Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          Rbf5xDD28el+WZEN7Twxmr9pRcmAQiwHYlIBWToowLA=
Subject key identifier:   C8:11:DA:95:0A:DF:51:CB:0F:DF:54:33:40:E1:6D:7F:3A:E1:83:92
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4C0E
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B49
Signing time:             Mon 13 Jul 2026 02:50:12 +0000
Manifest this update:     Mon 13 Jul 2026 02:50:12 +0000
Manifest next update:     Mon 20 Jul 2026 02:50:12 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: aghv/OCEnCDjZXKeAs5MH4GZ1kisXyGnrY+DVf3IaL4=)
                          2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          3: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          4: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          5: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
                          7: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          8: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          9: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          11: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          12: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          13: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 20 Jul 2026 02:50:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19470 (0x4c0e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul 13 02:50:12 2026 GMT
            Not After : Jul 20 02:50:12 2026 GMT
        Subject: CN=6a545264-6a64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:09:71:62:35:ae:7f:76:4b:cd:e3:80:9b:f9:
                    9f:63:89:02:4a:24:fc:0f:c4:77:90:6e:fc:66:e8:
                    21:a0:45:0d:a2:42:0b:0b:e1:c9:57:77:e6:e2:6d:
                    a6:00:32:50:8e:06:30:a4:15:b5:64:1d:1a:ea:9c:
                    66:f9:b2:5d:9e:7a:67:21:34:c1:ad:79:ad:25:7a:
                    9a:fc:dd:46:40:f9:73:5c:e5:e9:0f:cf:18:9a:07:
                    fc:e3:70:57:a0:a0:ee:24:e1:72:68:7e:80:9d:29:
                    ce:40:3d:f5:9c:e9:a3:85:b6:aa:be:43:96:89:d1:
                    73:48:09:f1:54:7e:a8:38:8d:01:74:c9:52:5b:2a:
                    eb:4b:26:e1:d6:dd:d5:3d:57:4d:45:ee:2c:04:c0:
                    4c:f4:66:e0:67:e8:8b:57:d9:2e:c9:49:e8:74:30:
                    df:f8:d0:17:ad:0e:05:a2:8c:de:30:b4:ef:8c:bc:
                    3a:fe:4e:94:94:f8:b2:37:5a:3c:3d:1a:88:a6:28:
                    28:bd:21:4d:2b:0e:58:8f:08:bd:14:cd:1a:6e:c9:
                    cd:b5:89:30:65:bf:eb:3f:84:6e:fe:08:66:3a:20:
                    20:b8:6a:d8:3a:77:ff:bc:e8:b2:6e:2f:ab:76:21:
                    09:e1:ae:53:bb:0a:ce:bc:95:68:0f:52:4e:87:22:
                    44:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:11:DA:95:0A:DF:51:CB:0F:DF:54:33:40:E1:6D:7F:3A:E1:83:92
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:60:a4:cb:15:ad:31:95:26:1b:6e:23:cf:b4:b1:2e:f1:f6:
         77:bd:87:4d:a9:b3:11:db:c1:5f:87:e1:a8:e3:52:cf:bf:f1:
         e6:c0:c2:ee:59:ed:ab:33:91:55:67:c6:b5:8b:55:33:67:6f:
         75:fa:02:91:90:c6:01:d5:ff:a5:08:30:4d:6d:10:8a:a8:08:
         43:e2:08:d1:ab:55:19:67:13:b3:fb:66:d6:cb:8b:e1:04:6e:
         59:56:15:e2:c9:f4:c7:34:12:bc:1b:b9:98:21:5c:e5:72:cb:
         3b:87:cb:84:2a:34:7f:e3:04:7f:7e:5d:ff:35:9b:1f:62:18:
         74:67:3a:77:b7:99:e3:7d:91:5a:98:b8:28:d2:53:d8:f7:48:
         76:98:4f:fb:04:e5:cc:27:62:95:03:57:9a:ed:b2:37:4b:21:
         5f:00:7e:40:bc:52:4c:b5:f8:63:04:17:c9:e4:b9:a1:00:6b:
         74:8e:b5:92:9c:5d:8e:67:aa:69:91:1d:ba:d3:b3:0e:80:09:
         0a:27:0e:99:3c:e7:0f:11:6a:b7:65:47:b6:ba:8d:f1:00:31:
         06:92:5d:a1:d9:c2:c2:84:94:80:97:93:0f:ef:3f:56:38:18:
         96:30:30:c7:aa:f0:a9:e6:c8:9a:c6:cc:7a:a9:a3:30:18:84:
         dc:b7:cf:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 13 08:06:55 2026 by rpki-client