$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json) Hash identifier: RbQgAuqq75ZJfYtoj29EXKOrNUKklkQbpHVdxbt4f1g= Subject key identifier: 78:4D:97:9C:67:4B:2C:E7:10:06:84:F2:C8:B1:0B:FA:31:C7:BA:16 Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Certificate serial: 4856 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft Manifest number: 47A6 Signing time: Thu 18 Sep 2025 02:50:09 +0000 Manifest this update: Thu 18 Sep 2025 02:50:09 +0000 Manifest next update: Thu 25 Sep 2025 02:50:09 +0000 Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: UndoaxLvDbLkZE5Y6TIyYRkWWk9qo1SUDeFH30Fav18=) 2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=) 3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=) 4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: dEN04Vh3/XJUtldGAQqecGT8RVXi/7/2tEH5QIpc0iQ=) 5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=) 6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=) 7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=) 8: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=) 9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=) 10: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=) Validation: OK Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 02:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18518 (0x4856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22 Validity Not Before: Sep 18 02:50:09 2025 GMT Not After : Sep 25 02:50:09 2025 GMT Subject: CN=68cb7361-7cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4a:bf:5f:bd:21:35:fa:0c:38:7b:5a:88:eb: b8:ef:44:7c:6b:3b:45:e2:27:63:5e:52:3b:1f:29: a5:a0:78:2a:6b:6d:95:1d:1a:95:c8:62:8b:c7:4a: 55:49:a1:52:0c:a5:55:3d:1b:36:e6:54:4d:87:aa: d3:1a:e3:ce:f9:08:d8:f3:70:b1:68:0d:50:61:ff: 0c:19:64:e6:43:46:06:00:d3:84:8d:00:04:e2:f3: 35:fd:9a:90:68:58:97:db:16:e7:7d:ea:35:20:a0: c5:a6:2e:70:4f:b4:88:f9:4c:88:92:a5:dc:78:a3: 2e:b0:d2:30:a1:19:a3:68:48:d4:c6:57:02:26:7e: 1e:00:0a:23:b6:ec:c6:2d:c5:89:56:7d:37:26:90: 26:53:19:18:7b:cc:6c:79:95:00:de:49:d1:f6:fa: e5:37:b2:5b:53:7b:0c:2e:8d:56:dd:92:83:4d:bc: 7e:58:a4:75:cf:e2:56:88:86:17:4b:3b:4e:a7:4e: 61:2d:d9:8a:09:73:7e:d1:d3:14:ee:59:bf:89:bd: 72:02:3d:4b:1b:4d:94:26:42:ea:b3:fa:35:6f:f2: fe:7d:0e:bb:7a:8c:d8:0e:cc:b0:d6:fd:f5:38:4c: 29:37:0c:31:6a:18:54:10:65:a5:d6:1f:03:9d:59: 0b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4D:97:9C:67:4B:2C:E7:10:06:84:F2:C8:B1:0B:FA:31:C7:BA:16 X509v3 Authority Key Identifier: keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ea:b5:e1:5b:91:00:b0:e4:cc:6e:53:d3:bf:dc:b5:ac:b5: ab:29:50:76:ab:17:e4:bc:b5:cd:b5:14:f7:5a:1a:c4:cf:61: 29:18:a9:b7:c7:b0:76:c6:88:1a:c3:b9:86:64:28:bb:9d:76: 60:12:77:a6:40:70:72:9b:d4:6a:f1:2d:80:b3:fa:8c:36:95: b2:e2:52:c6:c7:02:18:c4:a8:ef:df:24:f7:5b:b2:86:b8:07: 89:cf:64:26:8f:01:f9:7f:98:26:f6:16:b8:09:f8:4d:6c:da: 15:d1:20:c5:03:fc:98:e2:66:9c:d3:ba:8b:15:7f:a8:d3:9c: e6:47:85:4c:97:a3:ae:73:43:d2:25:de:70:72:1d:d4:ca:55: 67:74:d2:8c:23:fd:a2:c3:db:7c:fb:7a:c2:a1:d7:4c:fe:49: f2:09:48:cc:e8:c1:49:76:80:ef:aa:b8:89:c8:89:a6:9e:ae: 2b:7f:2f:e6:fa:ba:1f:7b:c8:37:9d:2e:c0:57:6f:03:a3:7f: bd:e1:d8:33:99:23:f8:fd:89:d1:e2:2c:5b:d7:84:71:27:7f: 5d:f0:af:d9:bd:c5:34:5c:22:ad:cc:9b:57:54:f3:76:e8:84: 54:c4:20:7e:f6:9b:45:bb:35:ce:aa:62:26:16:cb:6b:42:ba: 83:71:6c:e2 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICSFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz M0NDOEVBMjIwHhcNMjUwOTE4MDI1MDA5WhcNMjUwOTI1MDI1MDA5WjAYMRYwFAYD VQQDEw02OGNiNzM2MS03Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUq/X70hNfoMOHtaiOu470R8aztF4idjXlI7HymloHgqa22VHRqVyGKLx0pV SaFSDKVVPRs25lRNh6rTGuPO+QjY83CxaA1QYf8MGWTmQ0YGANOEjQAE4vM1/ZqQ aFiX2xbnfeo1IKDFpi5wT7SI+UyIkqXceKMusNIwoRmjaEjUxlcCJn4eAAojtuzG LcWJVn03JpAmUxkYe8xseZUA3knR9vrlN7JbU3sMLo1W3ZKDTbx+WKR1z+JWiIYX SztOp05hLdmKCXN+0dMU7lm/ib1yAj1LG02UJkLqs/o1b/L+fQ67eozYDsyw1v31 OEwpNwwxahhUEGWl1h8DnVkL4QIDAQABo4IChzCCAoMwHQYDVR0OBBYEFHhNl5xn SyznEAaE8sixC/oxx7oWMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h cG5pYy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZE MUZGMi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MDMGCCsGAQUFBzAN hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAP6rXhW5EAsOTMblPTv9y1rLWrKVB2qxfk vLXNtRT3WhrEz2EpGKm3x7B2xogaw7mGZCi7nXZgEnemQHBym9Rq8S2As/qMNpWy 4lLGxwIYxKjv3yT3W7KGuAeJz2QmjwH5f5gm9ha4CfhNbNoV0SDFA/yY4mac07qL FX+o05zmR4VMl6Ouc0PSJd5wch3UylVndNKMI/2iw9t8+3rCoddM/knyCUjM6MFJ doDvqriJyImmnq4rfy/m+rofe8g3nS7AV28Do3+94dgzmSP4/YnR4ixb14RxJ39d 8K/ZvcU0XCKtzJtXVPN26IRUxCB+9ptFuzXOqmImFstrQrqDcWzi -----END CERTIFICATE-----Generated at Thu Sep 18 12:18:21 2025 by rpki-client