
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: Rbf5xDD28el+WZEN7Twxmr9pRcmAQiwHYlIBWToowLA=
Subject key identifier: C8:11:DA:95:0A:DF:51:CB:0F:DF:54:33:40:E1:6D:7F:3A:E1:83:92
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4C0E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 4B49
Signing time: Mon 13 Jul 2026 02:50:12 +0000
Manifest this update: Mon 13 Jul 2026 02:50:12 +0000
Manifest next update: Mon 20 Jul 2026 02:50:12 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: aghv/OCEnCDjZXKeAs5MH4GZ1kisXyGnrY+DVf3IaL4=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
4: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
5: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
12: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
13: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19470 (0x4c0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 13 02:50:12 2026 GMT
Not After : Jul 20 02:50:12 2026 GMT
Subject: CN=6a545264-6a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:09:71:62:35:ae:7f:76:4b:cd:e3:80:9b:f9:
9f:63:89:02:4a:24:fc:0f:c4:77:90:6e:fc:66:e8:
21:a0:45:0d:a2:42:0b:0b:e1:c9:57:77:e6:e2:6d:
a6:00:32:50:8e:06:30:a4:15:b5:64:1d:1a:ea:9c:
66:f9:b2:5d:9e:7a:67:21:34:c1:ad:79:ad:25:7a:
9a:fc:dd:46:40:f9:73:5c:e5:e9:0f:cf:18:9a:07:
fc:e3:70:57:a0:a0:ee:24:e1:72:68:7e:80:9d:29:
ce:40:3d:f5:9c:e9:a3:85:b6:aa:be:43:96:89:d1:
73:48:09:f1:54:7e:a8:38:8d:01:74:c9:52:5b:2a:
eb:4b:26:e1:d6:dd:d5:3d:57:4d:45:ee:2c:04:c0:
4c:f4:66:e0:67:e8:8b:57:d9:2e:c9:49:e8:74:30:
df:f8:d0:17:ad:0e:05:a2:8c:de:30:b4:ef:8c:bc:
3a:fe:4e:94:94:f8:b2:37:5a:3c:3d:1a:88:a6:28:
28:bd:21:4d:2b:0e:58:8f:08:bd:14:cd:1a:6e:c9:
cd:b5:89:30:65:bf:eb:3f:84:6e:fe:08:66:3a:20:
20:b8:6a:d8:3a:77:ff:bc:e8:b2:6e:2f:ab:76:21:
09:e1:ae:53:bb:0a:ce:bc:95:68:0f:52:4e:87:22:
44:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:11:DA:95:0A:DF:51:CB:0F:DF:54:33:40:E1:6D:7F:3A:E1:83:92
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
39:60:a4:cb:15:ad:31:95:26:1b:6e:23:cf:b4:b1:2e:f1:f6:
77:bd:87:4d:a9:b3:11:db:c1:5f:87:e1:a8:e3:52:cf:bf:f1:
e6:c0:c2:ee:59:ed:ab:33:91:55:67:c6:b5:8b:55:33:67:6f:
75:fa:02:91:90:c6:01:d5:ff:a5:08:30:4d:6d:10:8a:a8:08:
43:e2:08:d1:ab:55:19:67:13:b3:fb:66:d6:cb:8b:e1:04:6e:
59:56:15:e2:c9:f4:c7:34:12:bc:1b:b9:98:21:5c:e5:72:cb:
3b:87:cb:84:2a:34:7f:e3:04:7f:7e:5d:ff:35:9b:1f:62:18:
74:67:3a:77:b7:99:e3:7d:91:5a:98:b8:28:d2:53:d8:f7:48:
76:98:4f:fb:04:e5:cc:27:62:95:03:57:9a:ed:b2:37:4b:21:
5f:00:7e:40:bc:52:4c:b5:f8:63:04:17:c9:e4:b9:a1:00:6b:
74:8e:b5:92:9c:5d:8e:67:aa:69:91:1d:ba:d3:b3:0e:80:09:
0a:27:0e:99:3c:e7:0f:11:6a:b7:65:47:b6:ba:8d:f1:00:31:
06:92:5d:a1:d9:c2:c2:84:94:80:97:93:0f:ef:3f:56:38:18:
96:30:30:c7:aa:f0:a9:e6:c8:9a:c6:cc:7a:a9:a3:30:18:84:
dc:b7:cf:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 08:06:55 2026 by rpki-client