Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          YNNoKaSYM50uCwONQDpT2GpK8+dI1dQoP9HT1rGhqC4=
Subject key identifier:   C4:FA:0B:FC:C5:19:AD:E6:03:F1:83:C8:3E:8A:55:A1:34:22:29:74
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4B23
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4A66
Signing time:             Sat 02 May 2026 02:50:11 +0000
Manifest this update:     Sat 02 May 2026 02:50:11 +0000
Manifest next update:     Sat 09 May 2026 02:50:11 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: g3DZefg9gZ+vywYryPr+wTI3rtX+4DFdUjAQad+L/tk=)
                          2: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=)
                          4: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          6: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=)
                          7: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=)
                          8: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          10: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=)
                          11: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          12: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sat 09 May 2026 02:50:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19235 (0x4b23)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: May  2 02:50:11 2026 GMT
            Not After : May  9 02:50:11 2026 GMT
        Subject: CN=69f56663-6796
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:5c:11:36:83:89:09:db:e9:e7:f4:33:77:0c:
                    dd:39:1e:af:c5:09:3c:0b:98:eb:12:c4:e3:1a:6e:
                    78:b4:dc:3c:df:80:5e:37:45:9c:f2:f0:f7:93:ec:
                    24:45:7e:09:fe:d8:b6:01:33:e8:6c:35:30:86:ba:
                    ae:93:bc:65:ea:55:1c:35:ae:52:5b:36:3e:65:f3:
                    c8:e3:9a:cc:0b:fb:55:07:e9:48:28:c5:d9:42:68:
                    1e:78:9f:de:b9:da:fb:fd:5a:00:5c:a4:a0:ad:81:
                    cc:15:47:48:b1:59:51:50:44:aa:a3:3c:a4:73:8a:
                    50:99:22:08:78:4e:89:12:28:44:7a:74:23:62:8e:
                    96:0a:4a:a6:42:8d:38:bc:89:96:9a:03:ad:d7:83:
                    92:c3:68:c1:df:9b:7a:fc:90:f4:52:c0:23:59:d3:
                    4c:34:3e:32:46:2f:5a:c1:1a:a2:49:8d:9e:7f:3a:
                    e5:d0:f5:ca:92:ec:a4:aa:83:2c:f0:71:22:32:90:
                    cd:62:20:e0:19:44:11:e0:71:eb:aa:c0:51:6d:3b:
                    78:d0:64:b6:13:1b:fe:be:bf:ec:56:59:63:01:83:
                    62:ac:d9:36:ad:09:b1:68:9f:61:b3:0a:55:23:63:
                    28:a3:36:79:d0:d7:e9:ea:67:22:45:46:f5:3b:13:
                    27:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:FA:0B:FC:C5:19:AD:E6:03:F1:83:C8:3E:8A:55:A1:34:22:29:74
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:77:5e:e2:25:c6:ad:81:5b:c7:d0:26:89:1d:5f:d5:02:16:
         e4:66:cf:f5:75:77:3d:57:c6:8b:c5:10:70:f7:3b:a3:15:3d:
         04:9f:6c:53:14:c0:0b:c9:4b:23:55:1e:e0:66:69:3a:ea:9c:
         20:07:33:09:9a:3e:d3:92:db:5e:18:c2:7f:e8:97:1b:e1:dd:
         96:d1:04:45:f9:66:c2:18:74:0b:12:9b:af:28:5d:6a:d6:bb:
         2f:05:8a:56:67:1c:da:bb:74:b0:71:af:80:71:e7:4c:97:85:
         f5:8a:a4:f9:20:98:e6:76:24:b6:9b:de:fa:5f:a2:b2:f4:95:
         1e:bd:11:9d:4a:2d:f4:e6:a8:37:b0:84:63:59:0d:8a:9a:e5:
         21:7b:59:e4:1d:52:32:8d:b7:6a:51:d3:8f:cf:3e:8a:d4:0a:
         eb:10:d9:c0:aa:b1:01:54:83:ba:3a:43:3c:0f:41:5e:51:1e:
         0b:3f:85:a4:78:63:50:a6:91:7a:51:c6:7e:af:7e:89:5f:98:
         c1:c5:79:c9:0d:32:4e:78:90:25:56:d9:fc:a2:69:05:ce:39:
         50:c1:2c:ad:df:87:f5:17:ba:20:92:65:08:12:2c:e2:9e:3b:
         6f:1b:ad:4f:fe:0f:12:e0:6f:47:53:3b:1d:5c:4f:01:6a:88:
         bd:18:51:eb
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgICSyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjYwNTAyMDI1MDExWhcNMjYwNTA5MDI1MDExWjAYMRYwFAYD
VQQDEw02OWY1NjY2My02Nzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArFwRNoOJCdvp5/QzdwzdOR6vxQk8C5jrEsTjGm54tNw834BeN0Wc8vD3k+wk
RX4J/ti2ATPobDUwhrquk7xl6lUcNa5SWzY+ZfPI45rMC/tVB+lIKMXZQmgeeJ/e
udr7/VoAXKSgrYHMFUdIsVlRUESqozykc4pQmSIIeE6JEihEenQjYo6WCkqmQo04
vImWmgOt14OSw2jB35t6/JD0UsAjWdNMND4yRi9awRqiSY2efzrl0PXKkuykqoMs
8HEiMpDNYiDgGUQR4HHrqsBRbTt40GS2Exv+vr/sVlljAYNirNk2rQmxaJ9hswpV
I2MoozZ50Nfp6mciRUb1OxMnwwIDAQABo4ICTzCCAkswHQYDVR0OBBYEFMT6C/zF
Ga3mA/GDyD6KVaE0Iil0MB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p
Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG
Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/
BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq
hkiG9w0BAQsFAAOCAQEASHde4iXGrYFbx9AmiR1f1QIW5GbP9XV3PVfGi8UQcPc7
oxU9BJ9sUxTAC8lLI1Ue4GZpOuqcIAczCZo+05LbXhjCf+iXG+HdltEERflmwhh0
CxKbryhdata7LwWKVmcc2rt0sHGvgHHnTJeF9Yqk+SCY5nYktpve+l+isvSVHr0R
nUot9OaoN7CEY1kNiprlIXtZ5B1SMo23alHTj88+itQK6xDZwKqxAVSDujpDPA9B
XlEeCz+FpHhjUKaRelHGfq9+iV+YwcV5yQ0yTniQJVbZ/KJpBc45UMEsrd+H9Re6
IJJlCBIs4p47bxutT/4PEuBvR1M7HVxPAWqIvRhR6w==
-----END CERTIFICATE-----
Generated at Sat May 2 11:11:06 2026 by rpki-client