$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Y6hRYjjnEHZmQhjlgYmF6a2DWWNWSdB7aDzjVxmNPbw= Subject key identifier: 02:85:9B:CA:8F:B9:96:78:CC:B4:EA:5E:89:6D:1F:F0:5D:C7:1C:2B Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B02 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A47 Signing time: Thu 23 Apr 2026 02:50:11 +0000 Manifest this update: Thu 23 Apr 2026 02:50:11 +0000 Manifest next update: Thu 30 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: VvLylsR5+h9bzqil2h3NEzsyQaawTgDvtR7w2E0y35o=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19202 (0x4b02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 23 02:50:11 2026 GMT Not After : Apr 30 02:50:11 2026 GMT Subject: CN=69e988e3-9b94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:03:aa:c1:24:dc:3e:81:d4:2c:85:18:9e:ee: 8a:c4:ea:8e:58:53:ff:ba:54:e7:7d:cd:98:dc:72: 62:7a:48:28:a7:c4:c0:57:6c:9f:ee:63:75:d3:24: 65:b8:1f:0f:87:63:f5:b1:31:2f:be:9f:86:82:27: fe:b7:34:71:1d:1e:45:ac:86:c7:4f:4a:c7:15:e7: a7:e2:a8:b4:db:2f:f7:bf:00:f2:60:82:8d:5a:9e: 4c:d5:76:a0:a3:c6:f7:ae:3a:5b:22:0c:59:d0:1e: 19:f3:2c:c6:57:77:a9:14:26:3e:01:ce:a7:36:d7: 80:b6:5c:2c:2a:4a:79:64:87:a1:ac:3c:5b:c6:2d: cd:41:45:84:d2:c0:16:c9:4d:21:dd:0b:fd:7a:74: 1d:c5:39:03:f8:ee:da:37:74:97:15:87:14:52:a6: 0a:b9:55:59:34:87:7b:14:10:ae:26:05:7c:65:11: 51:4e:04:1b:eb:8a:94:e0:b9:d7:71:13:84:db:e2: b5:df:04:08:f3:fc:f9:46:7a:97:59:1c:23:58:d4: 1a:5c:72:25:20:7e:45:2b:76:01:2c:f1:e3:fd:b5: 13:0d:61:18:d6:c5:9b:2b:6b:7f:e3:ea:ed:e6:ec: 13:97:03:51:4f:c8:65:b4:dd:3f:d0:a2:86:d8:8d: f6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:85:9B:CA:8F:B9:96:78:CC:B4:EA:5E:89:6D:1F:F0:5D:C7:1C:2B X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:39:f9:3c:7f:21:52:5d:55:ac:15:d6:b6:a4:9b:cf:d2:e4: b2:ec:4b:a6:7e:9c:bf:b6:f5:b9:09:4c:55:5b:7a:7c:b7:e1: d4:12:c9:25:98:e3:d1:f8:a7:2b:89:92:8a:9f:26:34:ea:97: 74:5d:b4:03:af:90:08:56:e6:69:11:85:0d:c4:cc:e2:86:89: 7d:9b:31:5c:7f:3a:67:88:77:0d:72:75:ed:c7:8f:e0:14:12: 59:1f:d3:ba:fe:a0:2e:80:d2:94:74:8d:74:23:b9:9b:1b:e7: 0c:69:74:de:0b:17:8e:2a:94:84:87:57:a9:20:8b:0a:a8:34: 5c:3e:4a:99:95:17:85:d6:95:24:5f:68:35:bc:5e:23:b7:16: 91:66:70:6a:1f:75:0c:5c:b9:ff:d4:46:7d:15:cd:05:99:5b: a0:28:31:07:74:97:fa:03:ad:c6:89:c3:a0:3a:f3:c6:74:ca: 73:d0:3b:54:0e:85:50:4f:6b:3d:86:c9:00:e7:56:26:b3:ff: 74:36:4a:a7:9e:50:6b:2c:c4:01:8b:3f:18:a5:d7:48:4a:46: 9f:8c:a2:ae:26:42:be:55:e0:62:29:fc:51:4b:37:58:2a:23: 2e:66:af:66:45:f0:2b:e3:14:49:25:2c:9a:46:55:72:a1:21: b9:d2:e6:f1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDIzMDI1MDExWhcNMjYwNDMwMDI1MDExWjAYMRYwFAYD VQQDEw02OWU5ODhlMy05Yjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwOqwSTcPoHULIUYnu6KxOqOWFP/ulTnfc2Y3HJiekgop8TAV2yf7mN10yRl uB8Ph2P1sTEvvp+Ggif+tzRxHR5FrIbHT0rHFeen4qi02y/3vwDyYIKNWp5M1Xag o8b3rjpbIgxZ0B4Z8yzGV3epFCY+Ac6nNteAtlwsKkp5ZIehrDxbxi3NQUWE0sAW yU0h3Qv9enQdxTkD+O7aN3SXFYcUUqYKuVVZNId7FBCuJgV8ZRFRTgQb64qU4LnX cROE2+K13wQI8/z5RnqXWRwjWNQaXHIlIH5FK3YBLPHj/bUTDWEY1sWbK2t/4+rt 5uwTlwNRT8hltN0/0KKG2I32RQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFAKFm8qP uZZ4zLTqXoltH/BdxxwrMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAbDn5PH8hUl1VrBXWtqSbz9LksuxLpn6cv7b1uQlMVVt6 fLfh1BLJJZjj0finK4mSip8mNOqXdF20A6+QCFbmaRGFDcTM4oaJfZsxXH86Z4h3 DXJ17ceP4BQSWR/Tuv6gLoDSlHSNdCO5mxvnDGl03gsXjiqUhIdXqSCLCqg0XD5K mZUXhdaVJF9oNbxeI7cWkWZwah91DFy5/9RGfRXNBZlboCgxB3SX+gOtxonDoDrz xnTKc9A7VA6FUE9rPYbJAOdWJrP/dDZKp55QayzEAYs/GKXXSEpGn4yiriZCvlXg Yin8UUs3WCojLmavZkXwK+MUSSUsmkZVcqEhudLm8Q== -----END CERTIFICATE-----Generated at Thu Apr 23 15:59:41 2026 by rpki-client