Manifest

$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File:                     NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier:          yTgr3mveN3iorkVqhEnrj/KS/pPVDg9hlM88r+GOSZs=
Subject key identifier:   D8:72:4B:12:DF:A4:7D:9E:05:9E:E2:B5:80:C4:B1:3D:C3:DD:50:20
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer:       /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial:       4B20
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access:      rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number:          4A63
Signing time:             Fri 01 May 2026 02:50:39 +0000
Manifest this update:     Fri 01 May 2026 02:50:38 +0000
Manifest next update:     Fri 08 May 2026 02:50:38 +0000
Files and hashes:         1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: SRvV0o+O457Mo8LHNGGSnggxDusyFnM2d6RTancaI3U=)
                          2: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: 9PPfP/K0Uf+S7J39zhXXnRpHgv6uH4LNhJd4TezIBSI=)
                          3: Erbl4Y99wQAc4IrxPdBNc8YOm5w.cer (hash: +S+jLZmqvsxjRO9HUtO3lUkaQPoZYi1woNnTGp4+JPA=)
                          4: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: l5cZo0NCnOAN61PmPRwxJ+3G1YfnO8hR1ET4LiGF0Gg=)
                          5: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: ZF1RlRehUcyZpIoR/bVaAFymoj2e9ILKyQaE+joIDZE=)
                          6: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: Tj0DMc17GIlsrNOPo2Vrd8QYbq2oFDge8erwmAtJhmI=)
                          7: hH8uEuq1BqUBCZRCB7HXAmZ38Js.cer (hash: GZKUTMvEU2v6QtpY7LVbQt7xtQeoTFLXXWOJzks3wco=)
                          8: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: m47+BAuEPyhZwLckC0gdvrJPZh1uimGWoBLYXZjyP3s=)
                          9: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: Rcb9yIZz7YIKD8PtnrnxPR64gvvH07YAhXdMB3XP/OA=)
                          10: 7sFGJFcUG4P9PfwliWp2Aj3oRzk.cer (hash: vKRegTYpP6Q4sKTEn3qYiflxyO8Q+1eOJ1tvz7oQ69o=)
                          11: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: a08n2HW5nibBBiTwza8V+WtqK6Yxby9U6HH3/Nqtoa4=)
                          12: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: gihqpRCjg2rI9ASnRe9SEx4bmJeI8d1jCVD9TrUB2P0=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
                          rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 08 May 2026 02:50:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19232 (0x4b20)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
        Validity
            Not Before: May  1 02:50:38 2026 GMT
            Not After : May  8 02:50:38 2026 GMT
        Subject: CN=69f414ff-dffc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:27:ed:82:bc:4e:e3:58:f2:67:28:ea:49:19:
                    a9:7d:a9:ac:3b:68:19:cb:80:ce:05:6e:b1:80:d9:
                    9a:be:28:e5:49:cd:d2:ba:35:cf:bd:49:8b:17:32:
                    85:d6:30:51:70:e3:58:88:4a:94:06:80:0d:53:fe:
                    61:b2:5f:d0:ff:97:4d:b0:ae:96:49:1d:6b:0b:e7:
                    c5:38:67:97:b6:37:cf:21:bb:eb:63:8c:a8:be:56:
                    ee:74:50:db:55:56:e4:77:5e:70:94:25:12:b2:3b:
                    3b:de:f3:f5:a6:e6:d6:75:32:e4:ba:76:28:2d:7a:
                    31:bc:c4:7e:9d:0f:87:d1:13:0e:28:07:27:5f:52:
                    4f:69:3e:a6:be:00:25:72:fb:98:2c:e7:5b:bc:ae:
                    bc:99:d4:b9:08:93:8d:29:6d:e3:f4:d9:a7:68:71:
                    26:44:a9:8e:e0:9a:89:27:e4:fd:2d:85:77:06:4a:
                    6a:e4:15:eb:61:f6:0d:19:a3:b2:2a:90:d8:87:63:
                    6c:21:98:d4:b2:b3:20:cb:f7:98:98:46:49:58:04:
                    c2:cf:6c:93:0d:3d:f2:46:30:c3:f3:3d:44:53:50:
                    33:9b:75:e1:6a:2b:53:79:a3:f2:fd:e7:f0:ee:6f:
                    53:21:3f:99:0f:fa:db:8b:9c:e3:19:34:42:95:50:
                    63:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:72:4B:12:DF:A4:7D:9E:05:9E:E2:B5:80:C4:B1:3D:C3:DD:50:20
            X509v3 Authority Key Identifier:
                keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:a5:a9:25:a9:5d:6a:9a:0b:aa:fb:ad:79:ea:e7:65:6a:71:
         d2:c0:21:dc:89:d5:1e:d6:c1:46:84:d0:c3:9b:d4:04:44:50:
         f4:ec:b1:ac:63:06:5d:ea:9e:83:44:61:7c:94:e6:f5:c6:6e:
         99:20:5a:8d:05:97:8c:be:8e:8e:53:eb:01:b6:a3:8f:57:18:
         91:a1:35:70:cc:12:90:ca:24:04:46:9a:65:dc:3a:04:bf:49:
         dc:10:d4:01:0c:d4:35:01:b2:1a:82:e8:92:c2:98:bb:59:a6:
         a6:33:1b:cb:f6:e5:af:0f:94:80:ef:a2:ea:b8:2c:31:6e:e1:
         3d:9c:7c:3f:eb:51:a3:bb:77:e1:31:b0:09:6c:71:0f:b9:d1:
         13:e6:91:53:6c:2c:49:0c:a7:43:54:7b:25:f3:66:da:38:eb:
         31:42:af:b3:f9:26:94:b3:2e:42:c5:21:d5:6d:4e:c2:98:dc:
         ac:83:13:81:d1:3a:70:0a:b0:b2:48:36:19:79:bb:70:60:e5:
         a7:e5:17:a4:4b:aa:09:2d:96:4b:69:ae:f6:4f:fe:fd:dc:92:
         52:b0:4d:76:61:1a:62:de:a4:6b:9a:f0:3f:15:5d:ad:a1:d3:
         81:c2:b7:17:30:2b:25:30:be:a4:f3:02:02:cd:e8:eb:f0:eb:
         08:fa:8b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 1 08:52:45 2026 by rpki-client