Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          JzuX7lq7YamV+2M4fZHsCka8qW+ifXJLLEG25ZQhQfA=
Subject key identifier:   E7:47:34:A0:35:27:63:A3:DE:1E:57:38:7C:29:44:FA:27:D3:12:2F
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4BF4
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B30
Signing time:             Sun 05 Jul 2026 14:50:12 +0000
Manifest this update:     Sun 05 Jul 2026 14:50:12 +0000
Manifest next update:     Sun 12 Jul 2026 14:50:12 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: C9UAy8fdWoYWda+0NEdbKLMLB/xt/m/ZUzDx2Bu+u3o=)
                          2: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: nxeMRNlbBg0Hn1rklz8FQpXMsQvmCCIn7C88WB0VjZg=)
                          3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          6: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          7: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          10: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
                          11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          13: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 14:50:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19444 (0x4bf4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul  5 14:50:12 2026 GMT
            Not After : Jul 12 14:50:12 2026 GMT
        Subject: CN=6a4a6f24-1709
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:b3:08:48:ea:1c:12:95:97:41:8f:16:23:16:
                    54:f0:68:f2:b8:20:71:31:fb:f1:d0:ea:80:d0:2f:
                    d4:9c:30:74:d7:73:e0:09:00:9b:fc:9c:33:e5:c1:
                    64:0b:e2:bb:2a:a1:dc:a5:07:cd:a4:c5:38:bd:e9:
                    43:f3:d6:5b:24:1d:00:21:91:95:16:46:95:74:9d:
                    f1:ac:4e:ce:26:82:06:d2:d0:11:aa:8c:12:a6:f4:
                    2c:43:1d:6d:97:2e:0d:41:58:48:23:e0:7c:dd:2a:
                    92:0b:6c:2b:e9:53:11:d5:f5:f7:03:2b:d7:26:f3:
                    b0:75:9a:8a:66:49:b6:34:11:80:b6:4f:3e:2d:20:
                    c2:76:f0:8d:8d:23:83:bc:1d:3f:5f:50:a3:79:ba:
                    b8:fa:dd:e4:e5:7e:98:b8:aa:ce:4a:f3:59:eb:e5:
                    c4:db:a3:97:6e:e5:93:52:32:21:6d:7f:c1:ed:0a:
                    1a:6b:ee:a7:24:17:55:14:5a:40:59:60:0a:31:57:
                    72:fa:03:4a:e8:bb:0d:3a:6d:8e:8c:6e:bd:07:d5:
                    e3:67:2b:23:f3:bb:09:78:eb:6e:38:de:41:c7:19:
                    74:1e:21:c4:a6:20:bb:fd:c7:62:9e:52:71:fd:d6:
                    da:35:ed:05:40:ca:4c:83:84:8d:9f:53:c8:d9:60:
                    d7:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:47:34:A0:35:27:63:A3:DE:1E:57:38:7C:29:44:FA:27:D3:12:2F
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:e9:cf:78:77:3b:ab:14:a1:a4:0f:7c:d8:06:b2:57:fd:3d:
         19:37:e0:b5:e8:c5:28:59:77:a2:f3:4f:76:ae:99:be:ea:ac:
         9b:92:92:6c:2d:ce:f2:e7:df:f6:8b:b5:94:fc:fa:eb:5d:60:
         b3:97:92:79:97:d6:9b:a5:e5:65:bc:92:a4:54:3c:78:cf:09:
         d7:e2:c8:e5:43:c0:2a:6c:d4:7c:09:d3:b7:c6:f6:0a:ba:21:
         75:06:0a:3a:4e:1b:a0:fc:ab:59:2a:e5:89:8b:b5:92:b4:2f:
         3b:62:9d:ca:df:8b:92:7b:ef:61:53:89:60:3e:af:0c:27:63:
         95:9d:3b:01:ef:0a:1a:0e:70:cc:bd:55:1b:a5:88:9b:a6:42:
         c9:ba:38:ff:04:66:fc:47:d0:67:37:0b:39:cb:63:28:1c:41:
         17:5d:83:c7:ef:0b:06:47:14:48:f9:67:b3:0c:63:9a:a3:19:
         61:e9:14:3b:84:d6:e6:dc:20:88:68:25:4b:cc:06:1a:23:25:
         64:25:e3:3f:80:d0:f2:a2:58:27:8e:76:c5:5c:c9:f8:3b:c1:
         a4:59:22:81:51:c7:dc:2d:05:94:65:3b:14:6f:ec:b4:f0:df:
         25:1e:83:36:ef:b3:85:e3:00:0e:ba:d4:7d:e8:6d:ea:27:c4:
         90:0c:7c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 02:23:08 2026 by rpki-client