Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          4/HNh4LlXSjtGkpRAtxHBIVQYSMI35XrGFpZDUs6g8w=
Subject key identifier:   5A:F0:42:4A:DB:F3:6B:D7:EA:8F:88:94:A6:28:51:2D:D8:DD:30:F4
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4C17
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B52
Signing time:             Thu 16 Jul 2026 02:50:12 +0000
Manifest this update:     Thu 16 Jul 2026 02:50:11 +0000
Manifest next update:     Thu 23 Jul 2026 02:50:11 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: nB4LiHIy+U6B+bvNrlzVQOclSKVZhA3P86Z3bfc4RjU=)
                          2: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          4: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          5: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          6: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          7: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          10: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
                          12: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          13: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 23 Jul 2026 02:50:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19479 (0x4c17)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul 16 02:50:11 2026 GMT
            Not After : Jul 23 02:50:11 2026 GMT
        Subject: CN=6a5846e3-d214
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:3d:89:0a:f4:25:af:f6:cb:1e:36:05:43:3c:
                    93:5f:82:b2:5e:04:55:17:f5:0b:dd:e9:a0:f4:60:
                    9f:6b:c6:1d:4e:99:0d:91:de:b3:3a:33:f8:33:80:
                    85:41:9b:0d:99:ad:81:fe:b4:44:66:34:9c:7e:83:
                    27:b6:cc:b6:b8:ea:81:f1:b4:3e:0f:31:46:92:28:
                    30:45:49:85:85:98:df:07:80:c6:a0:0a:af:bb:4c:
                    69:ee:4c:14:88:9d:4c:bc:73:7c:5e:8b:d0:8e:55:
                    94:37:e6:85:97:9f:a6:05:f0:8e:a5:38:68:82:81:
                    02:a1:1e:b5:68:9c:2f:77:44:f4:3d:56:1e:39:76:
                    b1:90:67:4a:ee:3d:9c:ee:fe:67:5e:c4:ce:34:18:
                    73:0d:7d:79:4c:e7:e5:5e:d4:e1:e7:b9:cb:a8:f8:
                    0e:4f:77:17:ae:99:bc:2f:d7:5b:08:47:1b:0f:78:
                    fe:43:db:c2:cc:49:5f:b7:f6:a1:ae:b3:5d:ce:9f:
                    d7:6f:6a:6d:2f:21:05:9b:95:33:74:8a:f8:4c:26:
                    07:49:f2:6a:a3:7f:06:cd:9c:71:e4:ca:bd:3b:fe:
                    e4:8f:b3:60:ea:2c:2c:f3:69:37:0f:27:5b:b0:3d:
                    4e:9d:63:5e:87:50:b4:2c:dc:e8:37:8b:7e:88:08:
                    be:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:F0:42:4A:DB:F3:6B:D7:EA:8F:88:94:A6:28:51:2D:D8:DD:30:F4
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:81:ab:8f:65:f7:17:60:c3:ed:94:d6:b0:48:81:a3:70:e0:
         a6:e4:76:e5:45:68:df:c5:98:f9:31:ee:41:7a:7c:1d:b1:ba:
         89:aa:27:1f:b0:9a:92:71:01:40:27:7f:00:af:97:68:3a:1c:
         32:ff:5d:8d:72:97:5b:64:dd:a3:32:cd:cb:98:cd:bb:7a:39:
         d1:b9:15:1d:c8:6f:2e:7d:e7:d7:28:0f:7a:fd:d7:8a:01:2c:
         f7:16:ae:62:3d:9a:49:e6:55:46:9f:a5:99:c0:e8:0f:8a:ca:
         84:7b:2e:2d:bf:4c:f6:9e:af:c2:c9:c1:40:25:68:1f:b1:c7:
         e0:f6:14:22:cb:5b:6b:0b:81:f9:37:7e:b2:ad:03:2c:6e:22:
         57:d1:d7:20:df:9f:bc:b2:c1:9e:08:df:f2:b5:09:c6:b9:6b:
         ea:15:d0:47:f7:2f:a9:5d:6c:b9:b9:a4:6f:c2:50:11:4a:88:
         8e:58:00:80:2b:be:ce:f6:3d:eb:06:60:55:de:c7:1e:ac:56:
         6a:f6:75:6e:6b:53:83:1e:a2:3e:ed:f6:cf:74:e4:3c:1d:f0:
         71:bc:90:e3:2b:45:d0:35:b3:b5:85:0a:03:e1:88:a8:39:26:
         3b:c6:84:4f:64:d1:fd:3b:9a:8e:72:d2:bc:8d:40:e2:90:53:
         dd:f7:b1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 16 10:18:45 2026 by rpki-client