$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: cAseZ/yZ+ovUF+5LClNjJNYCETkH7a/YNxx843+b08o= Subject key identifier: 82:A3:60:E8:54:75:53:15:32:9A:0C:E5:45:49:15:08:16:12:D7:6B Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AA9 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49F0 Signing time: Wed 25 Mar 2026 14:50:11 +0000 Manifest this update: Wed 25 Mar 2026 14:50:10 +0000 Manifest next update: Wed 01 Apr 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ABKGL/L4PCaPIBlE9m5Kk05UpzsXP1c3CpRaDrUKB1k=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19113 (0x4aa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 25 14:50:10 2026 GMT Not After : Apr 1 14:50:10 2026 GMT Subject: CN=69c3f622-f2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:f1:87:2b:57:75:a7:c0:3f:43:1a:5d:ee: 00:ae:ac:17:43:43:12:05:e2:4c:b0:b0:5d:4a:28: 82:60:2c:ad:a3:a2:c6:0d:47:cc:4e:d3:1b:d9:1e: b7:29:53:38:4a:dd:48:6a:5f:ab:c7:ea:4b:7d:3e: c0:a0:98:33:0d:d6:83:09:67:d3:86:cc:b0:d3:68: 73:07:71:df:9b:30:e4:f5:8d:75:4d:d1:24:22:ab: dd:27:bd:68:3d:62:51:7c:bb:62:0d:66:49:8e:bf: 2d:5d:6b:e2:f9:a9:5d:a3:16:87:5d:d5:4b:2e:d8: f6:2a:28:18:a2:76:c8:c2:bf:7c:66:78:8b:69:24: e6:ac:8e:63:ee:c0:ee:33:f6:1a:8f:a4:19:76:3e: f0:8b:4f:9a:ea:05:b5:8a:15:c7:23:ee:d0:b3:cb: b8:a9:1d:d6:93:8f:71:64:07:76:95:a0:27:a5:4e: 1c:0a:4b:8e:14:5b:8e:f7:a4:2c:e0:dc:1a:d6:b7: 50:a1:51:96:9c:a0:ef:ff:7e:13:64:e6:25:ac:b7: d1:51:a7:67:cb:4c:7c:e0:91:bc:0e:6b:e6:81:56: 1f:6b:08:55:e0:5d:ba:df:f2:9c:f5:f7:dd:a0:b2: 04:1a:e6:38:d0:f0:03:0d:61:a6:b6:2e:1c:13:51: 7b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A3:60:E8:54:75:53:15:32:9A:0C:E5:45:49:15:08:16:12:D7:6B X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:50:fb:75:a9:82:3f:10:a3:4a:62:de:10:fa:f3:d4:ee:27: 32:57:c9:02:4e:05:e6:3d:a0:f1:06:c7:3e:af:3e:b2:43:ba: 08:be:bd:dc:28:7d:2d:8b:7a:5c:ce:3f:58:77:6b:74:e8:2a: 87:66:89:5e:05:15:6c:5b:52:52:59:f7:3a:27:73:29:26:f4: fc:ce:5c:76:d8:bb:ff:a6:77:6f:a6:cd:94:ba:ba:e7:f1:b1: c9:b4:2d:c5:a0:86:64:a6:47:36:64:4f:da:c1:56:c3:f0:c0: 8e:fc:1e:80:a4:6d:73:90:84:a2:16:af:35:8b:a8:72:76:ce: 2b:5d:94:19:f6:40:b8:12:6b:19:ec:15:66:70:e5:bf:d5:b7: 9d:d2:5d:d3:8c:be:48:38:5c:de:f0:68:83:5e:cb:85:d9:82: 34:ee:c2:79:ea:eb:3d:27:be:3d:4f:1e:0a:75:78:8c:02:ed: b0:3f:51:83:93:44:84:a4:37:87:21:6b:47:2b:64:bf:36:7f: 81:1e:6c:c4:30:0d:79:38:8b:49:2c:03:a1:91:be:53:f2:7f: cf:09:c9:9a:a4:97:a1:b0:5d:f0:64:da:b2:b3:e7:54:4a:98: f4:85:56:a3:c6:6e:53:e8:0f:5a:b8:37:6e:7e:0b:94:34:76: d1:25:9b:f7 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzI1MTQ1MDEwWhcNMjYwNDAxMTQ1MDEwWjAYMRYwFAYD VQQDEw02OWMzZjYyMi1mMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5TxhytXdafAP0MaXe4ArqwXQ0MSBeJMsLBdSiiCYCyto6LGDUfMTtMb2R63 KVM4St1Ial+rx+pLfT7AoJgzDdaDCWfThsyw02hzB3HfmzDk9Y11TdEkIqvdJ71o PWJRfLtiDWZJjr8tXWvi+aldoxaHXdVLLtj2KigYonbIwr98ZniLaSTmrI5j7sDu M/Yaj6QZdj7wi0+a6gW1ihXHI+7Qs8u4qR3Wk49xZAd2laAnpU4cCkuOFFuO96Qs 4Nwa1rdQoVGWnKDv/34TZOYlrLfRUadny0x84JG8DmvmgVYfawhV4F263/Kc9ffd oLIEGuY40PADDWGmti4cE1F7PQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFIKjYOhU dVMVMpoM5UVJFQgWEtdrMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAfVD7damCPxCjSmLeEPrz1O4nMlfJAk4F5j2g8QbHPq8+ skO6CL693Ch9LYt6XM4/WHdrdOgqh2aJXgUVbFtSUln3OidzKSb0/M5cdti7/6Z3 b6bNlLq65/GxybQtxaCGZKZHNmRP2sFWw/DAjvwegKRtc5CEohavNYuocnbOK12U GfZAuBJrGewVZnDlv9W3ndJd04y+SDhc3vBog17LhdmCNO7CeerrPSe+PU8eCnV4 jALtsD9Rg5NEhKQ3hyFrRytkvzZ/gR5sxDANeTiLSSwDoZG+U/J/zwnJmqSXobBd 8GTasrPnVEqY9IVWo8ZuU+gPWrg3bn4LlDR20SWb9w== -----END CERTIFICATE-----Generated at Thu Mar 26 01:19:13 2026 by rpki-client