Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          OLCM+ZMR3ApY+F5YTFfi8TF26DdOwS/cfPxS4A3J/AM=
Subject key identifier:   5D:23:19:62:A1:E9:46:FB:09:69:2E:1E:E4:88:16:FE:DE:49:08:F0
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4BF9
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4B34
Signing time:             Mon 06 Jul 2026 15:06:21 +0000
Manifest this update:     Mon 06 Jul 2026 15:06:21 +0000
Manifest next update:     Mon 13 Jul 2026 15:06:21 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: XY8FCF4xBZhCCzRfPjpbrDTD/B7SY1BM6pZAtgs7QDw=)
                          2: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          3: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: 7LlC/Thv3K3ldgRtVocDRf7FXSGXuQd9aYtJXeGWXow=)
                          4: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: IkSuUU7ZWS/JW8FM1z4r+u5UkK4TPFlbZKL6zIaBvUw=)
                          6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          7: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: D+f82NqHOXX+gsbqchoR8C6o8P1bkW7IXideKsJzx+U=)
                          9: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          10: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          11: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: gk69FcDJVfnMVDAPpkly9FYmRvv1My0o9FTRcFxsV+4=)
                          12: OQnM9p1_GhfcoBh4-uBuw5s447w.cer (hash: dheRiRgVpRQ/DT7YDIA6NP8Jb2BhQkOd97ylQTa/NVI=)
                          13: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 15:06:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19449 (0x4bf9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: Jul  6 15:06:21 2026 GMT
            Not After : Jul 13 15:06:21 2026 GMT
        Subject: CN=6a4bc46d-8959
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:11:2f:ec:85:f1:43:18:6c:81:b1:cf:11:de:
                    14:6b:c3:5d:51:8b:8c:98:e2:dd:ec:12:6d:62:64:
                    a5:b5:6e:09:eb:30:a3:d9:7b:93:d9:5e:e9:dd:e2:
                    1a:a1:b9:36:93:5a:fc:d6:eb:e8:78:d0:cb:b5:e2:
                    75:f2:93:68:48:4d:05:35:86:d3:2a:03:1b:23:01:
                    86:29:4b:59:84:a9:6b:7b:d8:94:7f:8b:92:95:2d:
                    46:00:33:aa:2a:b0:1b:cd:aa:e3:44:d5:fc:f6:e7:
                    9d:56:d3:62:29:ba:6c:8b:fc:b0:cf:6e:2c:67:82:
                    13:3e:54:6c:4b:3f:a4:5f:c3:29:5b:b8:6d:62:88:
                    92:fc:b0:9e:3f:dd:44:85:16:52:bb:16:83:47:a3:
                    d4:4f:48:44:ab:0a:03:03:b9:b5:73:ef:0a:4d:94:
                    a4:9e:20:88:76:db:97:f7:1f:2c:e1:5d:85:20:b0:
                    74:cd:f2:a2:73:b5:98:6a:78:a9:ae:dc:6b:5e:9f:
                    f7:56:6c:b9:e2:be:cd:2a:1e:08:de:81:08:08:d8:
                    7a:54:e0:19:8c:d6:52:e0:f2:34:55:28:00:58:df:
                    d0:77:b1:39:8a:0f:47:16:6b:b8:a7:59:a6:79:81:
                    c2:92:b2:8a:c1:8e:e6:4e:bd:f4:62:50:01:a8:22:
                    bb:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:23:19:62:A1:E9:46:FB:09:69:2E:1E:E4:88:16:FE:DE:49:08:F0
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:10:c0:39:a5:2a:59:eb:d2:14:d4:76:58:ad:14:fe:c4:9b:
         1e:9b:1a:a4:2a:e8:55:43:78:72:e4:35:13:04:2b:d1:68:ba:
         11:9c:39:14:90:33:52:80:56:42:2a:3c:51:fc:34:f2:9f:a0:
         ea:5b:bd:ce:51:dc:4b:ea:c0:fa:98:4a:74:ad:14:47:f9:85:
         c6:3a:cd:d0:03:a2:7a:34:d6:b2:0b:23:aa:13:5d:27:93:75:
         b5:bb:6f:50:b9:69:4b:50:43:1f:dd:82:70:df:d6:84:cf:96:
         d9:d8:f1:4d:f1:16:97:d9:ad:c8:74:3a:e0:c1:0e:24:82:14:
         62:b4:32:ad:74:86:6f:c2:b0:22:00:71:f9:0e:11:50:a3:b8:
         dc:33:0b:82:d2:26:ed:a9:cf:d2:27:2d:d3:5a:fd:9f:5c:c9:
         98:ba:44:d2:93:3e:c9:f4:91:20:b9:a7:08:88:e8:01:68:b7:
         32:35:ef:f7:03:46:b1:22:89:99:2f:6c:97:55:0b:ac:ce:7f:
         3a:1d:0d:d1:8b:0c:60:dc:c6:a8:5d:6b:c3:59:4c:39:3c:a8:
         37:9d:90:63:6b:d0:bf:7d:3d:d3:69:d0:3b:81:c9:50:ce:7f:
         0f:a1:7c:59:68:9d:13:f6:27:92:78:eb:99:72:1d:ae:cd:7f:
         5f:6b:cc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 03:16:55 2026 by rpki-client