$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: BPD16g9WObncCoPiyKao0BFMzcIUu6f+iB21yoy0Iio= Subject key identifier: 5C:45:9A:2A:0D:31:08:0E:7D:98:86:56:D3:A4:3E:AF:B7:9E:DD:34 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4B43 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A86 Signing time: Tue 12 May 2026 14:50:24 +0000 Manifest this update: Tue 12 May 2026 14:50:24 +0000 Manifest next update: Tue 19 May 2026 14:50:24 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 5Pgx39xRiJz0KIfF0u0yqvyotglKQ8ChpYVm9VjQtAk=) 2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=) 11: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19267 (0x4b43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: May 12 14:50:24 2026 GMT Not After : May 19 14:50:24 2026 GMT Subject: CN=6a033e30-2189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:54:9c:48:89:b3:3f:97:1d:c4:3c:16:96:45: 0d:bf:d1:d4:34:a5:86:8b:8f:3b:b7:50:01:bc:aa: e6:95:db:29:91:dc:d9:1c:85:65:eb:64:9b:f9:77: 86:9e:e0:31:02:b6:ac:a5:9a:c9:32:10:1c:f4:d3: 80:c7:1b:e5:82:1b:93:35:49:c7:ff:d9:cd:0f:bb: 31:cf:9d:2a:dd:67:1b:11:06:38:64:bc:52:62:4c: 91:8c:60:10:00:47:75:3c:ac:4d:e0:df:1c:35:c0: f3:bf:18:ab:6d:87:1a:10:6b:58:8f:1c:39:ed:96: 1b:cf:df:72:b7:5e:c4:65:8c:c3:a7:f4:c9:9f:64: 59:f6:02:ac:c5:84:3c:bf:16:22:20:a0:dc:f2:dd: 7c:a0:cb:56:47:58:0f:88:b9:c0:d1:8a:24:94:e1: 3b:11:3c:a5:20:6a:1c:d1:41:08:a6:80:d2:ab:ca: 46:61:8a:f7:00:32:a6:06:c6:a4:60:39:5f:60:0c: 28:c8:d6:27:65:82:d5:8a:cd:78:5a:b4:14:de:f9: ec:e9:8a:57:3a:62:c2:6b:27:50:90:19:42:71:1a: 98:7e:5b:28:15:cd:e9:a1:56:ba:33:a4:e9:be:4a: 2a:a2:73:7b:29:62:3f:84:15:7b:ef:15:3a:0d:39: f0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:45:9A:2A:0D:31:08:0E:7D:98:86:56:D3:A4:3E:AF:B7:9E:DD:34 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:c5:da:b4:45:2e:4e:43:fb:b6:e4:e7:a2:fb:99:cc:0d:5f: 31:b7:18:9a:2c:7f:ba:f2:e5:e5:a4:a9:4a:61:a0:88:f2:77: 1c:1a:02:51:7c:27:39:79:ce:07:51:b5:88:ef:f0:37:59:de: 54:96:98:ea:c9:37:29:a7:64:d7:ca:8c:7c:af:9d:e5:d9:be: e7:6c:2a:db:5f:72:b6:fd:28:75:79:6c:fc:49:fd:b3:59:5d: 3a:8b:87:1d:cf:4b:ee:4d:3a:f0:2b:36:62:83:85:a3:31:fa: c2:10:5b:93:7e:5d:33:fa:78:ae:31:01:49:3d:c6:52:cb:7f: 32:60:a1:4c:69:d8:f8:5e:a3:93:88:4c:2c:a8:47:7a:d1:0b: 50:de:3b:eb:a7:9b:b5:ec:20:a7:fd:d6:9d:6e:dd:1a:26:2c: 3f:74:1d:bb:a0:d7:7e:c4:b2:85:e0:30:fc:48:b5:40:9f:59: 1f:67:41:92:12:fd:e6:10:18:cb:69:f4:b2:0d:d8:20:35:69: e4:6d:d1:53:90:7d:d3:6a:01:26:97:f1:0d:2f:ea:af:3d:82: 09:a8:d3:f2:4e:d7:24:4e:6c:bb:a1:d5:0d:ac:8d:1c:5a:2c: 29:ae:f9:b0:83:5d:1a:40:63:9f:4b:07:09:29:d4:3f:7e:44: 8c:57:54:4d -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICS0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNTEyMTQ1MDI0WhcNMjYwNTE5MTQ1MDI0WjAYMRYwFAYD VQQDEw02YTAzM2UzMC0yMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFScSImzP5cdxDwWlkUNv9HUNKWGi487t1ABvKrmldspkdzZHIVl62Sb+XeG nuAxAraspZrJMhAc9NOAxxvlghuTNUnH/9nND7sxz50q3WcbEQY4ZLxSYkyRjGAQ AEd1PKxN4N8cNcDzvxirbYcaEGtYjxw57ZYbz99yt17EZYzDp/TJn2RZ9gKsxYQ8 vxYiIKDc8t18oMtWR1gPiLnA0YoklOE7ETylIGoc0UEIpoDSq8pGYYr3ADKmBsak YDlfYAwoyNYnZYLVis14WrQU3vns6YpXOmLCaydQkBlCcRqYflsoFc3poVa6M6Tp vkoqonN7KWI/hBV77xU6DTnwEQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFFxFmioN MQgOfZiGVtOkPq+3nt00MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAn8XatEUuTkP7tuTnovuZzA1fMbcYmix/uvLl5aSpSmGg iPJ3HBoCUXwnOXnOB1G1iO/wN1neVJaY6sk3Kadk18qMfK+d5dm+52wq219ytv0o dXls/En9s1ldOouHHc9L7k068Cs2YoOFozH6whBbk35dM/p4rjEBST3GUst/MmCh TGnY+F6jk4hMLKhHetELUN4766ebtewgp/3WnW7dGiYsP3Qdu6DXfsSyheAw/Ei1 QJ9ZH2dBkhL95hAYy2n0sg3YIDVp5G3RU5B902oBJpfxDS/qrz2CCajT8k7XJE5s u6HVDayNHFosKa75sINdGkBjn0sHCSnUP35EjFdUTQ== -----END CERTIFICATE-----Generated at Wed May 13 02:29:35 2026 by rpki-client