$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: H3haswpk9SgagbK0ZModrNO3D1/6l/SNpJIHCsx9/BA= Subject key identifier: 53:CB:AC:4C:95:C2:11:85:1F:5A:1F:0D:A3:F8:4B:F7:9A:D0:7C:29 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B34 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A77 Signing time: Thu 07 May 2026 14:50:12 +0000 Manifest this update: Thu 07 May 2026 14:50:11 +0000 Manifest next update: Thu 14 May 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: mrOQwcaCP+LCTgFzOkh3FiJX3c/AvmRHQ/EZZ5wi0Mk=) 2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 3: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 8: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) 9: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 12: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 14:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19252 (0x4b34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 7 14:50:11 2026 GMT Not After : May 14 14:50:11 2026 GMT Subject: CN=69fca6a4-0c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:7e:4b:a1:76:ca:8f:65:82:2c:2c:c6:6d:c3: db:78:4b:a2:11:5f:8a:dd:1b:34:fc:44:2f:cd:64: 45:bf:71:fe:5c:08:54:44:6d:8e:0c:3d:65:f7:ae: 0d:60:7c:d6:f6:a6:d5:04:4a:70:00:52:79:94:46: e1:a2:b1:e2:a4:03:55:b6:3f:36:05:13:73:3e:a5: ee:a8:39:9b:cf:2f:db:a1:e3:05:84:cd:38:4c:db: 82:d1:2d:1d:60:68:76:86:13:ab:91:88:f9:97:33: ec:58:d4:7f:c0:68:af:37:80:bb:c7:81:9b:13:e3: d0:bf:84:6c:ef:f6:30:ce:2b:a0:14:d3:81:39:b9: 65:05:84:fa:8d:a8:3e:c3:1a:ee:2c:25:6f:7b:0b: dc:ca:ea:cc:b4:ae:6f:f9:5a:dc:6f:98:d0:58:17: 44:e2:92:7b:82:03:88:39:e4:62:9e:2d:30:a6:28: 23:1a:4f:38:9d:ef:02:9a:c7:c5:b2:de:3d:de:ae: b2:26:21:32:d6:98:0e:67:3b:09:1b:6b:c8:65:e1: b9:46:79:a3:78:cf:1c:c9:a3:50:be:87:50:4c:c0: 54:28:39:79:f1:3a:a5:5d:1e:ba:9d:5e:0a:96:61: 4b:73:b6:f8:9f:60:59:55:22:2d:f7:69:44:af:34: 9e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:CB:AC:4C:95:C2:11:85:1F:5A:1F:0D:A3:F8:4B:F7:9A:D0:7C:29 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:9f:7f:00:9d:78:a2:79:f4:1a:86:35:0b:63:38:c1:34:44: 78:16:71:85:6a:d8:a8:2d:ec:e8:0d:e1:e3:6d:b4:99:a5:80: 58:5d:27:73:06:a7:d3:eb:5e:cc:2a:d8:1d:9d:1f:96:5b:72: 98:48:26:e7:a1:f0:20:04:f9:25:34:ab:47:8b:78:e8:1a:61: 38:8f:90:d9:74:94:7a:69:63:d8:f9:28:f0:41:d3:54:10:6f: 89:9a:44:c6:3b:8f:54:fb:0c:37:a1:29:62:71:e7:51:31:8a: bc:d0:bf:22:1b:94:15:06:38:21:ac:36:fb:37:04:0d:69:f7: 04:01:2b:f4:e8:4d:21:90:d8:97:d0:80:6f:b6:e4:39:c1:80: eb:e4:fa:47:ac:8d:75:f4:60:19:79:d7:69:fc:e0:40:7c:ab: fd:d0:8b:dd:f7:fa:62:e0:6a:4c:8a:fb:26:42:7a:75:28:ec: 80:47:ed:26:5e:b1:c6:00:d9:d8:e6:fc:7b:0f:75:37:5d:08: 6b:f0:c7:bb:94:f3:c3:8a:3f:49:59:11:fe:95:db:2d:f4:5b: ee:d5:72:74:fd:19:4b:db:7a:f3:a0:88:95:76:a7:4c:b2:c4: 51:7e:34:3f:e4:18:70:59:d8:5a:c4:97:af:e5:7f:74:9d:57: 3f:92:ba:8e -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTA3MTQ1MDExWhcNMjYwNTE0MTQ1MDExWjAYMRYwFAYD VQQDEw02OWZjYTZhNC0wYzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkX5LoXbKj2WCLCzGbcPbeEuiEV+K3Rs0/EQvzWRFv3H+XAhURG2ODD1l964N YHzW9qbVBEpwAFJ5lEbhorHipANVtj82BRNzPqXuqDmbzy/boeMFhM04TNuC0S0d YGh2hhOrkYj5lzPsWNR/wGivN4C7x4GbE+PQv4Rs7/YwziugFNOBObllBYT6jag+ wxruLCVvewvcyurMtK5v+Vrcb5jQWBdE4pJ7ggOIOeRini0wpigjGk84ne8CmsfF st493q6yJiEy1pgOZzsJG2vIZeG5RnmjeM8cyaNQvodQTMBUKDl58TqlXR66nV4K lmFLc7b4n2BZVSIt92lErzSekQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFPLrEyV whGFH1ofDaP4S/ea0HwpMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAi59/AJ14onn0GoY1C2M4wTREeBZxhWrYqC3s6A3h4220 maWAWF0ncwan0+tezCrYHZ0flltymEgm56HwIAT5JTSrR4t46BphOI+Q2XSUemlj 2Pko8EHTVBBviZpExjuPVPsMN6EpYnHnUTGKvNC/IhuUFQY4Iaw2+zcEDWn3BAEr 9OhNIZDYl9CAb7bkOcGA6+T6R6yNdfRgGXnXafzgQHyr/dCL3ff6YuBqTIr7JkJ6 dSjsgEftJl6xxgDZ2Ob8ew91N10Ia/DHu5Tzw4o/SVkR/pXbLfRb7tVydP0ZS9t6 86CIlXanTLLEUX40P+QYcFnYWsSXr+V/dJ1XP5K6jg== -----END CERTIFICATE-----Generated at Thu May 7 16:59:42 2026 by rpki-client