
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: JzuX7lq7YamV+2M4fZHsCka8qW+ifXJLLEG25ZQhQfA=
Subject key identifier: E7:47:34:A0:35:27:63:A3:DE:1E:57:38:7C:29:44:FA:27:D3:12:2F
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4BF4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 4B30
Signing time: Sun 05 Jul 2026 14:50:12 +0000
Manifest this update: Sun 05 Jul 2026 14:50:12 +0000
Manifest next update: Sun 12 Jul 2026 14:50:12 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: C9UAy8fdWoYWda+0NEdbKLMLB/xt/m/ZUzDx2Bu+u3o=)
2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=)
3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
6: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
13: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 12 Jul 2026 14:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19444 (0x4bf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 5 14:50:12 2026 GMT
Not After : Jul 12 14:50:12 2026 GMT
Subject: CN=6a4a6f24-1709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b3:08:48:ea:1c:12:95:97:41:8f:16:23:16:
54:f0:68:f2:b8:20:71:31:fb:f1:d0:ea:80:d0:2f:
d4:9c:30:74:d7:73:e0:09:00:9b:fc:9c:33:e5:c1:
64:0b:e2:bb:2a:a1:dc:a5:07:cd:a4:c5:38:bd:e9:
43:f3:d6:5b:24:1d:00:21:91:95:16:46:95:74:9d:
f1:ac:4e:ce:26:82:06:d2:d0:11:aa:8c:12:a6:f4:
2c:43:1d:6d:97:2e:0d:41:58:48:23:e0:7c:dd:2a:
92:0b:6c:2b:e9:53:11:d5:f5:f7:03:2b:d7:26:f3:
b0:75:9a:8a:66:49:b6:34:11:80:b6:4f:3e:2d:20:
c2:76:f0:8d:8d:23:83:bc:1d:3f:5f:50:a3:79:ba:
b8:fa:dd:e4:e5:7e:98:b8:aa:ce:4a:f3:59:eb:e5:
c4:db:a3:97:6e:e5:93:52:32:21:6d:7f:c1:ed:0a:
1a:6b:ee:a7:24:17:55:14:5a:40:59:60:0a:31:57:
72:fa:03:4a:e8:bb:0d:3a:6d:8e:8c:6e:bd:07:d5:
e3:67:2b:23:f3:bb:09:78:eb:6e:38:de:41:c7:19:
74:1e:21:c4:a6:20:bb:fd:c7:62:9e:52:71:fd:d6:
da:35:ed:05:40:ca:4c:83:84:8d:9f:53:c8:d9:60:
d7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:47:34:A0:35:27:63:A3:DE:1E:57:38:7C:29:44:FA:27:D3:12:2F
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
89:e9:cf:78:77:3b:ab:14:a1:a4:0f:7c:d8:06:b2:57:fd:3d:
19:37:e0:b5:e8:c5:28:59:77:a2:f3:4f:76:ae:99:be:ea:ac:
9b:92:92:6c:2d:ce:f2:e7:df:f6:8b:b5:94:fc:fa:eb:5d:60:
b3:97:92:79:97:d6:9b:a5:e5:65:bc:92:a4:54:3c:78:cf:09:
d7:e2:c8:e5:43:c0:2a:6c:d4:7c:09:d3:b7:c6:f6:0a:ba:21:
75:06:0a:3a:4e:1b:a0:fc:ab:59:2a:e5:89:8b:b5:92:b4:2f:
3b:62:9d:ca:df:8b:92:7b:ef:61:53:89:60:3e:af:0c:27:63:
95:9d:3b:01:ef:0a:1a:0e:70:cc:bd:55:1b:a5:88:9b:a6:42:
c9:ba:38:ff:04:66:fc:47:d0:67:37:0b:39:cb:63:28:1c:41:
17:5d:83:c7:ef:0b:06:47:14:48:f9:67:b3:0c:63:9a:a3:19:
61:e9:14:3b:84:d6:e6:dc:20:88:68:25:4b:cc:06:1a:23:25:
64:25:e3:3f:80:d0:f2:a2:58:27:8e:76:c5:5c:c9:f8:3b:c1:
a4:59:22:81:51:c7:dc:2d:05:94:65:3b:14:6f:ec:b4:f0:df:
25:1e:83:36:ef:b3:85:e3:00:0e:ba:d4:7d:e8:6d:ea:27:c4:
90:0c:7c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 02:23:08 2026 by rpki-client