$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: OruG9o9PZ//RG6MGrFO0o6OTknAOWxrSTFNYVuCGqa0= Subject key identifier: 2A:6B:A5:8D:80:E3:B7:3D:38:FA:44:9C:26:79:62:D5:AB:3A:57:82 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4ADF Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A25 Signing time: Sun 12 Apr 2026 02:50:11 +0000 Manifest this update: Sun 12 Apr 2026 02:50:11 +0000 Manifest next update: Sun 19 Apr 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: X/BiewQqc3UYqSy5/bJCMUKYPItnzLevsibpFlLQGyc=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 4: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 5: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19167 (0x4adf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 12 02:50:11 2026 GMT Not After : Apr 19 02:50:11 2026 GMT Subject: CN=69db0863-b4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2c:83:4b:d6:27:f6:f0:c5:ad:9f:35:91:7c: 13:3a:d6:8b:c2:4b:e5:2c:00:71:2d:5c:61:39:fa: 65:54:39:95:5c:4f:cc:7c:52:90:f5:45:94:4b:06: 1f:1c:b1:51:27:3d:0d:51:5c:12:23:35:d0:cf:ea: 76:a7:ce:ab:35:33:1f:f2:37:0a:96:d0:3b:2d:b7: 78:9a:73:66:05:2b:fe:3b:64:ca:6b:f5:de:d1:28: 5d:b7:36:e4:d4:5f:39:9c:5c:40:c8:8c:17:24:d2: 93:a1:b7:12:ff:9c:c9:3f:09:31:65:65:4d:6a:dd: 52:5f:16:a2:27:44:d0:7c:75:9b:79:f0:30:02:8a: b7:4b:eb:af:a3:ac:70:9e:f0:d6:e9:0d:c9:8e:75: 3f:8a:6c:ab:d7:ce:71:c9:18:19:b2:68:d4:3d:30: 17:05:34:65:2f:40:cc:7a:a9:58:ff:40:f2:f4:a3: 10:59:e0:e0:ef:b5:61:c8:b4:ab:28:a2:9c:23:a3: 7f:72:66:19:8c:07:ee:be:01:cf:8b:34:bd:cf:c4: 14:ad:9a:a7:97:19:26:bc:ae:4d:e8:b8:48:f0:92: 45:32:89:4e:c3:4a:a3:c4:57:83:4d:3a:d8:12:4a: c1:bc:71:e8:31:62:68:5b:c9:e5:3c:27:1a:bf:19: 8c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:6B:A5:8D:80:E3:B7:3D:38:FA:44:9C:26:79:62:D5:AB:3A:57:82 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7d:82:c8:35:58:ae:e2:9c:5e:fc:4f:f3:38:e1:91:89:d8: 4d:b8:76:86:c1:43:fc:62:e6:40:04:d4:2c:32:0e:e6:73:bf: 44:5f:04:59:70:85:fa:7b:84:70:5a:c7:7a:67:04:19:ad:4e: 22:f3:ff:1b:ca:2f:f9:ec:6d:09:74:12:c1:f2:4f:3c:25:cc: ea:3e:fd:8e:66:16:0a:6e:99:34:ae:33:4e:90:b8:5e:9b:3b: 2d:75:eb:b9:92:08:ca:47:1d:33:a9:7f:da:7c:cb:17:77:30: 1e:f3:f0:60:77:92:76:f4:5f:5d:9b:52:d0:c8:7d:3f:11:0c: a6:05:44:5e:ff:fd:6f:96:5a:7d:e0:b2:86:c4:eb:61:ca:55: f8:bb:05:ab:5a:c4:e0:d8:4e:93:cd:fe:d9:17:d0:f6:80:04: d3:44:81:ef:f1:88:95:b3:b7:0c:6f:ed:e3:1c:de:99:4d:6b: 09:f8:f6:7b:34:1b:de:ef:76:42:53:2e:4e:1b:ca:51:0e:06: fa:27:08:b0:25:dc:6b:f8:9a:49:5a:ef:5b:53:e4:fd:da:f0: c3:22:41:51:9b:53:73:38:fe:5d:39:cf:ea:57:42:a6:a7:c6: 1f:4c:8d:2c:e8:60:e7:ea:be:bc:4a:37:3f:ac:91:99:c0:1a: 60:ce:cf:c8 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDEyMDI1MDExWhcNMjYwNDE5MDI1MDExWjAYMRYwFAYD VQQDEw02OWRiMDg2My1iNGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiyDS9Yn9vDFrZ81kXwTOtaLwkvlLABxLVxhOfplVDmVXE/MfFKQ9UWUSwYf HLFRJz0NUVwSIzXQz+p2p86rNTMf8jcKltA7Lbd4mnNmBSv+O2TKa/Xe0Shdtzbk 1F85nFxAyIwXJNKTobcS/5zJPwkxZWVNat1SXxaiJ0TQfHWbefAwAoq3S+uvo6xw nvDW6Q3JjnU/imyr185xyRgZsmjUPTAXBTRlL0DMeqlY/0Dy9KMQWeDg77VhyLSr KKKcI6N/cmYZjAfuvgHPizS9z8QUrZqnlxkmvK5N6LhI8JJFMolOw0qjxFeDTTrY EkrBvHHoMWJoW8nlPCcavxmMQwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFCprpY2A 47c9OPpEnCZ5YtWrOleCMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEALH2CyDVYruKcXvxP8zjhkYnYTbh2hsFD/GLmQATULDIO 5nO/RF8EWXCF+nuEcFrHemcEGa1OIvP/G8ov+extCXQSwfJPPCXM6j79jmYWCm6Z NK4zTpC4Xps7LXXruZIIykcdM6l/2nzLF3cwHvPwYHeSdvRfXZtS0Mh9PxEMpgVE Xv/9b5ZafeCyhsTrYcpV+LsFq1rE4NhOk83+2RfQ9oAE00SB7/GIlbO3DG/t4xze mU1rCfj2ezQb3u92QlMuThvKUQ4G+icIsCXca/iaSVrvW1Pk/drwwyJBUZtTczj+ XTnP6ldCpqfGH0yNLOhg5+q+vEo3P6yRmcAaYM7PyA== -----END CERTIFICATE-----Generated at Sun Apr 12 12:07:33 2026 by rpki-client