$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: svZonUVmNcbMOwXO3BTh9T4kIDa2MRHT4Y5D6t1bj3o= Subject key identifier: 19:A4:E3:8E:55:46:D5:A5:67:EF:8F:36:15:9F:F0:DD:28:74:22:BA Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A8B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49D3 Signing time: Mon 16 Mar 2026 14:50:11 +0000 Manifest this update: Mon 16 Mar 2026 14:50:11 +0000 Manifest next update: Mon 23 Mar 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: C2DDJ9DgQsml8AIQr5ZO/eS0Xy2J4JiKJnjOyryMV9U=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 5: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 7: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19083 (0x4a8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 16 14:50:11 2026 GMT Not After : Mar 23 14:50:11 2026 GMT Subject: CN=69b818a3-81ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:47:50:b3:27:7a:79:4b:b5:5d:b3:42:9e:cb: 74:cc:b8:19:11:3a:60:50:9b:04:a3:e2:0a:2f:d3: 09:4c:4c:0d:25:6d:e5:4e:dc:6e:90:ae:82:93:fe: 08:93:29:80:62:a2:1f:e9:f6:ed:1d:23:ed:21:c9: 47:07:44:1e:a7:86:8e:79:b4:2b:62:bc:3d:54:6f: 6d:9a:2c:2a:fd:26:4b:d5:6f:40:68:a8:6c:7c:16: e0:fb:88:41:07:09:80:30:1a:2c:64:82:4b:83:87: 1b:7d:9a:59:78:7e:92:30:55:1f:57:79:45:bb:5a: b7:69:0a:9b:26:62:04:b3:b9:6c:11:1e:80:12:cd: 30:72:63:da:7f:3a:a1:8a:12:ef:47:31:b0:a5:0b: 07:24:9b:9e:c4:b7:a0:ca:fb:25:f2:7f:48:c2:f9: 79:90:33:bc:93:0b:f8:5e:e0:38:87:35:28:ef:a4: b3:19:36:f4:57:13:c3:f7:e6:e0:14:1c:d6:60:7e: 93:f9:d2:c0:0f:6d:e6:17:1b:e1:75:a7:57:28:03: dd:d7:7b:64:d6:18:fc:4f:39:ef:09:f7:5f:9e:ba: e5:90:0c:dd:11:6d:c6:cf:74:0e:01:1a:b7:67:94: b7:be:39:35:6f:e4:36:ce:81:96:4b:a2:22:b4:f9: ab:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A4:E3:8E:55:46:D5:A5:67:EF:8F:36:15:9F:F0:DD:28:74:22:BA X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:98:bc:95:dd:3c:4b:8d:49:da:34:2d:d0:4e:31:cb:2a:bb: 9d:41:3d:c3:1f:fb:d5:a8:d2:ff:f5:69:60:4a:7d:a5:5f:fa: a9:6b:2b:c0:5b:00:07:ec:0d:c6:0c:bf:54:ba:dc:8c:10:bd: 9b:fb:c1:5c:98:aa:cd:09:24:48:57:3f:00:43:77:74:63:69: a0:e5:2a:52:76:ee:60:4f:0a:e3:d0:a7:78:f9:2c:75:3f:ed: 78:0e:9f:82:98:e3:f3:12:5b:fb:8e:e8:b1:9b:18:f5:45:79: 1b:74:0e:1e:51:ab:a5:27:50:89:41:b5:ff:a4:df:d0:0f:20: 2e:a5:1a:ba:5e:44:96:c5:32:bf:fd:3e:c8:f2:50:86:08:d3: f0:ba:36:ea:e8:98:d1:4d:96:86:05:d7:89:78:98:62:2c:88: 29:5d:47:24:5a:0c:25:36:f3:43:2d:76:b4:dd:92:11:c8:e2: 21:27:ce:49:b2:55:bb:1a:bb:11:49:35:0b:59:26:ad:26:1b: c5:03:72:22:75:82:ce:fa:34:b3:53:d4:d8:24:2d:8e:53:70: 1a:d2:d7:b0:2b:ee:37:1a:50:b6:f7:5e:f3:0d:c5:b9:9e:cb: 64:af:6f:24:a8:f5:04:36:da:c9:55:68:c5:b1:28:0e:e3:6b: 65:46:66:60 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzE2MTQ1MDExWhcNMjYwMzIzMTQ1MDExWjAYMRYwFAYD VQQDEw02OWI4MThhMy04MWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UdQsyd6eUu1XbNCnst0zLgZETpgUJsEo+IKL9MJTEwNJW3lTtxukK6Ck/4I kymAYqIf6fbtHSPtIclHB0Qep4aOebQrYrw9VG9tmiwq/SZL1W9AaKhsfBbg+4hB BwmAMBosZIJLg4cbfZpZeH6SMFUfV3lFu1q3aQqbJmIEs7lsER6AEs0wcmPafzqh ihLvRzGwpQsHJJuexLegyvsl8n9Iwvl5kDO8kwv4XuA4hzUo76SzGTb0VxPD9+bg FBzWYH6T+dLAD23mFxvhdadXKAPd13tk1hj8TznvCfdfnrrlkAzdEW3Gz3QOARq3 Z5S3vjk1b+Q2zoGWS6IitPmrDwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFBmk445V RtWlZ++PNhWf8N0odCK6MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAl5i8ld08S41J2jQt0E4xyyq7nUE9wx/71ajS//VpYEp9 pV/6qWsrwFsAB+wNxgy/VLrcjBC9m/vBXJiqzQkkSFc/AEN3dGNpoOUqUnbuYE8K 49CnePksdT/teA6fgpjj8xJb+47osZsY9UV5G3QOHlGrpSdQiUG1/6Tf0A8gLqUa ul5ElsUyv/0+yPJQhgjT8Lo26uiY0U2WhgXXiXiYYiyIKV1HJFoMJTbzQy12tN2S EcjiISfOSbJVuxq7EUk1C1kmrSYbxQNyInWCzvo0s1PU2CQtjlNwGtLXsCvuNxpQ tvde8w3FuZ7LZK9vJKj1BDbayVVoxbEoDuNrZUZmYA== -----END CERTIFICATE-----Generated at Mon Mar 16 16:43:12 2026 by rpki-client