$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: jhwJmQhgxRfTontvWokE6zF3294WrJBEqTAvdABKOqE= Subject key identifier: 8E:BF:31:0A:86:59:8D:9A:2B:3C:92:A5:48:30:C4:86:90:BC:D2:C0 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 490B Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 485B Signing time: Sat 15 Nov 2025 02:50:10 +0000 Manifest this update: Sat 15 Nov 2025 02:50:10 +0000 Manifest next update: Sat 22 Nov 2025 02:50:10 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: QKlh4bMtFIW3kMFUQpfSI6duGuyv3+HSXW4N4ylonzM=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Nov 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18699 (0x490b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Nov 15 02:50:10 2025 GMT Not After : Nov 22 02:50:10 2025 GMT Subject: CN=6917ea62-0829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0b:a6:bb:db:fa:7c:8d:3c:c4:69:ca:c8:2a: f1:7a:70:47:42:ed:dc:dc:ed:7c:96:23:9f:b3:2c: 35:d4:4e:0c:e2:98:40:4f:f0:0e:68:c7:68:8a:d1: 81:0b:03:88:8e:d7:fc:26:2c:15:d8:6c:89:a2:2e: bb:16:78:9b:0f:9c:d2:f0:aa:2f:b5:de:00:5e:a1: e9:fa:ea:6e:9f:c4:bc:8a:b8:f3:7f:5e:bb:44:5c: c6:6b:83:f0:36:bb:50:1d:2b:d1:c0:fc:16:e8:bd: 0a:49:a0:fd:db:05:ec:8b:8d:99:c6:33:57:5a:9f: 51:9d:2e:60:3b:8a:27:25:12:92:9b:10:b9:cb:fb: cd:b4:ff:e9:d4:45:65:a6:29:fc:da:e9:79:53:51: 87:6b:53:69:81:0a:c8:cb:68:93:c6:65:92:52:b6: 83:ac:52:28:b6:cc:34:6e:d4:fe:1e:bc:be:16:99: 54:3b:3d:de:1a:0e:18:8c:ca:ca:76:82:4b:1c:39: b4:41:4d:fd:ae:b5:55:e4:0d:b5:ad:59:7f:89:12: 93:25:fd:51:b8:a0:28:4c:67:f1:7d:6f:34:71:cc: f0:ce:6f:cd:9a:de:8a:2f:0a:fa:06:4f:0e:a0:a9: 43:54:2d:23:8f:03:9d:be:f3:25:7d:6b:28:5c:b4: f3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BF:31:0A:86:59:8D:9A:2B:3C:92:A5:48:30:C4:86:90:BC:D2:C0 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:c7:49:7d:7e:cf:0f:9a:74:4b:47:26:ee:9b:98:dd:2a:a7: 01:87:8a:f8:b1:9a:66:b1:ab:70:2d:94:d3:47:ff:0c:9e:66: 9e:fe:6f:96:3f:59:d6:64:d7:51:e9:c6:57:bd:79:fd:31:76: 02:d0:92:90:70:33:a2:d2:4c:5b:74:f4:24:fb:80:0d:16:00: 09:90:70:18:d7:c6:a0:76:8b:23:3b:80:14:21:bd:9e:04:e2: 74:61:2c:49:48:00:7b:88:bd:09:28:cd:ef:0d:b9:bb:22:2b: ab:d7:18:5f:23:8e:a5:63:61:1f:12:6f:7b:43:d0:d7:01:fd: 46:69:bd:08:ca:4a:f9:e3:28:57:1e:11:6e:fd:f9:52:23:5b: 23:a0:d0:e2:17:46:88:fb:11:fd:7e:30:5b:4a:3e:22:a2:2c: 89:30:57:f9:77:f0:2d:77:4d:0a:96:b9:55:33:d1:c4:c7:05: ee:3e:66:74:8f:a5:e1:6b:69:dd:ca:b7:85:77:a4:f1:46:ec: 3b:f1:0b:ac:82:1a:0d:a0:ae:41:cb:59:21:c6:cd:5e:21:ad: 33:93:51:4f:16:91:46:e0:d5:de:1e:47:4c:96:f5:04:a9:40: 35:d5:17:6c:8f:78:40:8b:25:25:bb:71:78:85:27:f1:14:37: c9:5f:29:2d -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMTE1MDI1MDEwWhcNMjUxMTIyMDI1MDEwWjAYMRYwFAYD VQQDEw02OTE3ZWE2Mi0wODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Aumu9v6fI08xGnKyCrxenBHQu3c3O18liOfsyw11E4M4phAT/AOaMdoitGB CwOIjtf8JiwV2GyJoi67FnibD5zS8Kovtd4AXqHp+upun8S8irjzf167RFzGa4Pw NrtQHSvRwPwW6L0KSaD92wXsi42ZxjNXWp9RnS5gO4onJRKSmxC5y/vNtP/p1EVl pin82ul5U1GHa1NpgQrIy2iTxmWSUraDrFIotsw0btT+Hry+FplUOz3eGg4YjMrK doJLHDm0QU39rrVV5A21rVl/iRKTJf1RuKAoTGfxfW80cczwzm/Nmt6KLwr6Bk8O oKlDVC0jjwOdvvMlfWsoXLTzqwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFI6/MQqG WY2aKzySpUgwxIaQvNLAMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBpx0l9fs8PmnRLRybum5jdKqcBh4r4sZpm satwLZTTR/8Mnmae/m+WP1nWZNdR6cZXvXn9MXYC0JKQcDOi0kxbdPQk+4ANFgAJ kHAY18agdosjO4AUIb2eBOJ0YSxJSAB7iL0JKM3vDbm7Iiur1xhfI46lY2EfEm97 Q9DXAf1Gab0Iykr54yhXHhFu/flSI1sjoNDiF0aI+xH9fjBbSj4ioiyJMFf5d/At d00KlrlVM9HExwXuPmZ0j6Xha2ndyreFd6TxRuw78QusghoNoK5By1khxs1eIa0z k1FPFpFG4NXeHkdMlvUEqUA11Rdsj3hAiyUlu3F4hSfxFDfJXykt -----END CERTIFICATE-----Generated at Sat Nov 15 05:38:29 2025 by rpki-client