$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: eteBnIvVkDtVq7x//durSxrRJ+pfTD1WjkOummg78OA= Subject key identifier: 9C:4A:F6:A0:2F:96:4D:D2:1C:EC:1D:FE:4E:04:13:27:19:11:49:1A Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A85 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49CD Signing time: Sat 14 Mar 2026 14:50:11 +0000 Manifest this update: Sat 14 Mar 2026 14:50:10 +0000 Manifest next update: Sat 21 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Yvw06t11Tz5xiXiTcwMxSWV+T0b0iGZfmjf6vVxlZ0s=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 10: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19077 (0x4a85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 14 14:50:10 2026 GMT Not After : Mar 21 14:50:10 2026 GMT Subject: CN=69b575a3-5743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:cd:71:48:85:b7:b0:ac:a0:6c:42:b0:ad: d8:47:f6:7c:56:74:85:3a:e9:74:dd:0d:8a:12:90: 16:fb:64:1d:4b:d6:e2:d5:7b:ef:2d:d2:2a:14:2c: 2c:db:f8:7c:f1:f9:0f:d4:4b:ec:ef:7a:a8:4b:75: 12:7f:fe:bd:2e:db:35:ef:be:40:80:e1:b6:7b:aa: 15:d4:1f:08:4b:4f:57:d0:08:cd:d5:45:00:62:77: 39:f5:a4:35:b9:44:57:19:7d:14:6b:33:c1:04:9d: d9:99:47:21:56:d6:33:a2:d3:98:74:0b:f8:74:d5: 83:ff:ad:8a:81:32:09:39:da:19:c5:e3:f4:ef:9a: b6:a2:a3:20:30:76:f9:15:54:9c:b1:61:e7:5b:97: 70:d7:bd:ac:31:13:a6:8f:dd:f4:9b:f0:9e:b7:bb: 27:b2:a8:d6:cc:6a:2e:c7:0a:90:8a:8f:7a:c7:16: ad:b8:fd:72:e8:eb:fe:a3:76:4e:67:3b:21:ee:be: 7b:ca:27:d2:20:1c:8e:2a:97:57:98:eb:71:37:b6: 43:51:46:3b:ce:a8:64:7b:15:71:c1:76:04:34:1e: 16:3f:85:4d:54:ed:77:7f:60:a2:3f:97:9c:f1:65: 8e:13:5a:40:06:3c:e8:0d:2d:cc:8e:0a:37:f2:96: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4A:F6:A0:2F:96:4D:D2:1C:EC:1D:FE:4E:04:13:27:19:11:49:1A X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:99:df:a3:c0:e7:a0:7f:c7:f0:2f:25:f0:04:55:21:8b:7c: d0:97:9e:8b:ab:67:5f:3a:93:fb:20:a8:f6:f5:aa:36:48:b1: 7f:07:8f:e7:45:50:b0:53:88:1c:ea:76:ff:c3:c7:47:dc:4c: e6:41:e7:fd:b5:ee:2d:25:44:2a:0f:2b:bd:67:b9:51:4f:90: b6:41:f7:e2:46:25:a3:4e:4b:54:3b:ea:4e:8b:23:56:e9:43: c8:7a:70:06:bb:68:01:1c:77:14:3e:51:41:31:ce:14:8a:2f: cf:cc:4d:48:34:54:36:ec:09:28:f1:bc:40:a5:58:eb:10:7e: 3c:f3:f0:3a:72:35:25:c7:c2:c7:8a:a1:da:1c:35:aa:e9:fc: f1:89:c9:cd:e9:2e:4a:20:7f:4b:23:02:63:c1:b5:ae:d4:f3: 18:fd:b4:be:91:4e:27:af:12:b4:83:88:a5:de:10:1e:56:a3: 6f:9b:d2:10:21:b2:10:3a:87:28:42:23:07:2c:c7:72:a8:44: 31:bb:7a:c7:90:a6:80:c0:64:c3:16:8b:63:f1:1c:31:a1:86: ca:1a:2c:14:5d:f3:9e:a9:e8:5a:2a:d9:7a:8f:05:0c:ef:da: ad:fe:c2:5a:0b:9b:a8:0e:3a:73:68:51:a2:52:9c:b3:1e:c9: e3:76:7e:98 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzE0MTQ1MDEwWhcNMjYwMzIxMTQ1MDEwWjAYMRYwFAYD VQQDEw02OWI1NzVhMy01NzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAjNcUiFt7CsoGxCsK3YR/Z8VnSFOul03Q2KEpAW+2QdS9bi1XvvLdIqFCws 2/h88fkP1Evs73qoS3USf/69Lts1775AgOG2e6oV1B8IS09X0AjN1UUAYnc59aQ1 uURXGX0UazPBBJ3ZmUchVtYzotOYdAv4dNWD/62KgTIJOdoZxeP075q2oqMgMHb5 FVScsWHnW5dw172sMROmj930m/Cet7snsqjWzGouxwqQio96xxatuP1y6Ov+o3ZO Zzsh7r57yifSIByOKpdXmOtxN7ZDUUY7zqhkexVxwXYENB4WP4VNVO13f2CiP5ec 8WWOE1pABjzoDS3Mjgo38pYlxQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFJxK9qAv lk3SHOwd/k4EEycZEUkaMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAKZnfo8DnoH/H8C8l8ARVIYt80Jeei6tnXzqT+yCo9vWq NkixfweP50VQsFOIHOp2/8PHR9xM5kHn/bXuLSVEKg8rvWe5UU+QtkH34kYlo05L VDvqTosjVulDyHpwBrtoARx3FD5RQTHOFIovz8xNSDRUNuwJKPG8QKVY6xB+PPPw OnI1JcfCx4qh2hw1qun88YnJzekuSiB/SyMCY8G1rtTzGP20vpFOJ68StIOIpd4Q Hlajb5vSECGyEDqHKEIjByzHcqhEMbt6x5CmgMBkwxaLY/EcMaGGyhosFF3znqno WirZeo8FDO/arf7CWgubqA46c2hRolKcsx7J43Z+mA== -----END CERTIFICATE-----Generated at Sat Mar 14 21:04:33 2026 by rpki-client