$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 6vvVl+3o8IAzn0EEvH8yeSDRqFYQv0cyaKN0pH2yfTk= Subject key identifier: B1:58:5C:69:69:C0:F6:6F:ED:42:A1:03:D8:B6:2E:4D:E6:48:1E:39 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4A6A Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 49B2 Signing time: Thu 05 Mar 2026 14:53:04 +0000 Manifest this update: Thu 05 Mar 2026 14:53:03 +0000 Manifest next update: Thu 12 Mar 2026 14:53:03 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: xlh7X5hakUoGCkD9+dLTDoKQH6SrzDP4DpubVYpT6eY=) 2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 14:53:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19050 (0x4a6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Mar 5 14:53:03 2026 GMT Not After : Mar 12 14:53:03 2026 GMT Subject: CN=69a998cf-1389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4a:ca:e4:ff:f9:e6:80:f0:2f:5a:39:4a:8f: c5:80:02:b2:41:52:46:f5:d9:14:a8:8f:2d:14:70: 2b:08:d0:94:b8:cb:8b:87:fe:10:0b:5b:69:16:3b: c2:d0:48:09:7a:aa:3b:9c:49:18:2a:09:bf:e1:97: 90:09:9e:75:7d:85:11:07:01:85:ba:99:b7:b0:6e: 6b:42:81:7e:d5:85:5b:7b:ce:ea:96:58:cb:4b:cd: 0d:bd:c9:09:20:8d:0d:04:ea:a8:78:f4:3e:0e:32: 0b:80:a8:21:76:c3:a5:a3:46:5b:32:d4:7b:d3:3d: a9:5a:6d:43:c8:6d:72:4c:48:9e:9d:1c:5e:dc:36: b8:87:ca:c4:ff:2a:ea:c0:a4:32:c3:8d:1a:65:07: e5:44:1c:68:83:a9:7c:d0:f9:47:ed:5f:9c:09:71: 05:87:b7:94:8c:5d:d6:b1:5d:20:6c:6e:64:bf:69: 4a:95:7f:c6:05:1c:32:cb:be:c9:e5:bb:da:be:bd: 95:f3:c9:24:5c:a6:81:fd:33:49:df:3e:6b:41:41: 08:2c:a0:8c:48:ee:73:0b:12:dd:79:17:0a:e7:72: f3:f4:ff:00:c0:fd:7e:3c:a9:7b:6b:64:33:64:c2: d9:fc:dd:27:e6:34:d2:ed:b6:84:87:0b:c6:50:06: 69:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:58:5C:69:69:C0:F6:6F:ED:42:A1:03:D8:B6:2E:4D:E6:48:1E:39 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:7c:48:46:09:1a:96:dd:30:cf:92:f7:8a:38:e4:90:5d:1d: 99:e7:bd:3b:f4:f7:3f:f0:17:f5:da:fe:34:a9:fd:04:2b:e3: b3:02:b1:28:41:74:d2:ce:dc:77:5b:ac:57:4b:bc:2b:2b:16: c1:37:7a:56:6d:46:9d:54:bf:6c:41:45:28:61:4a:06:45:c1: 05:73:05:30:1f:78:ae:fc:d6:f6:3a:b6:d6:46:4d:ef:66:29: 64:90:2f:65:d4:6e:59:ac:df:b8:51:00:41:6b:c7:64:96:55: 3c:04:2a:69:f8:5d:7a:30:d8:8b:4d:35:4b:d7:82:4b:57:8e: 06:4b:ba:fd:dd:a0:87:55:b0:5d:78:b8:03:da:7b:cf:95:76: a1:80:48:55:05:e6:d7:90:4c:cb:eb:82:8a:e1:3a:f4:d7:2d: ab:91:0d:ab:74:40:94:d9:b0:b8:d1:22:74:59:ed:8c:e0:8c: 98:00:8c:75:a8:b7:3e:16:db:23:95:83:9b:10:7f:5b:ff:8e: 45:e0:f1:da:6e:bb:ba:aa:2c:d9:d9:70:6b:0f:8c:a9:ee:9f: 7d:26:18:20:e9:18:9e:b2:dd:8e:a3:14:84:72:39:a4:cb:e1: c1:11:02:10:d6:5f:8c:08:dd:6d:12:dd:7b:a3:23:50:ee:db: 1e:be:3d:f9 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwMzA1MTQ1MzAzWhcNMjYwMzEyMTQ1MzAzWjAYMRYwFAYD VQQDEw02OWE5OThjZi0xMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUrK5P/55oDwL1o5So/FgAKyQVJG9dkUqI8tFHArCNCUuMuLh/4QC1tpFjvC 0EgJeqo7nEkYKgm/4ZeQCZ51fYURBwGFupm3sG5rQoF+1YVbe87qlljLS80NvckJ II0NBOqoePQ+DjILgKghdsOlo0ZbMtR70z2pWm1DyG1yTEienRxe3Da4h8rE/yrq wKQyw40aZQflRBxog6l80PlH7V+cCXEFh7eUjF3WsV0gbG5kv2lKlX/GBRwyy77J 5bvavr2V88kkXKaB/TNJ3z5rQUEILKCMSO5zCxLdeRcK53Lz9P8AwP1+PKl7a2Qz ZMLZ/N0n5jTS7baEhwvGUAZp1wIDAQABo4ICTzCCAkswHQYDVR0OBBYEFLFYXGlp wPZv7UKhA9i2Lk3mSB45MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAn3xIRgkalt0wz5L3ijjkkF0dmee9O/T3P/AX9dr+NKn9 BCvjswKxKEF00s7cd1usV0u8KysWwTd6Vm1GnVS/bEFFKGFKBkXBBXMFMB94rvzW 9jq21kZN72YpZJAvZdRuWazfuFEAQWvHZJZVPAQqafhdejDYi001S9eCS1eOBku6 /d2gh1WwXXi4A9p7z5V2oYBIVQXm15BMy+uCiuE69Nctq5ENq3RAlNmwuNEidFnt jOCMmACMdai3PhbbI5WDmxB/W/+OReDx2m67uqos2dlwaw+Mqe6ffSYYIOkYnrLd jqMUhHI5pMvhwRECENZfjAjdbRLde6MjUO7bHr49+Q== -----END CERTIFICATE-----Generated at Thu Mar 5 21:51:29 2026 by rpki-client