$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: O83Gui7fDUfKifmUfaxt5ibu87evVzAy/mn93mWmXk4= Subject key identifier: B1:59:0A:7D:49:80:3A:21:8A:39:00:54:01:F6:85:E3:A6:70:46:32 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B5F Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AA2 Signing time: Thu 21 May 2026 14:50:12 +0000 Manifest this update: Thu 21 May 2026 14:50:11 +0000 Manifest next update: Thu 28 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 2SufcAvOZEp+h64jQsINsviWnzZgYwCJiu9KhI7fMZ8=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 12: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19295 (0x4b5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 21 14:50:11 2026 GMT Not After : May 28 14:50:11 2026 GMT Subject: CN=6a0f1ba4-a3b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:74:7c:4f:db:55:6f:24:c4:f0:7a:f6:b3:73: 62:78:9b:55:5e:fd:45:d5:a1:3f:bd:03:df:c8:87: d5:65:21:b4:ad:f5:0a:31:71:7f:23:f4:6f:3d:77: a4:22:e3:31:82:c3:96:53:38:2f:26:ea:1e:24:ad: d8:83:fc:e6:12:a9:5e:c3:12:5b:e1:8b:70:c7:af: e6:4a:24:26:19:b5:84:b7:48:3b:9b:63:b3:7b:17: 5f:20:d2:7b:1a:54:24:2f:20:cb:04:46:a7:74:e1: dd:c4:1d:1c:0d:0e:4c:f1:7c:c3:70:90:10:59:a8: e4:38:5a:e1:da:8c:4b:9f:66:ab:f5:23:9d:56:69: 8e:67:65:67:c0:ac:e0:a3:46:35:6f:4a:19:68:8e: 38:ee:a9:8e:e4:7b:2c:6a:f9:85:34:cf:d5:dc:be: 32:ef:8d:66:94:81:c1:b8:92:b1:b2:6d:80:44:2e: 39:2f:0e:d6:34:a2:d9:a9:4a:5b:32:78:bb:06:dc: 8e:ca:86:a6:1b:9b:7f:35:5e:2d:f5:85:22:d0:93: b2:82:0f:94:54:54:fa:c9:99:ec:e9:fe:ad:02:3e: 96:c5:f2:97:8f:96:29:82:c6:90:fd:9b:2e:67:72: e7:17:59:e6:1b:ab:d8:68:1b:cf:62:8d:6f:fb:01: ab:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:59:0A:7D:49:80:3A:21:8A:39:00:54:01:F6:85:E3:A6:70:46:32 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:75:cf:4c:3b:12:a3:b0:ad:0b:29:29:6d:f9:50:18:f5:12: e9:ce:03:94:a0:40:44:f0:46:7c:de:22:db:a3:04:2e:ce:2d: a4:92:de:1a:4d:35:08:e5:a4:8f:04:67:0a:48:b8:aa:c1:8b: 62:b5:ad:7c:bc:6a:c4:da:11:3a:9d:48:93:e5:8d:c5:8d:02: 67:68:01:e8:0d:3b:54:00:df:09:40:09:6f:34:51:c2:d1:81: 58:34:34:64:14:08:be:b2:ff:79:92:55:34:1d:e0:70:8f:59: b9:8a:d2:b4:1d:5f:87:74:4b:ed:16:ef:06:43:05:32:79:81: 6d:64:69:c1:b3:59:0a:b4:61:a5:9c:e5:5a:d2:4e:63:22:44: da:ed:ae:df:ed:a4:de:43:91:99:c1:73:bc:7a:31:90:63:9d: 42:70:55:97:01:f7:34:46:db:5c:01:f8:95:33:93:bf:81:e5: 1c:06:72:a3:0b:5f:1c:08:c0:43:58:4c:34:3a:15:ce:27:31: 7b:e8:95:a6:85:7a:f2:07:d2:ca:6c:f7:1b:07:95:d7:dc:23: 73:02:cc:64:73:b2:62:ce:df:c3:92:5f:14:b2:1b:a2:93:00: 2f:e4:6d:be:d1:44:27:ea:e7:4e:f9:c6:b7:e1:bc:b5:2d:c8: 07:21:f2:3d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTIxMTQ1MDExWhcNMjYwNTI4MTQ1MDExWjAYMRYwFAYD VQQDEw02YTBmMWJhNC1hM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HR8T9tVbyTE8Hr2s3NieJtVXv1F1aE/vQPfyIfVZSG0rfUKMXF/I/RvPXek IuMxgsOWUzgvJuoeJK3Yg/zmEqlewxJb4Ytwx6/mSiQmGbWEt0g7m2OzexdfINJ7 GlQkLyDLBEandOHdxB0cDQ5M8XzDcJAQWajkOFrh2oxLn2ar9SOdVmmOZ2VnwKzg o0Y1b0oZaI447qmO5HssavmFNM/V3L4y741mlIHBuJKxsm2ARC45Lw7WNKLZqUpb Mni7BtyOyoamG5t/NV4t9YUi0JOygg+UVFT6yZns6f6tAj6WxfKXj5YpgsaQ/Zsu Z3LnF1nmG6vYaBvPYo1v+wGrdwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLFZCn1J gDohijkAVAH2heOmcEYyMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEACXXPTDsSo7CtCykpbflQGPUS6c4DlKBARPBGfN4i26ME Ls4tpJLeGk01COWkjwRnCki4qsGLYrWtfLxqxNoROp1Ik+WNxY0CZ2gB6A07VADf CUAJbzRRwtGBWDQ0ZBQIvrL/eZJVNB3gcI9ZuYrStB1fh3RL7RbvBkMFMnmBbWRp wbNZCrRhpZzlWtJOYyJE2u2u3+2k3kORmcFzvHoxkGOdQnBVlwH3NEbbXAH4lTOT v4HlHAZyowtfHAjAQ1hMNDoVzicxe+iVpoV68gfSymz3GweV19wjcwLMZHOyYs7f w5JfFLIbopMAL+RtvtFEJ+rnTvnGt+G8tS3IByHyPQ== -----END CERTIFICATE-----Generated at Thu May 21 22:45:07 2026 by rpki-client