$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: AIWU4UBq8ZFKd1T/AcoBd7U2mIHgyqpkAIDlES9iSr8= Subject key identifier: A4:1F:46:5C:02:60:EF:64:01:65:6D:C5:1C:22:10:48:3C:69:79:07 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A4B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4997 Signing time: Wed 25 Feb 2026 14:50:11 +0000 Manifest this update: Wed 25 Feb 2026 14:50:10 +0000 Manifest next update: Wed 04 Mar 2026 14:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: aCse5OrUE6U/nN6UxyrWNpAUGSl7K+vSbSibtHagySA=) 2: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: pdmoZ+GtdjuUtSP8A7epggr5h+r+nMHHeWStgyZbrfc=) 4: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 10: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: 8nj9/XcODr2Ctn+EDqVgwmIFq75BSgQmoX+2Jbps6ns=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 14:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19019 (0x4a4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Feb 25 14:50:10 2026 GMT Not After : Mar 4 14:50:10 2026 GMT Subject: CN=699f0c22-93bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ca:60:48:54:c6:a5:11:05:6a:70:4c:bc:69: ea:34:77:c7:43:03:76:2c:aa:9d:65:9e:96:cf:62: 99:20:83:e9:e0:51:4c:42:6a:87:69:f6:2b:94:3f: c7:1a:12:a1:a0:de:27:d5:2b:f1:17:9b:d9:01:ae: 9b:6a:f1:fe:43:ca:f9:35:4c:80:60:c9:75:d5:8b: 50:6b:e3:a1:e3:9e:39:00:0f:46:4f:b1:09:57:1b: 0d:ce:78:24:f3:f5:36:bd:fc:e4:a2:bf:38:d0:1f: 8d:8e:e5:0a:ce:1a:92:bb:ef:0c:72:3d:f8:9e:f2: 59:5b:45:4a:9d:25:33:a1:46:c7:7e:84:b0:39:15: 13:de:b8:d9:b0:e2:56:5c:94:f5:c3:17:0a:52:98: 48:fa:41:a8:03:b5:e3:ac:b1:25:43:cf:e5:b5:8c: 12:12:58:68:a3:96:ba:6c:42:86:87:69:23:bd:f3: 90:6d:24:8a:1f:8f:fe:bb:f1:68:fd:25:31:8f:c0: 00:02:4d:f7:d7:71:26:3a:08:2f:01:55:da:71:41: 6f:a5:18:26:00:6b:5b:2a:e3:a6:a2:d4:d9:bf:3f: e6:14:50:d6:2a:15:e1:5b:f9:51:b8:99:d5:86:2f: c0:3c:48:3e:1b:db:56:48:f7:f6:ed:bd:99:20:7c: 76:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1F:46:5C:02:60:EF:64:01:65:6D:C5:1C:22:10:48:3C:69:79:07 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:a3:c5:cd:7c:e9:21:08:28:f4:87:60:cc:c9:05:d9:9d:68: 1b:e2:83:fd:5a:a0:6c:62:0b:db:d0:ff:8d:46:8e:87:50:4f: 3a:fa:94:f5:9a:99:4c:07:70:f2:74:7a:3b:8d:bc:2e:b9:20: 51:0b:a0:68:57:89:56:b4:b1:bc:09:76:66:cf:5a:84:d1:c2: d9:d6:ec:ce:72:1e:26:d4:9a:eb:54:cb:8b:94:dd:4c:03:63: 80:d9:ec:54:48:e5:72:b2:31:ad:ad:ba:be:c8:c0:cc:70:1d: 4e:32:28:a2:c8:16:96:c8:a9:ab:57:b3:da:7e:b4:a6:98:22: 52:67:9f:79:a2:a5:83:e9:a6:92:5c:0f:b8:76:74:40:33:d4: 2f:c0:e6:e2:37:87:46:86:6f:b9:af:ed:0a:d2:4c:f0:89:d5: 8a:62:44:7b:b4:08:ab:a8:0e:d4:7a:db:b0:76:26:da:83:57: 04:b3:1c:0e:6d:a6:a1:43:69:d2:99:da:a1:1d:25:4b:c9:20: a7:f0:0b:61:36:b2:3b:66:3a:2e:d8:d6:6e:6d:86:cf:be:a4: 5f:e5:cd:b3:5e:76:b6:35:7f:3c:1b:c1:47:34:f1:de:ae:eb: 0a:40:dd:37:c7:0e:78:88:48:35:0b:f1:41:68:a3:69:ba:26: c4:b1:46:b1 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMjI1MTQ1MDEwWhcNMjYwMzA0MTQ1MDEwWjAYMRYwFAYD VQQDDA02OTlmMGMyMi05M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMpgSFTGpREFanBMvGnqNHfHQwN2LKqdZZ6Wz2KZIIPp4FFMQmqHafYrlD/H GhKhoN4n1SvxF5vZAa6bavH+Q8r5NUyAYMl11YtQa+Oh4545AA9GT7EJVxsNzngk 8/U2vfzkor840B+NjuUKzhqSu+8Mcj34nvJZW0VKnSUzoUbHfoSwORUT3rjZsOJW XJT1wxcKUphI+kGoA7XjrLElQ8/ltYwSElhoo5a6bEKGh2kjvfOQbSSKH4/+u/Fo /SUxj8AAAk3313EmOggvAVXacUFvpRgmAGtbKuOmotTZvz/mFFDWKhXhW/lRuJnV hi/APEg+G9tWSPf27b2ZIHx2mQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKQfRlwC YO9kAWVtxRwiEEg8aXkHMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCRo8XNfOkhCCj0h2DMyQXZnWgb4oP9WqBs Ygvb0P+NRo6HUE86+pT1mplMB3DydHo7jbwuuSBRC6BoV4lWtLG8CXZmz1qE0cLZ 1uzOch4m1JrrVMuLlN1MA2OA2exUSOVysjGtrbq+yMDMcB1OMiiiyBaWyKmrV7Pa frSmmCJSZ595oqWD6aaSXA+4dnRAM9QvwObiN4dGhm+5r+0K0kzwidWKYkR7tAir qA7Uetuwdibag1cEsxwObaahQ2nSmdqhHSVLySCn8AthNrI7Zjou2NZubYbPvqRf 5c2zXna2NX88G8FHNPHerusKQN03xw54iEg1C/FBaKNpuibEsUax -----END CERTIFICATE-----Generated at Wed Feb 25 18:34:58 2026 by rpki-client