Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          uiCDxPiPezFqAb846jXZqj18Tb2u+LRnAQx6OMJDMIc=
Subject key identifier:   B6:65:7D:D4:FD:EC:59:3B:52:50:D5:57:9D:49:34:D9:9A:A2:1A:AA
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4BEB
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B27
Signing time:             Thu 02 Jul 2026 15:22:33 +0000
Manifest this update:     Thu 02 Jul 2026 15:22:32 +0000
Manifest next update:     Thu 09 Jul 2026 15:22:32 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: h1N5OIpUpU2tUD4kNP9wNU5oY/Yn5BhtvCZig/TDOaY=)
                          2: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          6: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          8: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          9: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=)
                          10: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          13: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 09 Jul 2026 15:22:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19435 (0x4beb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul  2 15:22:32 2026 GMT
            Not After : Jul  9 15:22:32 2026 GMT
        Subject: CN=6a468239-bbbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:06:bf:92:f1:b1:e3:77:20:ed:f1:57:5f:d1:
                    36:a6:ac:c1:d6:cd:ff:0c:9a:67:95:5f:0c:e7:16:
                    ca:a5:c0:cd:cf:7d:aa:43:43:f1:ea:42:54:97:88:
                    5a:97:c0:a1:2d:1e:5f:ba:c7:07:37:68:48:b3:42:
                    ce:bc:9c:fb:4f:f4:a9:7b:37:b5:e6:d3:bd:da:cf:
                    17:9a:a7:82:cd:1d:52:6d:e4:74:dc:cf:2d:1b:37:
                    8e:50:f2:79:91:c9:ab:5a:90:f8:ca:a2:b9:38:f4:
                    71:b9:10:71:b0:73:fd:46:81:4d:6c:99:a2:ef:31:
                    71:4a:67:dc:de:6b:99:3a:f1:f1:97:8e:72:bf:e8:
                    ef:92:d9:83:47:63:ee:fa:f3:cf:a4:63:0a:61:45:
                    a8:c5:b7:01:4e:8c:c5:98:87:7b:5a:ec:94:e7:ef:
                    2f:28:b2:09:ce:7f:40:b4:00:f7:bf:2d:cc:d0:c8:
                    6f:ae:76:52:c5:f5:13:d4:07:a2:f8:e8:74:74:5d:
                    99:14:ec:87:7f:30:49:ee:36:21:9e:06:d7:62:bd:
                    b2:67:c6:cf:66:43:c7:05:91:b7:08:06:66:a1:87:
                    d1:34:21:a0:77:89:3f:af:c6:01:ed:81:50:4a:6f:
                    de:4f:9b:34:75:78:26:81:77:15:0b:1e:3e:7c:02:
                    a2:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:65:7D:D4:FD:EC:59:3B:52:50:D5:57:9D:49:34:D9:9A:A2:1A:AA
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:d8:a7:72:c8:b5:4a:af:2e:fe:99:20:1b:36:56:de:8c:f5:
         32:ee:cc:fd:7e:ba:7f:e5:54:50:04:2b:c1:16:dc:ad:37:83:
         20:89:40:67:07:89:74:22:24:cb:8d:5d:e6:36:86:95:28:22:
         b7:e1:4b:57:43:00:08:ff:c3:d2:09:31:1e:18:f6:23:03:72:
         22:f9:95:8c:de:c4:ff:6e:8d:e3:bd:14:f4:11:bf:20:e3:7f:
         44:7e:7d:e9:97:16:55:04:92:52:ed:45:e2:00:18:02:af:5d:
         2e:c4:55:47:7f:30:44:66:bf:fd:49:d3:10:72:9a:f4:f4:a9:
         4f:24:1d:8a:8c:51:b6:d5:d1:7e:a8:e8:e9:eb:bf:ca:ca:0b:
         c4:c3:ab:9c:3e:17:2a:2d:40:d5:62:73:15:71:36:82:67:13:
         3b:6f:34:c3:e2:a0:6d:00:55:6c:3e:dc:ae:80:13:a2:60:6d:
         c0:a3:14:28:30:4b:41:45:02:95:91:a8:04:5b:b6:cb:98:bb:
         1b:99:3a:27:6f:a2:6f:82:a0:b0:cf:0a:0b:9a:57:85:a2:10:
         23:7c:14:e3:46:7e:cc:4e:e5:cb:85:ce:51:62:ee:18:87:71:
         a0:09:14:1e:e7:f0:68:9a:5e:7f:f9:fc:3b:f2:72:e8:7e:33:
         ea:70:16:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 00:29:57 2026 by rpki-client