$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Rm4Ym9Qix1m6vIYwJfk5FMxGMqpdXNrVmXu67Qy2H9c= Subject key identifier: 68:5D:4D:95:CA:D2:01:FF:86:26:31:97:AD:B9:DB:03:51:BE:A3:07 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A8E Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49D6 Signing time: Tue 17 Mar 2026 14:50:11 +0000 Manifest this update: Tue 17 Mar 2026 14:50:10 +0000 Manifest next update: Tue 24 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 95/A3i6zpmwU/ocQmGujEqFQR4mmo4q6lOeXM3MJJ3I=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19086 (0x4a8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 17 14:50:10 2026 GMT Not After : Mar 24 14:50:10 2026 GMT Subject: CN=69b96a23-3bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4a:de:56:68:53:aa:2f:09:2c:e5:0a:ca:60: a7:aa:85:2c:22:31:1c:e0:fa:30:c6:32:4d:1b:9c: 31:30:9f:85:aa:e2:f8:5f:1a:4d:00:c7:32:c4:da: 4c:b9:c1:2f:e9:86:91:60:3c:9a:b6:3c:75:f4:68: 28:a4:53:50:59:37:03:78:2c:1f:de:c4:b3:05:65: e9:b3:21:3a:3b:6e:07:a6:63:1e:5e:ed:ec:cb:82: 93:66:11:0e:0a:4d:78:8f:5b:56:28:35:4f:ee:6d: 75:da:f7:c1:1c:9d:0e:85:05:b4:8e:8a:7b:17:e9: f1:5c:72:d8:85:90:4f:5a:78:bf:fd:fd:ad:5d:c2: 4b:5e:7f:58:56:fd:60:47:4f:de:46:d2:c1:06:8c: 9b:68:14:b9:88:03:d0:01:ce:16:75:f3:a8:b4:ae: 68:00:4e:97:52:08:c3:6f:c4:e9:20:1a:d7:46:9f: 5b:d0:98:6f:18:ae:03:4c:7b:ff:0d:d3:92:c9:d2: c6:cb:29:47:d6:fa:15:dd:0d:03:24:02:f7:3b:df: 28:7a:5e:aa:51:d2:46:06:5b:39:00:f1:e8:89:23: 23:f8:e6:54:25:99:a0:cf:99:b1:5a:bd:b1:3f:18: 5c:92:5b:e1:97:a3:0c:2e:4b:02:c9:19:5e:6b:f5: 43:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5D:4D:95:CA:D2:01:FF:86:26:31:97:AD:B9:DB:03:51:BE:A3:07 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:a6:4b:b9:89:0c:3f:03:57:d0:76:94:47:84:9b:84:d0:79: cf:93:d6:9b:3b:a4:71:d2:9c:d1:9e:78:d4:fb:46:f5:af:9b: cb:22:07:97:8f:4f:b1:24:70:a1:51:6d:0d:bb:ea:62:cd:b0: c7:f7:28:2c:22:e0:0c:26:f6:fb:72:28:df:97:c4:d6:66:be: c0:e4:7e:8a:00:af:7a:be:c0:29:d1:27:e3:31:98:a6:c5:a2: 19:f9:c6:89:8a:3d:9d:4c:7b:44:42:69:55:13:bf:eb:14:c6: cf:f0:6a:23:c6:0e:a1:d8:53:08:2b:96:dc:dd:13:a5:7d:20: c7:60:a5:ae:41:07:75:f7:ed:a2:74:df:f5:1a:ef:b7:77:61: bc:4d:ee:53:f0:74:c1:3f:35:b2:95:44:30:f2:f9:92:3c:2f: d2:97:b4:37:66:2b:84:66:b5:8e:d8:c4:eb:97:93:d5:56:62: 3d:77:fe:1c:3c:03:a9:97:69:ba:b2:1f:74:e2:ba:2e:65:61: f7:7c:0e:41:c1:31:46:75:95:f3:ce:81:56:d5:4c:7f:ba:14: c9:fe:36:b2:62:64:00:fe:b4:4f:6c:5c:59:2e:f0:41:9a:91: 0d:5f:45:80:62:4c:ea:3c:9d:64:76:3d:8c:41:a7:7d:42:38: 3a:13:b7:70 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzE3MTQ1MDEwWhcNMjYwMzI0MTQ1MDEwWjAYMRYwFAYD VQQDEw02OWI5NmEyMy0zYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmUreVmhTqi8JLOUKymCnqoUsIjEc4PowxjJNG5wxMJ+FquL4XxpNAMcyxNpM ucEv6YaRYDyatjx19GgopFNQWTcDeCwf3sSzBWXpsyE6O24HpmMeXu3sy4KTZhEO Ck14j1tWKDVP7m112vfBHJ0OhQW0jop7F+nxXHLYhZBPWni//f2tXcJLXn9YVv1g R0/eRtLBBoybaBS5iAPQAc4WdfOotK5oAE6XUgjDb8TpIBrXRp9b0JhvGK4DTHv/ DdOSydLGyylH1voV3Q0DJAL3O98oel6qUdJGBls5APHoiSMj+OZUJZmgz5mxWr2x Pxhcklvhl6MMLksCyRlea/VDNwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFGhdTZXK 0gH/hiYxl6252wNRvqMHMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAkqZLuYkMPwNX0HaUR4SbhNB5z5PWmzukcdKc0Z541PtG 9a+byyIHl49PsSRwoVFtDbvqYs2wx/coLCLgDCb2+3Io35fE1ma+wOR+igCver7A KdEn4zGYpsWiGfnGiYo9nUx7REJpVRO/6xTGz/BqI8YOodhTCCuW3N0TpX0gx2Cl rkEHdfftonTf9Rrvt3dhvE3uU/B0wT81spVEMPL5kjwv0pe0N2YrhGa1jtjE65eT 1VZiPXf+HDwDqZdpurIfdOK6LmVh93wOQcExRnWV886BVtVMf7oUyf42smJkAP60 T2xcWS7wQZqRDV9FgGJM6jydZHY9jEGnfUI4OhO3cA== -----END CERTIFICATE-----Generated at Tue Mar 17 18:44:19 2026 by rpki-client