$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: y9D1ljHe70r58rQ42pEVamGSU3HZhZCK2jpMIkCa/UY= Subject key identifier: D6:5E:BB:81:C2:10:C0:F7:23:7B:91:49:BA:7E:9B:EB:5C:B0:61:C4 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 48D9 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 4829 Signing time: Fri 31 Oct 2025 14:50:09 +0000 Manifest this update: Fri 31 Oct 2025 14:50:08 +0000 Manifest next update: Fri 07 Nov 2025 14:50:08 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: INzejj+U9T0nE7stO93JVCI58ChdOWwfV7yJCufIYac=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 14:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18649 (0x48d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Oct 31 14:50:08 2025 GMT Not After : Nov 7 14:50:08 2025 GMT Subject: CN=6904cca1-b141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:21:4e:17:4d:86:75:df:42:29:7d:f7:aa:dc: 71:cc:80:df:6f:fe:e6:bc:33:38:f0:57:92:93:b3: 85:9c:31:b8:4c:4b:bf:64:79:c8:b8:77:ac:68:b2: 6c:11:8e:c2:22:2d:66:f8:a1:e0:cb:75:d9:c4:d2: e3:70:dd:70:84:61:82:e5:26:09:9d:1b:45:50:65: ce:20:ca:18:7f:67:2f:c5:4e:9a:5a:b5:33:0f:db: 26:86:f7:64:6a:85:bd:f4:eb:fc:63:2b:87:88:d3: 2f:94:a4:58:6b:21:ce:40:09:2e:e1:c4:e0:8d:76: 48:9f:a2:11:96:3e:f2:bd:57:0e:ec:84:3f:d0:5d: 74:74:97:71:f4:75:3c:09:8a:8e:6c:ba:55:30:2e: 65:3f:5c:98:b8:53:6d:ff:19:82:0e:49:34:d4:6d: a0:dd:cd:e9:a9:3d:9b:12:15:16:80:ef:49:77:8b: 15:a6:89:3b:d8:ec:5f:d1:f8:06:3f:95:44:98:a6: ed:0f:72:cb:4c:e5:75:18:be:71:30:ba:89:eb:1a: b3:3a:e4:f9:60:0e:ae:d1:df:f9:00:27:b7:d2:d1: 2d:1f:db:6b:16:d0:e4:73:6c:2b:a6:08:e3:9c:5b: bf:cf:c2:53:93:1f:d6:68:48:86:89:3a:9f:54:16: 54:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:5E:BB:81:C2:10:C0:F7:23:7B:91:49:BA:7E:9B:EB:5C:B0:61:C4 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:fc:f2:d5:57:0c:51:80:bf:94:27:82:5e:a1:80:da:ee:10: c1:82:18:56:e0:eb:b5:9e:2e:06:e1:58:9a:ca:f2:0f:16:19: a2:0a:3d:62:fb:2a:c9:4e:d3:1b:d8:be:36:93:fc:55:61:76: 57:5a:bb:30:95:f6:cb:64:63:0c:68:26:ff:b6:66:97:12:99: c5:4d:95:b7:2f:d0:a2:1d:10:d7:19:fc:4d:ef:04:55:09:b4: 65:29:f1:f7:af:47:1f:67:6e:6c:65:a5:af:7e:6f:a9:12:f9: e8:49:14:ce:ac:16:23:5a:d0:db:12:32:3c:22:e0:53:f4:24: b3:35:d5:86:a0:f6:92:15:f3:54:e2:b9:61:07:0e:75:17:ca: 94:2b:ac:17:74:77:0f:cf:f2:c5:9a:c4:35:11:a3:05:50:1c: e6:af:15:1d:6d:d4:a9:ea:7f:60:af:43:34:d7:6c:2d:de:5c: 84:e2:88:87:5c:c1:1f:6a:bf:ec:a7:87:f9:b4:aa:38:a7:48: 1c:da:98:0d:e9:c1:79:a1:df:14:ea:4f:f6:24:1a:1b:88:d4: c6:60:70:3d:f6:84:0f:30:0c:1e:3d:75:ef:87:98:88:ba:37: 3b:9c:65:f5:f9:28:24:3f:09:54:f0:cc:bf:fe:92:50:99:da: c8:5c:ab:af -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUxMDMxMTQ1MDA4WhcNMjUxMTA3MTQ1MDA4WjAYMRYwFAYD VQQDEw02OTA0Y2NhMS1iMTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yFOF02Gdd9CKX33qtxxzIDfb/7mvDM48FeSk7OFnDG4TEu/ZHnIuHesaLJs EY7CIi1m+KHgy3XZxNLjcN1whGGC5SYJnRtFUGXOIMoYf2cvxU6aWrUzD9smhvdk aoW99Ov8YyuHiNMvlKRYayHOQAku4cTgjXZIn6IRlj7yvVcO7IQ/0F10dJdx9HU8 CYqObLpVMC5lP1yYuFNt/xmCDkk01G2g3c3pqT2bEhUWgO9Jd4sVpok72Oxf0fgG P5VEmKbtD3LLTOV1GL5xMLqJ6xqzOuT5YA6u0d/5ACe30tEtH9trFtDkc2wrpgjj nFu/z8JTkx/WaEiGiTqfVBZU1QIDAQABo4IChzCCAoMwHQYDVR0OBBYEFNZeu4HC EMD3I3uRSbp+m+tcsGHEMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBo/PLVVwxRgL+UJ4JeoYDa7hDBghhW4Ou1 ni4G4ViayvIPFhmiCj1i+yrJTtMb2L42k/xVYXZXWrswlfbLZGMMaCb/tmaXEpnF TZW3L9CiHRDXGfxN7wRVCbRlKfH3r0cfZ25sZaWvfm+pEvnoSRTOrBYjWtDbEjI8 IuBT9CSzNdWGoPaSFfNU4rlhBw51F8qUK6wXdHcPz/LFmsQ1EaMFUBzmrxUdbdSp 6n9gr0M012wt3lyE4oiHXMEfar/sp4f5tKo4p0gc2pgN6cF5od8U6k/2JBobiNTG YHA99oQPMAwePXXvh5iIujc7nGX1+SgkPwlU8My//pJQmdrIXKuv -----END CERTIFICATE-----Generated at Fri Oct 31 23:30:53 2025 by rpki-client