$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: oXCUh0XDMn09dFl6RhctyTa5LGwUCmGsu+K4F55y+q8= Subject key identifier: BD:F4:04:59:6F:1E:81:C5:78:74:C1:DA:86:87:5B:D2:C8:1D:ED:95 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B69 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4AAC Signing time: Mon 25 May 2026 02:50:11 +0000 Manifest this update: Mon 25 May 2026 02:50:11 +0000 Manifest next update: Mon 01 Jun 2026 02:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: qcYP7jeYPUvuegoN0BR+cxjHbesr4PDij7XP9ZtOh7U=) 2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 3: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 7: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 10: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jun 2026 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19305 (0x4b69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 25 02:50:11 2026 GMT Not After : Jun 1 02:50:11 2026 GMT Subject: CN=6a13b8e3-ca13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:d6:22:81:60:71:04:f2:9e:41:5e:ea:4f: 1d:cb:48:6f:7e:79:af:5c:2f:c2:e2:78:bb:90:e9: fc:59:4c:79:06:ed:08:cf:65:bd:62:7f:0a:bb:03: 54:22:6a:34:ab:26:ac:82:02:c5:87:15:35:37:2b: 24:39:13:0a:dd:b8:81:e7:9d:31:7a:b2:a9:9d:f7: c2:5f:6a:6b:2c:0f:69:b5:dd:65:ea:67:87:b1:05: 63:49:73:64:5e:ee:2c:d8:f9:91:1f:74:06:74:f7: 3f:17:25:ba:3b:5a:82:1c:06:8e:ee:74:a3:65:28: 34:cd:20:71:c7:19:e0:78:58:dd:df:cd:ae:a2:4a: 1a:a8:89:43:d0:9b:ea:11:7b:1c:ba:c4:c7:27:6b: 2b:15:47:15:12:26:78:e4:6b:80:e4:54:52:95:95: 81:66:e4:1d:63:68:26:33:11:17:2a:e4:43:62:96: 4c:4f:6b:bd:b5:8d:8f:fa:cf:c0:8d:51:97:3f:b2: de:21:7f:4a:fc:f7:db:62:a9:21:0a:b7:db:74:94: 24:8e:b1:35:a2:1e:1f:31:9a:e2:7f:d0:5f:1c:65: b8:08:85:51:79:f6:a9:ed:bf:8b:c4:ef:cd:5d:68: 1b:eb:40:2c:4f:33:85:1b:00:7c:8f:86:40:e3:54: 88:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F4:04:59:6F:1E:81:C5:78:74:C1:DA:86:87:5B:D2:C8:1D:ED:95 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:e5:87:b8:24:75:26:0b:f8:5e:bf:37:89:f4:63:ea:ab:d5: 13:27:a3:31:8c:d8:91:01:28:d0:e9:9a:4c:ad:18:24:a2:5b: a7:17:86:bf:e9:39:4a:5d:c7:69:87:c2:72:d0:65:55:6c:65: 17:12:d6:20:1a:cb:f6:e1:2f:14:68:b2:7f:cf:cc:6b:02:56: 6e:b3:b3:49:43:00:6d:c1:c6:1f:cd:33:35:49:f6:2d:26:3a: be:9c:ae:63:10:3f:44:28:f1:ea:de:13:af:ec:48:d2:b5:ce: cd:6c:c1:56:67:94:f3:cd:68:f7:81:14:27:f1:44:d4:4c:bd: c7:53:30:b7:8e:e2:9e:21:c3:27:eb:57:8c:c2:60:3a:e5:68: 9b:78:ab:a7:67:d1:28:06:6b:33:bc:b4:9f:5d:63:47:e8:5d: 6b:65:44:ab:f5:4d:2c:1d:57:5b:31:fe:10:81:b3:f7:b8:75: 26:27:71:77:8c:b9:9c:51:f1:3c:31:88:54:17:28:6e:fa:5b: 03:86:25:3a:80:3a:93:48:c4:78:6f:af:b3:7a:79:54:d1:6c: 5b:35:ee:1e:47:10:a6:65:55:dc:04:87:1c:87:dc:a2:f7:14: ca:8c:c4:74:97:45:50:f7:49:24:bb:03:67:2c:3b:3f:88:09: 7e:65:49:17 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTI1MDI1MDExWhcNMjYwNjAxMDI1MDExWjAYMRYwFAYD VQQDEw02YTEzYjhlMy1jYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWPWIoFgcQTynkFe6k8dy0hvfnmvXC/C4ni7kOn8WUx5Bu0Iz2W9Yn8KuwNU Imo0qyasggLFhxU1NyskORMK3biB550xerKpnffCX2prLA9ptd1l6meHsQVjSXNk Xu4s2PmRH3QGdPc/FyW6O1qCHAaO7nSjZSg0zSBxxxngeFjd382uokoaqIlD0Jvq EXscusTHJ2srFUcVEiZ45GuA5FRSlZWBZuQdY2gmMxEXKuRDYpZMT2u9tY2P+s/A jVGXP7LeIX9K/PfbYqkhCrfbdJQkjrE1oh4fMZrif9BfHGW4CIVRefap7b+LxO/N XWgb60AsTzOFGwB8j4ZA41SIYQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFL30BFlv HoHFeHTB2oaHW9LIHe2VMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAV+WHuCR1Jgv4Xr83ifRj6qvVEyejMYzYkQEo0OmaTK0Y JKJbpxeGv+k5Sl3HaYfCctBlVWxlFxLWIBrL9uEvFGiyf8/MawJWbrOzSUMAbcHG H80zNUn2LSY6vpyuYxA/RCjx6t4Tr+xI0rXOzWzBVmeU881o94EUJ/FE1Ey9x1Mw t47iniHDJ+tXjMJgOuVom3irp2fRKAZrM7y0n11jR+hda2VEq/VNLB1XWzH+EIGz 97h1Jidxd4y5nFHxPDGIVBcobvpbA4YlOoA6k0jEeG+vs3p5VNFsWzXuHkcQpmVV 3ASHHIfcovcUyozEdJdFUPdJJLsDZyw7P4gJfmVJFw== -----END CERTIFICATE-----Generated at Mon May 25 15:45:50 2026 by rpki-client