
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: /Wj1MaH+yFzLPFW55m+56sQQ/Yas68PB6ha43aUKMmE=
Subject key identifier: 2D:BE:6A:BB:D3:42:72:0F:AA:04:9E:F5:C8:AC:53:7E:94:95:CB:48
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4C14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 4B4F
Signing time: Wed 15 Jul 2026 02:50:12 +0000
Manifest this update: Wed 15 Jul 2026 02:50:12 +0000
Manifest next update: Wed 22 Jul 2026 02:50:12 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: uCZ103CF7ujxwDW40n4fzKPeM9msRthuMRKGsAgMVwk=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
3: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
4: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
5: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
10: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
12: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
13: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 22 Jul 2026 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19476 (0x4c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 15 02:50:12 2026 GMT
Not After : Jul 22 02:50:12 2026 GMT
Subject: CN=6a56f564-2e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:19:e7:65:39:35:a5:06:1d:fe:39:9f:52:68:
1e:12:a3:a0:0d:ff:ea:ce:3a:45:af:fe:c9:98:94:
4e:e0:5e:7c:e9:9d:4e:a2:a8:ff:92:c0:4f:41:d2:
f1:ed:9e:0f:0d:73:b3:84:57:4a:e5:f3:33:57:62:
57:be:d4:57:40:57:9f:ae:d6:dc:44:f3:24:6f:71:
e4:b0:33:35:18:65:7c:ab:4c:4b:94:9f:f8:fc:17:
5d:bd:fa:c4:2f:bc:21:78:42:82:30:a9:65:bc:bf:
79:8b:51:39:eb:b9:b7:d7:d6:99:e0:63:ec:15:09:
07:aa:f1:ab:09:43:8d:28:92:0f:ea:4f:1d:73:6d:
db:c2:8c:85:77:f0:a6:40:de:91:80:55:f9:33:47:
c0:81:57:15:53:56:d8:4b:82:78:8c:7c:30:2f:e4:
5d:4d:0f:d6:7d:4f:95:a1:6e:64:af:4c:f2:ed:63:
5a:53:7b:a7:af:63:f0:c7:4e:b3:89:42:f2:16:88:
10:b0:40:08:48:b5:87:ea:76:d7:16:0d:5b:51:dd:
46:f8:c1:1f:ce:47:7f:f7:af:8e:cc:8e:7e:8a:c3:
96:77:8b:9f:98:59:33:0c:8c:30:92:31:36:26:24:
e9:9b:b4:65:f6:ec:59:26:c4:89:40:4a:e7:37:de:
58:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BE:6A:BB:D3:42:72:0F:AA:04:9E:F5:C8:AC:53:7E:94:95:CB:48
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
23:ad:e0:7c:da:46:66:18:39:07:8d:30:8a:0b:ea:ab:c0:44:
7d:33:33:16:80:3f:af:77:39:20:c2:3d:fc:d8:eb:94:a7:2d:
a6:a6:6e:8e:95:4c:22:67:0e:91:3d:d4:ff:b1:83:d0:60:e4:
6e:db:4a:3c:2b:3f:b2:cc:9a:22:e0:1a:86:5b:e5:06:1e:89:
c3:3f:83:94:50:ea:52:61:85:c3:11:70:e2:47:4f:f9:2a:f0:
d4:76:3b:f6:ea:18:50:1b:51:ee:22:3b:23:d9:ba:9b:60:85:
bf:3f:b2:cc:c9:47:76:3d:01:e9:f5:0d:4c:12:ca:86:44:14:
f3:92:41:60:36:cb:43:3c:1e:af:13:da:db:d3:4d:0d:4e:28:
b7:da:e7:fb:6c:e9:78:6c:85:3c:3f:f5:36:f5:ef:7d:ac:13:
17:43:99:96:8d:e5:66:29:32:a9:3e:9d:8e:6a:09:c1:cf:91:
6f:b9:73:ef:46:04:fb:6a:61:57:64:61:c6:16:07:a4:98:04:
a5:04:8a:08:5c:db:02:e8:dc:29:3d:40:dc:7c:d7:dc:9c:a8:
33:44:f8:94:80:3f:ff:21:5d:43:c4:15:73:0b:a2:ba:88:02:
50:94:21:31:10:b7:8d:8a:60:e3:18:27:2d:b7:fd:6a:7d:ec:
81:a8:37:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 09:06:56 2026 by rpki-client