$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: AQH8RbxhE/k/pkqUiDmweoNm1+qXFwmsEXSt3sRQTmc= Subject key identifier: EC:D4:C4:D7:CC:EC:2B:30:A3:28:10:9A:78:69:91:8C:A3:3A:F9:D9 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B56 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A99 Signing time: Mon 18 May 2026 14:52:26 +0000 Manifest this update: Mon 18 May 2026 14:52:25 +0000 Manifest next update: Mon 25 May 2026 14:52:25 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: soDofMC9bKsjpzp4z9noVKpppV6VCCn5Bwm65Ewx6jk=) 2: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 May 2026 14:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19286 (0x4b56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 18 14:52:25 2026 GMT Not After : May 25 14:52:25 2026 GMT Subject: CN=6a0b27aa-468f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:c6:7d:5e:34:ef:90:cc:ad:ff:4c:a5:74: 40:84:81:65:a7:2c:4f:40:a0:5b:e7:15:4e:3c:b1: e0:80:11:5a:4b:0b:68:37:cf:d2:37:0b:3f:3d:19: bf:34:d9:60:fc:d1:af:14:6c:65:07:3a:b3:6a:ec: 22:c9:94:ec:cf:b6:de:d4:60:01:ec:df:47:9e:35: 38:8e:27:39:73:3b:8f:d6:3e:78:83:01:6a:d0:30: 6f:16:f6:d9:32:f2:4e:ee:77:0b:b8:71:4f:ae:1e: 7d:64:33:6e:eb:1e:77:2a:fa:5e:ff:a1:3e:2e:45: 69:f6:94:be:3c:fd:40:47:57:82:6f:11:50:80:8f: 4c:b0:e9:5d:46:9a:05:a9:a7:ab:a8:40:0b:ea:68: e7:45:5a:3d:02:fb:97:4b:a0:21:3c:6b:9d:d1:39: 73:f5:42:cb:7d:5c:48:ad:4f:11:79:fd:b6:a1:73: 3e:d9:d6:e4:0a:96:5d:37:69:f2:28:48:f6:f3:fb: 1f:e6:d6:e5:f6:8c:6d:fc:d9:3e:17:10:47:ca:6d: e0:c3:bb:b4:3b:75:e5:11:35:56:c3:23:83:9b:d8: d4:60:dd:1b:6d:61:51:43:61:12:34:a0:56:ca:da: b3:d9:73:a8:fc:a4:ec:67:de:e5:55:a5:65:2d:fb: 2b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:D4:C4:D7:CC:EC:2B:30:A3:28:10:9A:78:69:91:8C:A3:3A:F9:D9 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:30:fa:b0:23:3d:95:dc:8d:7c:58:65:f6:3f:fb:63:e5:8a: 81:bf:db:dd:0f:22:db:5e:fe:d8:3f:c0:47:8b:63:b8:02:c6: 76:d7:61:a1:e3:1c:94:6d:aa:10:e1:81:f6:30:ab:2a:b5:68: 0b:db:e2:3d:07:43:9c:6e:cb:41:97:31:1f:bf:6e:18:44:91: 2e:d7:c8:0f:db:4f:2a:3b:c9:99:d3:50:c5:6b:2a:52:b1:cd: 57:5e:e2:e7:74:bd:71:79:3c:a8:42:fe:a1:42:e1:cd:11:c8: d2:d7:f1:6c:de:9e:84:70:ad:d8:ff:0f:8d:81:31:93:83:3c: b0:14:5a:3e:92:9c:3b:e7:5c:75:34:6b:78:b3:62:b1:ba:83: ff:2a:4c:74:aa:9d:df:86:04:1f:95:a7:57:9a:d9:07:bc:51: 96:c6:16:78:19:a2:5a:84:7a:a5:53:f3:33:35:ef:11:3c:f5: b7:8d:da:1b:cd:65:61:80:4f:fb:2d:5d:c4:d6:8b:f2:c8:a8: f9:c9:2f:2d:85:29:0c:f4:88:4e:a8:53:be:a5:fd:56:14:f5: 85:34:f6:93:12:42:4f:3d:d1:fa:89:99:8f:b5:ae:b2:a8:70: f9:a4:c8:9c:17:a3:6e:96:b5:39:fe:6d:cb:8c:bf:7a:4b:7d: 35:9d:67:05 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTE4MTQ1MjI1WhcNMjYwNTI1MTQ1MjI1WjAYMRYwFAYD VQQDEw02YTBiMjdhYS00NjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8rGfV4075DMrf9MpXRAhIFlpyxPQKBb5xVOPLHggBFaSwtoN8/SNws/PRm/ NNlg/NGvFGxlBzqzauwiyZTsz7be1GAB7N9HnjU4jic5czuP1j54gwFq0DBvFvbZ MvJO7ncLuHFPrh59ZDNu6x53Kvpe/6E+LkVp9pS+PP1AR1eCbxFQgI9MsOldRpoF qaerqEAL6mjnRVo9AvuXS6AhPGud0Tlz9ULLfVxIrU8Ref22oXM+2dbkCpZdN2ny KEj28/sf5tbl9oxt/Nk+FxBHym3gw7u0O3XlETVWwyODm9jUYN0bbWFRQ2ESNKBW ytqz2XOo/KTsZ97lVaVlLfsrRwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOzUxNfM 7CswoygQmnhpkYyjOvnZMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAnjD6sCM9ldyNfFhl9j/7Y+WKgb/b3Q8i217+2D/AR4tj uALGdtdhoeMclG2qEOGB9jCrKrVoC9viPQdDnG7LQZcxH79uGESRLtfID9tPKjvJ mdNQxWsqUrHNV17i53S9cXk8qEL+oULhzRHI0tfxbN6ehHCt2P8PjYExk4M8sBRa PpKcO+dcdTRreLNisbqD/ypMdKqd34YEH5WnV5rZB7xRlsYWeBmiWoR6pVPzMzXv ETz1t43aG81lYYBP+y1dxNaL8sio+ckvLYUpDPSITqhTvqX9VhT1hTT2kxJCTz3R +omZj7Wusqhw+aTInBejbpa1Of5ty4y/ekt9NZ1nBQ== -----END CERTIFICATE-----Generated at Mon May 18 20:44:16 2026 by rpki-client