$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: 75ixwdz9pPgDYRWe6Tw/PIfVq84PvE9SnFXqKhM2NZM= Subject key identifier: A2:30:0E:EB:6A:D4:D2:BA:9D:0F:02:DE:25:A4:97:C6:5B:E6:B9:30 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 48E8 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4838 Signing time: Wed 05 Nov 2025 11:19:54 +0000 Manifest this update: Wed 05 Nov 2025 11:19:53 +0000 Manifest next update: Wed 12 Nov 2025 11:19:53 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: Bv/zKp8JJrHnZ6DPuln8IY1aalQiDqCmESDr1gV9CAo=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 11:19:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18664 (0x48e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Nov 5 11:19:53 2025 GMT Not After : Nov 12 11:19:53 2025 GMT Subject: CN=690b32d9-645d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e1:4b:38:75:52:ee:2e:08:e9:db:63:db:4d: b1:20:c4:56:15:18:b9:67:9e:9c:90:71:49:7d:b3: 3b:e8:7a:6b:a5:13:dd:e3:58:7d:b8:32:f4:95:b9: 6b:ac:15:40:41:0d:8a:47:93:37:51:5f:e7:ec:68: 16:12:63:a1:e8:cd:3c:78:86:64:c3:3b:56:82:66: da:e9:b2:44:7e:63:f3:20:02:0a:ba:9b:7a:53:d7: d1:11:a9:c2:22:aa:dc:eb:c4:bf:55:ac:4f:7f:7e: 4b:f1:3e:46:51:48:8c:be:02:7f:7e:1c:6c:7f:15: 3c:cd:95:7d:d7:5e:96:24:46:d3:16:1e:a7:2c:21: a6:ee:c4:77:97:e8:01:75:f9:89:41:4e:af:26:cb: b4:1a:91:7d:ee:95:38:70:a4:91:4c:5f:5f:8a:d6: d0:d6:1c:7e:f0:ab:1f:b9:99:00:e8:2e:b8:90:1c: fe:27:69:90:83:da:37:a3:7b:db:73:aa:ed:1c:ba: 0c:ad:09:cc:24:8f:46:52:9a:bf:51:d2:f6:ca:7f: df:94:b7:34:7d:50:7e:db:79:6e:d8:e6:3d:f3:a2: 97:b0:a5:64:a5:a2:06:9b:3d:32:c0:43:37:e2:d7: 05:88:7b:d9:42:ec:7f:fd:bf:26:17:23:36:43:ba: 8e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:30:0E:EB:6A:D4:D2:BA:9D:0F:02:DE:25:A4:97:C6:5B:E6:B9:30 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:e5:b5:74:68:b0:80:cc:b9:4e:34:a4:b9:cc:d6:97:be:24: 82:f2:26:78:76:b6:70:72:ad:f3:f9:fa:9c:fe:49:0f:68:a9: 16:da:2a:67:a7:90:99:70:10:18:4c:29:3b:82:0f:9e:e4:30: dd:20:ea:c5:83:fb:9c:9c:80:65:9f:c6:e6:2d:1e:29:c5:80: 07:a8:69:54:3b:45:23:82:3f:f9:74:6a:0f:e4:01:3f:b8:d7: 37:df:91:23:61:10:2c:7e:1c:3c:ad:c1:bb:3a:c3:20:d9:80: 8b:a4:53:da:68:65:cf:c1:3f:fb:2c:57:55:ea:1c:d6:c8:78: 4c:05:67:20:fb:32:3e:dd:14:b0:ad:48:79:2b:7c:d2:1e:9c: d1:ce:50:d5:21:77:aa:c3:49:75:cd:dc:09:10:c7:a0:05:c5: 22:ec:bb:65:08:3f:3a:19:ed:41:eb:86:21:db:5a:5a:99:ad: 67:0d:aa:fc:b2:11:02:dc:f0:69:a8:95:e1:9d:21:f5:eb:60: 46:c7:7b:10:a3:44:90:3c:7c:19:67:5d:f7:71:ed:1b:65:d8: 09:12:ec:a0:d9:07:c5:3c:75:56:f9:49:40:af:c0:d3:0d:90: 9b:95:d5:32:89:43:14:3b:2e:35:32:b5:0a:2b:59:27:bd:ab: 97:df:db:fd -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMTA1MTExOTUzWhcNMjUxMTEyMTExOTUzWjAYMRYwFAYD VQQDEw02OTBiMzJkOS02NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweFLOHVS7i4I6dtj202xIMRWFRi5Z56ckHFJfbM76HprpRPd41h9uDL0lblr rBVAQQ2KR5M3UV/n7GgWEmOh6M08eIZkwztWgmba6bJEfmPzIAIKupt6U9fREanC Iqrc68S/VaxPf35L8T5GUUiMvgJ/fhxsfxU8zZV9116WJEbTFh6nLCGm7sR3l+gB dfmJQU6vJsu0GpF97pU4cKSRTF9fitbQ1hx+8KsfuZkA6C64kBz+J2mQg9o3o3vb c6rtHLoMrQnMJI9GUpq/UdL2yn/flLc0fVB+23lu2OY986KXsKVkpaIGmz0ywEM3 4tcFiHvZQux//b8mFyM2Q7qODwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFKIwDutq 1NK6nQ8C3iWkl8Zb5rkwMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA45bV0aLCAzLlONKS5zNaXviSC8iZ4drZw cq3z+fqc/kkPaKkW2ipnp5CZcBAYTCk7gg+e5DDdIOrFg/ucnIBln8bmLR4pxYAH qGlUO0Ujgj/5dGoP5AE/uNc335EjYRAsfhw8rcG7OsMg2YCLpFPaaGXPwT/7LFdV 6hzWyHhMBWcg+zI+3RSwrUh5K3zSHpzRzlDVIXeqw0l1zdwJEMegBcUi7LtlCD86 Ge1B64Yh21pama1nDar8shEC3PBpqJXhnSH162BGx3sQo0SQPHwZZ133ce0bZdgJ Euyg2QfFPHVW+UlAr8DTDZCbldUyiUMUOy41MrUKK1knvauX39v9 -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:24 2025 by rpki-client