Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          gv68ebRPnZWlGDNNaijxsRSQTpBbfyJhcihh/ptnJe8=
Subject key identifier:   93:5A:59:5B:73:0A:ED:63:66:5A:15:EE:D2:0E:E3:AB:C4:A8:99:40
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4BEE
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B2A
Signing time:             Fri 03 Jul 2026 15:02:11 +0000
Manifest this update:     Fri 03 Jul 2026 15:02:11 +0000
Manifest next update:     Fri 10 Jul 2026 15:02:11 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: UrQOznmHmKoko2XJcZYT7C+KrNixp4h9ECBK0J1c9qI=)
                          2: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=)
                          7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          9: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          10: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
                          12: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          13: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 15:02:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19438 (0x4bee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul  3 15:02:11 2026 GMT
            Not After : Jul 10 15:02:11 2026 GMT
        Subject: CN=6a47cef3-9a8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:e3:69:77:a9:9d:25:73:36:06:75:02:83:c0:
                    e0:e7:ff:bc:fa:d8:81:3d:cb:88:b6:86:a9:1c:b8:
                    62:50:2a:b2:41:73:42:eb:7d:b4:55:f9:d3:bb:b4:
                    c1:95:45:88:3e:87:49:61:e7:05:87:ce:c0:2a:c7:
                    e6:84:ca:ff:ae:66:74:94:01:38:45:e1:9a:c2:fb:
                    a4:83:d2:3c:58:ef:ff:b3:8b:b2:42:2e:27:fd:62:
                    08:69:8f:a3:68:ec:23:ed:9f:b7:00:4b:6a:4d:f9:
                    ef:c4:57:82:1a:7b:5e:6a:bf:7b:84:a3:b9:82:5c:
                    b1:4b:40:5e:92:60:86:36:f5:bb:b5:7d:db:d0:d9:
                    30:44:00:56:18:90:06:31:e9:d8:31:f6:4b:37:1c:
                    8e:47:1d:f7:ce:41:c6:e1:cb:c4:3f:ad:96:d8:86:
                    f2:15:16:b9:ae:c9:c5:81:6e:10:f1:42:b0:00:3e:
                    b2:17:86:f5:9c:47:20:f1:d6:f7:57:b9:71:0b:57:
                    fa:e3:78:9a:37:ad:bf:ec:51:a8:5e:e8:a5:81:f5:
                    65:68:e8:e3:97:b7:34:97:d9:76:06:f8:a8:7d:01:
                    05:93:76:70:57:3a:a0:26:99:d0:eb:29:4b:dc:cc:
                    e3:e3:3d:96:8c:65:b0:87:24:fd:91:71:07:52:61:
                    33:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:5A:59:5B:73:0A:ED:63:66:5A:15:EE:D2:0E:E3:AB:C4:A8:99:40
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:ee:03:a9:e5:16:4f:54:0d:6e:d8:68:73:8c:b7:35:c1:ed:
         f5:1a:0b:fc:83:58:10:48:5d:00:af:e4:55:a1:f0:43:e0:29:
         06:5c:59:34:6c:2c:21:62:24:0f:b0:72:ab:5f:09:29:57:6c:
         08:3c:54:28:6f:df:bb:e6:0c:9a:63:6f:12:e0:d0:3e:58:62:
         1f:47:68:91:53:18:6a:6f:e6:92:c5:f4:36:95:f5:88:22:08:
         4f:8e:65:a7:71:86:3c:2e:85:e6:cd:ea:c9:9e:39:76:1f:84:
         2b:4c:0a:92:83:f6:ca:94:45:01:f7:a2:f2:a8:e9:3c:d0:48:
         f4:40:80:e1:fd:0a:65:0f:0a:c5:be:96:1e:0c:dd:b3:67:e0:
         e3:ba:78:2a:16:1b:92:70:31:c2:a9:c3:48:25:c7:4b:df:4b:
         1a:c5:5f:d3:8c:8c:f9:3e:07:3e:fd:01:cf:92:9c:a7:e8:50:
         78:e8:e0:44:72:73:8b:c2:a3:7b:9c:33:e8:02:2f:3d:0d:03:
         dc:6b:cf:04:5d:b3:b7:64:df:aa:f4:0f:c7:fc:a8:ad:ce:a8:
         78:aa:c5:80:f0:90:b1:2a:57:c8:7e:0e:5c:e8:97:29:7b:13:
         fb:f9:ff:b1:d2:0e:61:9a:01:9a:70:d6:8c:81:0d:34:9d:a4:
         c6:69:20:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 00:22:13 2026 by rpki-client