
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: MAgMf+RvUQNHoBec9ldGCC0usIavQxMnBcbYCxj+onc=
Subject key identifier: 34:A5:8F:AE:FE:1B:08:CC:3A:54:16:FE:6A:6C:E1:C5:8D:DA:08:4E
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4C05
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 4B40
Signing time: Fri 10 Jul 2026 02:50:12 +0000
Manifest this update: Fri 10 Jul 2026 02:50:11 +0000
Manifest next update: Fri 17 Jul 2026 02:50:11 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: 6VOCIxwYsPsYFSiJRXnr82wWYew3WyAD+xtjyiZ0hw4=)
2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
3: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
4: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
5: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
6: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
7: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
8: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
9: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
10: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
11: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
12: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
13: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 17 Jul 2026 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19461 (0x4c05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Validity
Not Before: Jul 10 02:50:11 2026 GMT
Not After : Jul 17 02:50:11 2026 GMT
Subject: CN=6a505de4-5739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:04:79:2c:76:cd:b9:4a:31:82:a5:0c:e0:ca:
8a:c2:c8:f4:72:cd:9b:00:54:f7:50:2e:51:dd:6d:
d4:1a:c8:d5:3a:39:ac:c1:2a:4f:15:bb:9b:90:d6:
7e:70:3b:1d:ca:e1:02:22:7f:37:1f:e4:35:c8:04:
c1:18:5d:db:cc:ec:dc:a4:33:16:66:51:11:16:12:
6f:f3:66:05:ed:b1:d0:bf:ca:11:47:77:40:a3:4d:
d2:5b:7f:b2:12:f8:07:62:76:01:48:2b:7e:16:13:
a8:7e:94:d5:40:bd:17:5e:45:73:0b:ea:ad:8b:45:
b6:ff:0f:53:92:89:52:67:e0:07:8b:8b:59:89:00:
b6:47:83:f1:a6:5f:9c:99:f3:04:2e:da:65:1a:9b:
56:41:0b:fa:b7:4d:ef:90:9d:95:e9:b0:42:34:20:
9c:8f:62:a6:2d:33:33:58:60:d6:e8:43:00:87:7d:
97:3e:92:28:42:b8:01:92:eb:1b:48:5b:e4:52:f6:
74:ce:4b:e3:5a:62:ae:0e:43:8f:98:ff:4c:39:20:
bb:0a:1d:45:44:3a:fe:2f:7b:2c:df:cc:07:12:08:
fb:a6:1a:58:7d:a7:9c:51:b6:80:ca:95:b1:ba:78:
88:5c:a4:fd:0f:75:8a:54:e8:1e:b5:25:b9:4b:e5:
bb:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A5:8F:AE:FE:1B:08:CC:3A:54:16:FE:6A:6C:E1:C5:8D:DA:08:4E
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
40:1a:99:48:60:90:25:28:29:0e:58:4b:07:fb:af:c3:25:5a:
db:c4:e6:5e:03:a1:92:bf:96:43:0b:da:e2:fb:3a:b3:a9:11:
0f:88:de:52:16:d3:5f:c6:00:5c:f8:2a:e4:41:91:20:93:e1:
68:9b:64:c5:ee:16:88:2c:81:95:46:c8:37:71:55:80:37:6a:
c2:89:6b:2d:71:ac:50:30:af:66:fa:dc:9d:1a:57:a1:a6:5b:
cd:f4:7c:90:28:dd:96:6f:aa:0e:0f:99:33:5b:f1:57:df:e4:
bb:5d:3b:06:1f:65:04:79:b7:38:38:bd:60:46:87:43:32:56:
b6:84:ef:c7:26:62:03:78:9e:24:6c:d4:c7:01:32:4b:b8:58:
2b:f0:b9:6f:bf:a0:cc:89:7b:5c:83:07:8c:cc:06:3f:a8:bb:
95:f9:50:04:23:e9:04:1e:e7:09:76:e7:f9:01:50:b9:e3:3c:
f5:c1:52:4a:b1:2f:a3:70:04:1b:41:9d:87:00:25:f3:c1:d1:
86:30:ef:94:88:c3:a9:d5:cb:85:cc:b6:3c:12:33:de:39:56:
56:73:94:90:69:4a:82:69:eb:74:03:6d:bb:a5:52:49:b3:66:
22:5d:e2:5b:7b:ee:26:15:05:21:c5:03:b7:8b:12:d9:9f:a1:
af:14:ad:c8
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgICTAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDM0OEY5QjlCOTJBNzJDQ0ZEMzZGM0M3MEYzNTY3NTcz
M0NDOEVBMjIwHhcNMjYwNzEwMDI1MDExWhcNMjYwNzE3MDI1MDExWjAYMRYwFAYD
VQQDEw02YTUwNWRlNC01NzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAogR5LHbNuUoxgqUM4MqKwsj0cs2bAFT3UC5R3W3UGsjVOjmswSpPFbubkNZ+
cDsdyuECIn83H+Q1yATBGF3bzOzcpDMWZlERFhJv82YF7bHQv8oRR3dAo03SW3+y
EvgHYnYBSCt+FhOofpTVQL0XXkVzC+qti0W2/w9TkolSZ+AHi4tZiQC2R4Pxpl+c
mfMELtplGptWQQv6t03vkJ2V6bBCNCCcj2KmLTMzWGDW6EMAh32XPpIoQrgBkusb
SFvkUvZ0zkvjWmKuDkOPmP9MOSC7Ch1FRDr+L3ss38wHEgj7phpYfaecUbaAypWx
uniIXKT9D3WKVOgetSW5S+W7RQIDAQABo4ICTzCCAkswHQYDVR0OBBYEFDSlj67+
GwjMOlQW/mps4cWN2ghOMB8GA1UdIwQYMBaAFDSPm5uSpyzP0288cPNWdXM8yOoi
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjQxRkU2MTAxRDY2MTFFMkE2MkY4NzdDNzJG
RDFGRjIvTkktYm01S25MTV9UYnp4dzgxWjFjenpJNmlJLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9OSS1ibTVLbkxN
X1Rienh3ODFaMWN6ekk2aUkuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjB+BggrBgEFBQcBCwRyMHAwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5hcG5p
Yy5uZXQvcmVwb3NpdG9yeS9CNDFGRTYxMDFENjYxMUUyQTYyRjg3N0M3MkZEMUZG
Mi9OSS1ibTVLbkxNX1Rienh3ODFaMWN6ekk2aUkubWZ0MBUGCCsGAQUFBwEIAQH/
BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkq
hkiG9w0BAQsFAAOCAQEAQBqZSGCQJSgpDlhLB/uvwyVa28TmXgOhkr+WQwva4vs6
s6kRD4jeUhbTX8YAXPgq5EGRIJPhaJtkxe4WiCyBlUbIN3FVgDdqwolrLXGsUDCv
ZvrcnRpXoaZbzfR8kCjdlm+qDg+ZM1vxV9/ku107Bh9lBHm3ODi9YEaHQzJWtoTv
xyZiA3ieJGzUxwEyS7hYK/C5b7+gzIl7XIMHjMwGP6i7lflQBCPpBB7nCXbn+QFQ
ueM89cFSSrEvo3AEG0GdhwAl88HRhjDvlIjDqdXLhcy2PBIz3jlWVnOUkGlKgmnr
dANtu6VSSbNmIl3iW3vuJhUFIcUDt4sS2Z+hrxStyA==
-----END CERTIFICATE-----
Generated at Fri Jul 10 05:58:02 2026 by rpki-client