Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          ODTeFQkMatSWrrxBGpa//wQHshHYguTiTM5ciXxnxiI=
Subject key identifier:   E1:6A:8A:83:E7:DE:60:BE:C9:09:06:6C:F2:40:06:B0:36:6C:C3:4F
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4C08
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B43
Signing time:             Sat 11 Jul 2026 02:50:12 +0000
Manifest this update:     Sat 11 Jul 2026 02:50:11 +0000
Manifest next update:     Sat 18 Jul 2026 02:50:11 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: g6UBizcfv+A3MAmot9XYudd9FivH9L5pSPunnySlZ6c=)
                          2: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          4: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          5: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
                          7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          9: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          10: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          11: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
                          12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          13: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 18 Jul 2026 02:50:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19464 (0x4c08)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul 11 02:50:11 2026 GMT
            Not After : Jul 18 02:50:11 2026 GMT
        Subject: CN=6a51af63-8e52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:2b:f4:ee:80:00:44:8b:74:6c:f8:08:8d:09:
                    48:a0:ca:24:16:22:ff:07:b7:71:9c:51:d8:7f:21:
                    e6:a1:dc:90:82:e9:19:ed:25:a0:8a:94:a8:63:7e:
                    70:c2:fc:98:0b:cf:71:85:24:14:47:84:4e:aa:36:
                    0a:21:a9:2f:6a:c2:a9:12:d1:99:7b:24:25:16:b6:
                    10:ec:c7:0b:40:80:e0:b6:28:31:27:75:2e:16:29:
                    7a:92:c0:de:ba:b7:bc:26:15:ba:88:65:3d:fe:4f:
                    97:89:42:50:db:17:1a:57:cb:1b:93:92:c0:56:a0:
                    74:08:a5:ac:19:79:47:81:82:89:cf:f3:b4:0f:9f:
                    ea:60:64:75:b8:ba:45:82:bb:f7:6d:f0:d5:4d:86:
                    8b:89:1f:42:84:c0:90:8a:0e:b0:28:11:ba:fe:be:
                    d8:c0:64:7f:71:c8:5b:46:9b:7d:c4:88:4e:e0:da:
                    4c:7d:6a:a4:ed:c2:95:e9:34:65:16:d6:c9:32:18:
                    94:09:cb:da:79:26:88:b2:7d:f2:f6:85:ba:ae:3e:
                    39:61:7c:79:3c:95:39:ba:92:4d:06:a9:0c:3a:ba:
                    1a:63:3a:14:3f:ff:fa:8e:0b:0c:5d:37:a2:32:28:
                    ab:4e:5b:bc:c8:8f:a9:7e:57:78:54:b6:69:dc:48:
                    5c:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:6A:8A:83:E7:DE:60:BE:C9:09:06:6C:F2:40:06:B0:36:6C:C3:4F
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:c5:ce:a9:f2:57:43:15:fd:a1:ac:2d:d7:3f:6d:bc:28:32:
         92:78:ca:70:cf:b8:51:4d:90:60:17:d6:ec:61:b3:88:c2:7c:
         94:d9:ee:88:b0:3d:7c:34:a6:86:dc:45:a8:07:f7:a1:56:fe:
         d0:cd:6b:57:3d:4f:7e:cc:0d:11:a6:54:17:7f:a9:79:37:2f:
         c5:fc:48:e4:ee:ea:cb:b4:1b:27:38:f4:b5:93:fd:db:d6:44:
         15:d6:27:91:36:51:bc:2e:ad:da:83:8a:3d:30:6b:d5:2f:0c:
         77:e4:2c:5c:a6:c3:5d:e4:1c:30:a9:63:f3:b5:77:67:f2:b2:
         38:0d:d9:74:8f:75:bc:69:81:10:b5:e3:04:c3:09:97:eb:26:
         0a:7b:7d:8c:8b:4c:08:08:28:68:a9:6f:9c:a7:19:0c:4e:98:
         c7:a2:6e:28:2e:01:70:04:ed:8a:8a:71:e6:3e:90:2c:54:ad:
         cb:e0:f8:39:8e:ab:5d:79:be:88:ca:fa:a6:8b:38:af:bf:11:
         ab:50:bc:ee:62:d8:65:c2:41:d4:53:fe:77:b0:5f:f0:f5:39:
         2e:9d:46:6b:41:ef:94:89:79:89:03:d3:af:8e:be:a0:80:40:
         23:3a:d8:fd:3c:8a:10:da:13:5d:fc:5f:3a:ca:d4:af:b6:1b:
         73:31:0f:cc
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgICTAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjYwNzExMDI1MDExWhcNMjYwNzE4MDI1MDExWjAYMRYwFAYD
VQQDEw02YTUxYWY2My04ZTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnCv07oAARIt0bPgIjQlIoMokFiL/B7dxnFHYfyHmodyQgukZ7SWgipSoY35w
wvyYC89xhSQUR4ROqjYKIakvasKpEtGZeyQlFrYQ7McLQIDgtigxJ3UuFil6ksDe
ure8JhW6iGU9/k+XiUJQ2xcaV8sbk5LAVqB0CKWsGXlHgYKJz/O0D5/qYGR1uLpF
grv3bfDVTYaLiR9ChMCQig6wKBG6/r7YwGR/cchbRpt9xIhO4NpMfWqk7cKV6TRl
FtbJMhiUCcvaeSaIsn3y9oW6rj45YXx5PJU5upJNBqkMOroaYzoUP//6jgsMXTei
MiirTlu8yI+pfld4VLZp3EhcnwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFOFqioPn
3mC+yQkGbPJABrA2bMNPMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p
Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG
Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/
BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq
hkiG9w0BAQsFAAOCAQEAdsXOqfJXQxX9oawt1z9tvCgyknjKcM+4UU2QYBfW7GGz
iMJ8lNnuiLA9fDSmhtxFqAf3oVb+0M1rVz1PfswNEaZUF3+peTcvxfxI5O7qy7Qb
Jzj0tZP929ZEFdYnkTZRvC6t2oOKPTBr1S8Md+QsXKbDXeQcMKlj87V3Z/KyOA3Z
dI91vGmBELXjBMMJl+smCnt9jItMCAgoaKlvnKcZDE6Yx6JuKC4BcATtiopx5j6Q
LFSty+D4OY6rXXm+iMr6pos4r78Rq1C87mLYZcJB1FP+d7Bf8PU5Lp1Ga0HvlIl5
iQPTr46+oIBAIzrY/TyKENoTXfxfOsrUr7YbczEPzA==
-----END CERTIFICATE-----
Generated at Sat Jul 11 07:07:04 2026 by rpki-client