$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: Oz29GP8ekRIR5GCngPUZEdvQqcXVakvTOBtgazFPlPM= Subject key identifier: 36:28:49:AE:2F:F7:07:46:CD:4E:22:E3:2D:56:07:2A:30:21:E5:42 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B31 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A74 Signing time: Wed 06 May 2026 14:58:14 +0000 Manifest this update: Wed 06 May 2026 14:58:14 +0000 Manifest next update: Wed 13 May 2026 14:58:14 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: FCE47GbUAfyinqoKtaBdZDdeeuOTkGxgekHmF3Qcu8M=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19249 (0x4b31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 6 14:58:14 2026 GMT Not After : May 13 14:58:14 2026 GMT Subject: CN=69fb5706-aec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f0:50:d3:c2:80:37:0d:2a:14:ee:8a:17:52: d9:6b:4f:94:fa:d4:cc:f0:4a:bc:1a:87:30:ba:83: c2:2b:2a:b1:56:bc:4e:c6:9d:ef:e8:ae:e9:87:af: e4:a1:9b:29:da:f7:18:21:66:65:1a:f1:9a:27:17: 2f:71:36:8f:09:04:20:af:3f:22:4a:89:32:3c:db: 54:10:75:7f:7c:f2:b2:4a:23:c3:f7:65:d0:4d:6d: ad:b2:c9:99:36:46:0b:1e:13:f9:69:78:3f:69:69: 28:47:da:66:1f:af:30:08:92:5e:09:fd:a4:1e:27: 31:67:ca:31:63:1d:c9:1d:bb:c3:28:60:19:ee:d3: 42:fa:6b:aa:1b:fd:46:1b:a3:81:e3:d4:fd:03:7f: 28:8d:44:b6:04:63:40:cd:c6:80:22:71:a9:57:a9: 01:a9:7a:90:3e:6b:20:a6:e3:96:ed:49:a3:08:ea: 50:c4:ec:7c:6f:f7:6e:b3:6d:cf:8b:c7:d5:cc:60: 33:ef:57:a4:31:c0:be:f9:12:c6:14:25:6f:df:40: ac:0d:03:63:c6:8d:19:59:59:78:0b:a9:2d:d6:52: 79:f3:23:5c:90:a2:e3:9b:6b:40:2c:5e:72:f7:9f: 39:f0:dd:94:6f:5b:d6:32:2e:cf:97:4b:e3:0e:94: 79:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:28:49:AE:2F:F7:07:46:CD:4E:22:E3:2D:56:07:2A:30:21:E5:42 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:a6:c4:2a:aa:c5:92:57:e1:4e:e4:5e:f4:6a:85:83:39:b9: 4f:19:a3:bd:4b:ed:d6:04:5d:ae:c2:60:cf:cb:dc:ca:f8:25: 07:79:8d:4e:90:91:3c:ec:dd:72:94:60:b1:19:76:f4:9b:e5: 28:d6:ed:5a:35:f0:ed:16:05:2a:cc:45:59:91:f9:32:14:a0: ba:11:2e:b6:65:c5:9e:38:d5:5a:24:93:a1:d2:5e:f6:34:3c: fc:19:60:b6:37:39:44:30:b9:88:c6:b3:54:6b:d4:60:99:11: ea:69:1c:75:e2:70:09:27:1d:e0:b0:e3:2a:4c:88:0a:f1:ef: 52:6b:05:49:49:c2:22:6d:28:86:9f:93:88:db:20:a5:0d:72: 70:70:b9:60:55:e6:1f:2b:9e:bf:08:a4:e2:ac:c0:31:c0:1d: ed:e6:2c:0e:3f:e3:a1:11:b9:d9:b1:5d:15:9b:d7:0a:53:76: 15:30:58:c7:e1:82:03:ca:ab:96:a3:75:36:56:b2:fd:49:13: cf:8d:c8:ce:66:03:b6:ab:78:a8:f3:63:f1:68:e8:47:32:3f: d7:48:3c:88:2f:05:e5:65:c6:dc:53:20:31:4b:6c:d2:86:38: 62:48:bc:ec:65:0f:77:d0:1f:f8:77:3d:e8:c9:bb:1e:a0:96: 63:ca:ee:e9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA2MTQ1ODE0WhcNMjYwNTEzMTQ1ODE0WjAYMRYwFAYD VQQDEw02OWZiNTcwNi1hZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvBQ08KANw0qFO6KF1LZa0+U+tTM8Eq8GocwuoPCKyqxVrxOxp3v6K7ph6/k oZsp2vcYIWZlGvGaJxcvcTaPCQQgrz8iSokyPNtUEHV/fPKySiPD92XQTW2tssmZ NkYLHhP5aXg/aWkoR9pmH68wCJJeCf2kHicxZ8oxYx3JHbvDKGAZ7tNC+muqG/1G G6OB49T9A38ojUS2BGNAzcaAInGpV6kBqXqQPmsgpuOW7UmjCOpQxOx8b/dus23P i8fVzGAz71ekMcC++RLGFCVv30CsDQNjxo0ZWVl4C6kt1lJ58yNckKLjm2tALF5y 95858N2Ub1vWMi7Pl0vjDpR52wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFDYoSa4v 9wdGzU4i4y1WByowIeVCMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAEKbEKqrFklfhTuRe9GqFgzm5TxmjvUvt1gRdrsJgz8vc yvglB3mNTpCRPOzdcpRgsRl29JvlKNbtWjXw7RYFKsxFWZH5MhSguhEutmXFnjjV WiSTodJe9jQ8/Blgtjc5RDC5iMazVGvUYJkR6mkcdeJwCScd4LDjKkyICvHvUmsF SUnCIm0ohp+TiNsgpQ1ycHC5YFXmHyuevwik4qzAMcAd7eYsDj/joRG52bFdFZvX ClN2FTBYx+GCA8qrlqN1Nlay/UkTz43IzmYDtqt4qPNj8WjoRzI/10g8iC8F5WXG 3FMgMUts0oY4Yki87GUPd9Af+Hc96Mm7HqCWY8ru6Q== -----END CERTIFICATE-----Generated at Wed May 6 16:44:50 2026 by rpki-client