$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: +Bb14RQfdEv++MpgnD6yWfpcYV+k1IFQNKPHonA4KdM= Subject key identifier: 9D:75:02:2B:11:23:0F:EE:71:6D:4B:B8:20:8B:03:C6:63:A4:10:AE Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4AF2 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4A37 Signing time: Fri 17 Apr 2026 14:50:11 +0000 Manifest this update: Fri 17 Apr 2026 14:50:11 +0000 Manifest next update: Fri 24 Apr 2026 14:50:11 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: ayGUGO+dxdncFTGdkL+aNS56qNFwAkUAdeLYH+qWmlc=) 2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: BH/FRxhYgE+v5+WE2GNEUCiZazOjIIn0k6v2ud3DD3s=) 3: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: esFXDH7ynBztsLYpp3vRpQNNhw8U+R5jMyP12TntS0I=) 5: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=) 6: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 8: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=) 9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) 11: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=) 12: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19186 (0x4af2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Apr 17 14:50:11 2026 GMT Not After : Apr 24 14:50:11 2026 GMT Subject: CN=69e248a3-ec48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:bf:f0:1a:fe:5f:69:cc:c0:af:bf:a8:41: 76:c1:e3:44:0a:7d:fb:ae:04:dd:b2:18:af:4b:f7: ae:36:11:66:58:9d:7b:10:44:a8:42:40:50:48:86: 4b:24:fc:e2:cf:ee:66:2a:ba:65:e5:cc:d1:fe:90: 14:56:eb:41:2c:28:16:c7:0d:29:02:d9:55:61:15: f0:8d:97:4d:50:55:9b:19:d1:84:3b:23:e0:aa:ab: df:2f:07:39:fb:31:10:c0:ff:a8:76:9b:20:71:cc: d9:2f:2c:17:db:ae:e7:48:8b:e0:01:ad:2c:ae:a2: df:95:7c:95:24:9e:39:81:1c:5a:b2:26:78:1e:3d: 6f:ae:a5:12:06:bb:31:79:a5:ac:81:73:a4:8f:a0: 40:c4:58:b5:bd:1c:35:d5:e3:0a:a4:1f:2b:5e:22: e2:64:03:6c:50:6d:d2:c7:75:ef:c5:eb:38:4a:85: 73:39:18:35:dc:6d:74:77:87:2d:d2:4a:12:cd:2d: 68:d3:57:c8:a2:20:4b:c2:3a:9b:d3:72:e6:00:b4: 11:41:ca:bf:28:56:90:27:fa:a7:37:d8:b0:a5:50: 4d:04:be:cf:d5:d6:e9:e6:b8:9c:8d:51:61:ae:17: 47:4b:f6:89:b1:ec:ba:58:be:30:5c:57:80:56:64: 86:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:75:02:2B:11:23:0F:EE:71:6D:4B:B8:20:8B:03:C6:63:A4:10:AE X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:2c:f4:2b:8f:bc:78:b8:cb:5a:64:5b:65:22:57:f5:91:09: 57:13:ba:a7:20:1d:84:ae:16:d1:7a:d7:e3:cd:28:fe:c6:3f: c8:83:ae:dd:ba:4d:2b:94:9d:6b:df:50:f6:6f:20:90:3f:12: 2a:32:22:a9:e8:87:57:c3:aa:54:bc:48:dd:9c:43:19:e9:4e: f3:24:c5:15:a1:43:1b:5e:75:df:86:54:e8:65:fa:cc:68:72: 8c:0d:26:23:40:0b:ff:88:05:d9:ae:95:b8:5e:bc:c8:f6:3c: 44:c2:66:aa:de:7d:c3:78:ec:7a:0a:f8:e0:94:8b:9d:9a:e1: 9d:d9:dd:65:52:d7:01:f9:5e:5e:b3:3b:21:4e:d9:e6:da:5f: 22:30:ec:69:fb:c1:e7:22:67:86:9d:a8:52:4b:85:cd:05:1c: d9:02:f2:c9:a9:aa:9c:3b:2d:71:59:a5:23:86:ec:33:99:71: 32:35:17:21:85:0e:07:2a:0d:9a:ea:b6:ac:46:5b:d3:0c:bd: ec:a2:9c:94:8a:1e:02:10:1b:d1:dd:32:ca:67:8a:de:9b:ee: 95:4c:ce:f5:ed:c6:14:2d:3f:a9:6b:ee:5b:15:ca:76:91:b4: 26:27:2c:a3:d6:f5:a6:a9:c7:58:e1:ef:2f:85:b0:70:b8:3e: 3e:9d:e6:06 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgICSvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjYwNDE3MTQ1MDExWhcNMjYwNDI0MTQ1MDExWjAYMRYwFAYD VQQDEw02OWUyNDhhMy1lYzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQK/8Br+X2nMwK+/qEF2weNECn37rgTdshivS/euNhFmWJ17EESoQkBQSIZL JPziz+5mKrpl5czR/pAUVutBLCgWxw0pAtlVYRXwjZdNUFWbGdGEOyPgqqvfLwc5 +zEQwP+odpsgcczZLywX267nSIvgAa0srqLflXyVJJ45gRxasiZ4Hj1vrqUSBrsx eaWsgXOkj6BAxFi1vRw11eMKpB8rXiLiZANsUG3Sx3Xvxes4SoVzORg13G10d4ct 0koSzS1o01fIoiBLwjqb03LmALQRQcq/KFaQJ/qnN9iwpVBNBL7P1dbp5ricjVFh rhdHS/aJsey6WL4wXFeAVmSGNQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFJ11AisR Iw/ucW1LuCCLA8ZjpBCuMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/ BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq hkiG9w0BAQsFAAOCAQEAkiz0K4+8eLjLWmRbZSJX9ZEJVxO6pyAdhK4W0XrX480o /sY/yIOu3bpNK5Sda99Q9m8gkD8SKjIiqeiHV8OqVLxI3ZxDGelO8yTFFaFDG151 34ZU6GX6zGhyjA0mI0AL/4gF2a6VuF68yPY8RMJmqt59w3jsegr44JSLnZrhndnd ZVLXAfleXrM7IU7Z5tpfIjDsafvB5yJnhp2oUkuFzQUc2QLyyamqnDstcVmlI4bs M5lxMjUXIYUOByoNmuq2rEZb0wy97KKclIoeAhAb0d0yymeK3pvulUzO9e3GFC0/ qWvuWxXKdpG0Jicso9b1pqnHWOHvL4WwcLg+Pp3mBg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:45:19 2026 by rpki-client