:fc:e2:cf:ac:13:af:4d:af:70:8b:c7: 0f:58:fc:e9:01:a2:09:79:27:ad:f7:21:eb:54:7d:b2:2e:0c: e7:ba:0f:71:9c:ad:20:58:0e:3d:a1:b8:48:c9:a4:84:e7:58: f7:ac:b0:bc -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICStgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDA5MTQ1MDExWhcNMjYwNDE2MTQ1MDExWjAYMRYwFAYD VQQDEw02OWQ3YmNhMy1jNWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bAzYItLLzhJ+UjXjPRlSgJ7OM3sV6wKuGNddHnc3vVoUDn0GtECBkRorhDE HsiiuewyzvIO+Kj40SRQrjYR/a7AOCJcwgQ254YWHE1XRtNwqFKfsepKNRoCCbfl 3hk8SVgN8tfY5SGz5FoZ8suQqzPy9OAGocFGF3bnrQc9bhysP0Sn1T94h32BYTlb 25SNgV08KRPTHfx05mauL08eWD2kv+quJN7YWgLJbtBj+k9UZcdSGCkdim07JKlA kE9v6XabuBZqtArcdTj7sebXGegspXkt25XhUneHxJcuEN76BECTNSNB4cfuKiSU ilPljb/8LsDJrrfkbUqa1nvLFQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFPRWxmSp G5y+e6zUPvPQZZbhrpvmMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAQtHzVhnp2qNUmGpKKFwIHnoPJBhCw1PxnXgno3kY0bI6 195s5d4rQnJ2zNryJz9KMEx6KdniTR7TXzuvRe9MD4hwQxZox3TZJ2pVQGYLtRPE Ex5zaTVDjPP5zzls6+ctMkbc6DgFFu2zHweujPh8YcUAkC9hDoBaX3JNi/STdwEl ZxXboLu2IecdfYg54yxj80Vg6s6i+o2fjPD+S6ENK5NxjuOe7ELjjJY1sxcMW1xZ w1umVmovY+BsYrQVuMlDV1iKlR0xKdL0is3fEvziz6wTr02vcIvHD1j86QGiCXkn rfch61R9si4M57oPcZytIFgOPaG4SMmkhOdY96ywvA== -----END CERTIFICATE-----Generated at Thu Apr 9 23:06:42 2026 by rpki-client