Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          Oz29GP8ekRIR5GCngPUZEdvQqcXVakvTOBtgazFPlPM=
Subject key identifier:   36:28:49:AE:2F:F7:07:46:CD:4E:22:E3:2D:56:07:2A:30:21:E5:42
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4B31
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4A74
Signing time:             Wed 06 May 2026 14:58:14 +0000
Manifest this update:     Wed 06 May 2026 14:58:14 +0000
Manifest next update:     Wed 13 May 2026 14:58:14 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: FCE47GbUAfyinqoKtaBdZDdeeuOTkGxgekHmF3Qcu8M=)
                          2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=)
                          5: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=)
                          6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=)
                          8: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=)
                          10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          11: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          12: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 May 2026 22:28:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19249 (0x4b31)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: May  6 14:58:14 2026 GMT
            Not After : May 13 14:58:14 2026 GMT
        Subject: CN=69fb5706-aec4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:f0:50:d3:c2:80:37:0d:2a:14:ee:8a:17:52:
                    d9:6b:4f:94:fa:d4:cc:f0:4a:bc:1a:87:30:ba:83:
                    c2:2b:2a:b1:56:bc:4e:c6:9d:ef:e8:ae:e9:87:af:
                    e4:a1:9b:29:da:f7:18:21:66:65:1a:f1:9a:27:17:
                    2f:71:36:8f:09:04:20:af:3f:22:4a:89:32:3c:db:
                    54:10:75:7f:7c:f2:b2:4a:23:c3:f7:65:d0:4d:6d:
                    ad:b2:c9:99:36:46:0b:1e:13:f9:69:78:3f:69:69:
                    28:47:da:66:1f:af:30:08:92:5e:09:fd:a4:1e:27:
                    31:67:ca:31:63:1d:c9:1d:bb:c3:28:60:19:ee:d3:
                    42:fa:6b:aa:1b:fd:46:1b:a3:81:e3:d4:fd:03:7f:
                    28:8d:44:b6:04:63:40:cd:c6:80:22:71:a9:57:a9:
                    01:a9:7a:90:3e:6b:20:a6:e3:96:ed:49:a3:08:ea:
                    50:c4:ec:7c:6f:f7:6e:b3:6d:cf:8b:c7:d5:cc:60:
                    33:ef:57:a4:31:c0:be:f9:12:c6:14:25:6f:df:40:
                    ac:0d:03:63:c6:8d:19:59:59:78:0b:a9:2d:d6:52:
                    79:f3:23:5c:90:a2:e3:9b:6b:40:2c:5e:72:f7:9f:
                    39:f0:dd:94:6f:5b:d6:32:2e:cf:97:4b:e3:0e:94:
                    79:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:28:49:AE:2F:F7:07:46:CD:4E:22:E3:2D:56:07:2A:30:21:E5:42
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:a6:c4:2a:aa:c5:92:57:e1:4e:e4:5e:f4:6a:85:83:39:b9:
         4f:19:a3:bd:4b:ed:d6:04:5d:ae:c2:60:cf:cb:dc:ca:f8:25:
         07:79:8d:4e:90:91:3c:ec:dd:72:94:60:b1:19:76:f4:9b:e5:
         28:d6:ed:5a:35:f0:ed:16:05:2a:cc:45:59:91:f9:32:14:a0:
         ba:11:2e:b6:65:c5:9e:38:d5:5a:24:93:a1:d2:5e:f6:34:3c:
         fc:19:60:b6:37:39:44:30:b9:88:c6:b3:54:6b:d4:60:99:11:
         ea:69:1c:75:e2:70:09:27:1d:e0:b0:e3:2a:4c:88:0a:f1:ef:
         52:6b:05:49:49:c2:22:6d:28:86:9f:93:88:db:20:a5:0d:72:
         70:70:b9:60:55:e6:1f:2b:9e:bf:08:a4:e2:ac:c0:31:c0:1d:
         ed:e6:2c:0e:3f:e3:a1:11:b9:d9:b1:5d:15:9b:d7:0a:53:76:
         15:30:58:c7:e1:82:03:ca:ab:96:a3:75:36:56:b2:fd:49:13:
         cf:8d:c8:ce:66:03:b6:ab:78:a8:f3:63:f1:68:e8:47:32:3f:
         d7:48:3c:88:2f:05:e5:65:c6:dc:53:20:31:4b:6c:d2:86:38:
         62:48:bc:ec:65:0f:77:d0:1f:f8:77:3d:e8:c9:bb:1e:a0:96:
         63:ca:ee:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 16:44:50 2026 by rpki-client