$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: +RVi/3FSFqxNu/sarYHjuihrWCIMqTEIvG64jg6EZmM= Subject key identifier: E3:0D:AF:C6:93:75:B7:A9:3E:F2:2C:D9:81:CE:30:8B:60:B8:FC:DF Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 48B6 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4806 Signing time: Sun 19 Oct 2025 19:24:29 +0000 Manifest this update: Sun 19 Oct 2025 19:24:29 +0000 Manifest next update: Sun 26 Oct 2025 19:24:29 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 0/Mo4YKUcY8bFsGxMTQtJnEdZ9hr8mUpbAkLAx6HcYo=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 19:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18614 (0x48b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Oct 19 19:24:29 2025 GMT Not After : Oct 26 19:24:29 2025 GMT Subject: CN=68f53aed-2f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a4:71:30:01:68:67:32:61:40:05:b0:59:90: b6:e7:ef:1a:fb:68:ec:9a:b5:e1:62:d9:2f:42:57: 37:e8:a6:ad:11:85:35:c8:1c:13:d6:83:b7:63:b6: cb:f4:c0:86:91:e5:6b:a4:33:00:8f:d5:f9:a4:3b: a6:a5:b0:3b:49:53:b6:8d:67:0e:68:50:23:a0:b0: bf:0e:c6:73:59:35:01:ad:72:48:13:0f:d3:4c:d8: 56:86:85:b1:71:ba:3d:1e:c3:78:02:71:20:81:ab: 74:2f:38:36:e4:29:80:1c:a5:46:9c:96:10:1e:00: 80:01:1a:c6:eb:39:cd:12:cc:af:7f:5a:7a:5a:3c: bf:14:6a:06:62:e6:62:80:06:64:bf:c6:6f:fe:6b: 22:4f:ea:c9:46:3d:98:9b:4a:63:40:e0:83:b5:0d: 3d:86:31:e2:b6:40:ef:b9:42:fd:77:93:d1:20:a5: af:7a:a2:d0:4e:e5:9c:ce:d0:dc:c8:8a:a9:dd:25: 96:71:c0:58:ba:ee:93:7c:22:64:75:56:21:1d:43: 76:75:0e:02:64:1c:cf:0c:d0:bb:1e:e8:c1:b2:be: c0:3b:06:5a:61:86:ac:a2:1d:51:18:a1:e9:a5:3e: 95:2e:75:14:65:ec:c9:fa:cf:c5:ee:1b:8c:f2:31: af:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:0D:AF:C6:93:75:B7:A9:3E:F2:2C:D9:81:CE:30:8B:60:B8:FC:DF X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:e4:f0:c5:fd:21:33:a4:fe:26:9b:e1:33:11:4d:4b:26:22: 26:5f:c5:a5:04:00:78:9c:a7:bf:14:d7:ee:f7:97:a5:db:e9: 17:f7:1d:2b:f7:d9:30:a9:ae:31:a3:4f:8d:57:6e:b8:60:3e: 7f:a8:44:72:42:b1:84:8d:56:c7:51:ae:70:b7:e9:3f:34:5d: b0:18:53:28:30:80:a5:dc:50:b3:99:35:c3:ba:9f:70:2a:89: 7c:ee:5e:ca:57:0a:67:a4:f8:85:98:5e:17:81:68:8e:11:1e: a0:61:de:67:92:86:1a:b0:8f:86:36:92:64:4a:ba:d9:5a:30: ad:47:f3:93:0e:4d:4a:3a:61:3d:bd:89:7f:0b:f3:63:de:85: 50:97:3a:d1:c8:0a:f1:64:9a:22:9b:dc:ae:2a:2e:62:1a:31: f1:06:7b:67:1b:80:25:2e:9d:24:68:3b:49:49:62:8b:10:9e: 69:db:f7:8b:f9:9b:8f:4e:dc:53:12:ef:80:c6:a6:12:45:9e: 6e:2e:16:e1:38:04:57:4e:2c:5c:36:1e:ef:9e:fc:4b:81:5d: 3f:5e:e9:8a:b2:e3:14:fb:49:60:6b:8a:1a:d2:aa:d3:2a:2c: 2e:2c:7c:e4:ff:76:1f:68:79:d7:16:ba:94:4a:e0:af:62:46: 0d:47:2c:6b -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMDE5MTkyNDI5WhcNMjUxMDI2MTkyNDI5WjAYMRYwFAYD VQQDEw02OGY1M2FlZC0yZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6RxMAFoZzJhQAWwWZC25+8a+2jsmrXhYtkvQlc36KatEYU1yBwT1oO3Y7bL 9MCGkeVrpDMAj9X5pDumpbA7SVO2jWcOaFAjoLC/DsZzWTUBrXJIEw/TTNhWhoWx cbo9HsN4AnEggat0Lzg25CmAHKVGnJYQHgCAARrG6znNEsyvf1p6Wjy/FGoGYuZi gAZkv8Zv/msiT+rJRj2Ym0pjQOCDtQ09hjHitkDvuUL9d5PRIKWveqLQTuWcztDc yIqp3SWWccBYuu6TfCJkdVYhHUN2dQ4CZBzPDNC7HujBsr7AOwZaYYasoh1RGKHp pT6VLnUUZezJ+s/F7huM8jGv2wIDAQABo4IChzCCAoMwHQYDVR0OBBYEFOMNr8aT dbepPvIs2YHOMItguPzfMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBd5PDF/SEzpP4mm+EzEU1LJiImX8WlBAB4 nKe/FNfu95el2+kX9x0r99kwqa4xo0+NV264YD5/qERyQrGEjVbHUa5wt+k/NF2w GFMoMICl3FCzmTXDup9wKol87l7KVwpnpPiFmF4XgWiOER6gYd5nkoYasI+GNpJk SrrZWjCtR/OTDk1KOmE9vYl/C/Nj3oVQlzrRyArxZJoim9yuKi5iGjHxBntnG4Al Lp0kaDtJSWKLEJ5p2/eL+ZuPTtxTEu+AxqYSRZ5uLhbhOARXTixcNh7vnvxLgV0/ XumKsuMU+0lga4oa0qrTKiwuLHzk/3YfaHnXFrqUSuCvYkYNRyxr -----END CERTIFICATE-----Generated at Mon Oct 20 00:21:00 2025 by rpki-client