$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: i96QGqjXYixSbilFXSKsU0vUvYvoQRTmERof77Kq/Eo= Subject key identifier: 3C:E7:94:B2:97:C2:8C:7D:FE:AD:AF:6C:20:CB:65:A5:46:74:EB:09 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B90 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4ACE Signing time: Wed 03 Jun 2026 15:37:58 +0000 Manifest this update: Wed 03 Jun 2026 15:37:57 +0000 Manifest next update: Wed 10 Jun 2026 15:37:57 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ZLAHOwl4/tvymzqoPqXiJjg2qo2inZdlBuvKZALdvK8=) 2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=) 10: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Jun 2026 15:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19344 (0x4b90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Jun 3 15:37:57 2026 GMT Not After : Jun 10 15:37:57 2026 GMT Subject: CN=6a204a56-3577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:86:0c:80:f4:53:33:e5:c7:7b:c3:da:2a:6d: 63:f9:19:ab:39:44:83:9f:cf:c8:04:fb:72:21:5b: f3:4a:d4:90:8d:63:91:12:fa:f8:81:9d:ca:f3:00: 18:19:4b:9e:11:0c:0c:94:c7:ed:6f:4a:68:87:13: 06:dc:56:d9:9f:04:e7:81:77:6b:fa:2c:c1:06:66: df:98:7f:18:0d:4b:6e:77:c0:a8:ff:58:8f:c2:1d: a5:c0:e7:a0:92:b7:58:a0:f9:d2:94:88:5a:45:51: fc:ac:ed:c1:b1:55:1f:7c:36:75:c4:56:df:c3:b4: 12:2f:63:0a:f3:d7:6d:46:84:5d:4c:13:0d:8b:bb: fe:75:6e:68:df:64:18:d2:44:96:91:07:52:dc:8d: 64:63:69:e0:49:60:a5:2e:37:53:42:3e:01:9e:eb: 57:46:e7:7a:2b:26:38:c7:f0:9c:64:94:3c:9c:85: e7:7c:43:47:16:d1:b9:0b:ee:07:9a:2b:e1:75:27: c2:08:ec:41:23:72:73:66:6b:e0:58:a6:a9:44:be: a3:be:9c:69:d5:54:47:1a:f6:b4:a1:a1:b0:f1:c8: b6:c2:2a:66:dd:8f:33:53:e7:5c:c0:4c:d8:e8:3d: 64:cd:d0:fb:04:c0:b3:b2:29:ac:09:2e:20:dd:2e: fd:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E7:94:B2:97:C2:8C:7D:FE:AD:AF:6C:20:CB:65:A5:46:74:EB:09 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:73:d7:a0:dc:09:4c:f3:ff:1a:33:6c:37:30:17:65:91:72: 7f:a4:ac:ec:2a:fb:0c:f3:be:ff:e7:bf:3f:5a:ff:0a:ff:1b: 21:d0:d8:2d:2f:5e:60:66:c4:30:a2:81:23:f1:f8:ca:a3:2f: 67:1f:97:4a:db:ee:fd:ad:58:f8:17:b6:2f:a0:24:ae:4d:2a: bf:ed:91:74:f1:39:79:85:31:21:25:c5:74:ff:ab:87:b3:32: 2a:09:f1:9e:ba:70:86:85:bd:27:de:36:4b:e1:0d:b0:17:09: e6:0e:27:d2:bc:84:68:b3:48:8b:e2:78:f3:e5:d0:fc:fa:e6: a9:95:4a:3f:4f:ff:6b:11:ff:11:49:53:44:f8:38:90:23:8c: 98:d5:5a:a9:3c:ac:f3:f7:dd:71:5b:4e:b3:db:e3:3a:07:0f: 58:bb:4f:63:68:ea:53:79:76:4f:1a:2c:19:45:93:85:52:9e: 21:64:50:05:f8:82:5b:a9:8a:9e:d6:84:a0:87:c6:1b:7d:3c: 3c:7a:0a:0b:f2:ad:31:32:dc:45:88:c3:5a:5a:6c:d0:30:76: 61:3e:8f:8b:d5:cc:6b:64:9d:aa:6c:4d:53:9d:b8:9b:fd:1e: c5:10:c3:0e:ba:75:c3:6e:94:ea:96:1e:30:e0:78:42:97:26: 64:6a:a6:e9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNjAzMTUzNzU3WhcNMjYwNjEwMTUzNzU3WjAYMRYwFAYD VQQDEw02YTIwNGE1Ni0zNTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhIYMgPRTM+XHe8PaKm1j+RmrOUSDn8/IBPtyIVvzStSQjWOREvr4gZ3K8wAY GUueEQwMlMftb0pohxMG3FbZnwTngXdr+izBBmbfmH8YDUtud8Co/1iPwh2lwOeg krdYoPnSlIhaRVH8rO3BsVUffDZ1xFbfw7QSL2MK89dtRoRdTBMNi7v+dW5o32QY 0kSWkQdS3I1kY2ngSWClLjdTQj4BnutXRud6KyY4x/CcZJQ8nIXnfENHFtG5C+4H mivhdSfCCOxBI3JzZmvgWKapRL6jvpxp1VRHGva0oaGw8ci2wipm3Y8zU+dcwEzY 6D1kzdD7BMCzsimsCS4g3S79GwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFDznlLKX wox9/q2vbCDLZaVGdOsJMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAS3PXoNwJTPP/GjNsNzAXZZFyf6Ss7Cr7DPO+/+e/P1r/ Cv8bIdDYLS9eYGbEMKKBI/H4yqMvZx+XStvu/a1Y+Be2L6Akrk0qv+2RdPE5eYUx ISXFdP+rh7MyKgnxnrpwhoW9J942S+ENsBcJ5g4n0ryEaLNIi+J48+XQ/PrmqZVK P0//axH/EUlTRPg4kCOMmNVaqTys8/fdcVtOs9vjOgcPWLtPY2jqU3l2TxosGUWT hVKeIWRQBfiCW6mKntaEoIfGG308PHoKC/KtMTLcRYjDWlps0DB2YT6Pi9XMa2Sd qmxNU524m/0exRDDDrp1w26U6pYeMOB4QpcmZGqm6Q== -----END CERTIFICATE-----Generated at Wed Jun 3 20:55:31 2026 by rpki-client