Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
File:                     SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json)
Hash identifier:          FYqBqfBozWeaR4JUu/1KrahewLGN6cBg3h2BzPLPMp4=
Subject key identifier:   8F:4B:BC:25:86:13:76:90:D4:FD:7C:FA:E8:C9:69:1F:6A:4B:D4:F0
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Certificate issuer:       /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial:       059D
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
Manifest number:          04B5
Signing time:             Sun 05 Jul 2026 01:01:33 +0000
Manifest this update:     Sun 05 Jul 2026 01:01:32 +0000
Manifest next update:     Sun 12 Jul 2026 01:01:32 +0000
Files and hashes:         1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: Oqbmw21sbwzWvmIBWslODZqpFwnaBuno/GpjsxHc97A=)
                          2: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: awi/D8lHc6L4dnToUMe+Br+mJLk9zICL465IydEzQlc=)
                          3: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: mwjCND/hb5mcBVM5huPhi5+mLyWxYoFCwlwxmeL4yts=)
                          4: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: /JQTTMGxpG1rEnJAGVjqQn7ENfIeEQm+h8FaXqx7IVA=)
                          5: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: 3zeR3y4ThnqjrUYK2B2lRbeCm3UuFhf7qDtePwaC2RU=)
                          6: 39D293CC61A311F184335DAE8747A888.roa (hash: UFEXheRWbldng6QGjy1RCb9qHZzLRVLyuLDbBU1e2yo=)
                          7: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: vsM3lJioCOwfp3LZZpdveH83fo62+Y9urJ8LtwiCnMw=)
                          8: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: WLbihB2PWZ1o++RM42EGDbLREOZKJSeaYxV3v/0bXwE=)
                          9: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: Xpp2kFVSkuxzwBMowkkOloasdXHXgZJRNUiRPlt0tnI=)
                          10: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: tnJ/yjknRBuc7UcBwzOHFJo2tnhzqFgevM34YS5rTmY=)
                          11: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: VkKyUkZvufLeqNWH4XS4MFj5LEClAP479cUeOm9p8S8=)
                          12: 48421E1E61A311F1AD9134E08747A888.roa (hash: 3KvNugzJmOfWXWejLGn4X2zH7tN8BJMAw0UhDMUUtUI=)
                          13: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: kNZ9kMcIVbL2jK5YIL401eBQNsQQQ0xAhM8Sv/4h4WQ=)
                          14: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: VpLsJjoOM5TQH3OZEcPzV4PLIS2G8Hn1FrYlhKbie54=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
                          rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 12 Jul 2026 01:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1437 (0x59d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
        Validity
            Not Before: Jul  5 01:01:32 2026 GMT
            Not After : Jul 12 01:01:32 2026 GMT
        Subject: CN=6a49aced-e766
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:79:93:76:45:2e:b1:f5:ff:02:a9:97:c3:c7:
                    aa:58:72:29:e6:42:f8:c0:5e:a6:59:12:c5:ae:cf:
                    9f:c0:b7:74:5c:88:12:45:e9:56:1f:11:c1:33:36:
                    7a:c9:d2:04:bf:d4:76:cf:b2:3a:74:ec:61:76:a0:
                    ad:ec:07:89:ac:46:45:a7:52:84:d7:6e:b0:ea:26:
                    95:35:e0:78:9a:35:35:48:3a:c9:7b:fd:10:8b:59:
                    3f:fc:58:ea:16:92:62:1e:4c:95:4b:5b:25:62:e2:
                    6f:bc:98:e0:ad:ba:02:9a:03:8f:55:4a:32:c1:e4:
                    02:24:97:b3:46:6e:97:52:46:59:3a:d0:c5:96:6a:
                    2e:49:fd:0c:c5:29:01:14:8c:4d:04:da:ff:6d:15:
                    e7:95:ae:27:44:ef:a9:99:50:37:d5:c5:a7:c2:57:
                    2a:4b:b0:44:57:43:df:c6:5a:82:e0:30:64:b9:49:
                    e6:33:94:ba:63:d7:c2:34:01:af:54:3f:1a:6a:4a:
                    f2:1a:6e:d8:44:3a:ec:40:18:e6:07:84:ce:41:92:
                    e8:c0:4f:50:36:6f:99:82:5a:f7:af:0a:24:85:81:
                    b6:39:ac:58:5d:84:da:41:51:95:2c:06:3c:cf:ed:
                    60:d9:6f:35:27:0f:39:48:b7:ee:a9:7d:1b:80:3e:
                    4c:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:4B:BC:25:86:13:76:90:D4:FD:7C:FA:E8:C9:69:1F:6A:4B:D4:F0
            X509v3 Authority Key Identifier:
                keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:b6:de:50:b5:8b:43:b3:fd:82:e9:b4:f9:ea:cf:9f:c6:4c:
         27:c6:77:c3:fb:93:35:80:46:8f:fb:3d:5c:25:4c:5a:17:f4:
         37:93:cf:07:32:57:80:55:f2:41:23:8e:67:fa:03:56:b0:21:
         55:5b:1d:54:7a:fb:b5:c8:0f:91:d9:bf:76:cd:f2:af:95:b7:
         3a:da:af:81:aa:8b:cf:ea:a7:6b:f8:a3:42:2a:3e:20:de:54:
         b1:b0:a4:bf:99:9e:c4:39:90:9b:7c:71:81:c6:9c:15:fc:0c:
         37:14:8e:ec:4c:87:e2:72:29:4e:72:99:22:47:6f:a2:f5:60:
         81:c4:07:9c:15:c0:ca:a9:e0:30:78:71:c1:a3:b8:e8:19:d2:
         e3:4f:d9:7e:0c:b3:c2:54:cc:fb:11:90:74:74:37:3b:fc:de:
         ac:57:0e:ec:d1:19:a3:83:02:44:2d:c3:5e:4b:40:23:79:cc:
         20:6f:dd:f3:30:4c:32:f1:c5:06:1c:31:58:40:64:a8:80:0c:
         46:9a:8a:4d:49:be:11:e1:5d:2d:4a:be:20:3e:72:8f:d2:95:
         84:7e:35:a7:70:ba:54:9d:03:87:17:82:88:9d:6c:20:e6:87:
         9b:81:62:aa:52:33:05:df:05:f4:dd:ed:6d:83:f5:d7:69:21:
         01:5f:ec:c0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF
RDk4NDY0OUQwHhcNMjYwNzA1MDEwMTMyWhcNMjYwNzEyMDEwMTMyWjAYMRYwFAYD
VQQDEw02YTQ5YWNlZC1lNzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuXmTdkUusfX/AqmXw8eqWHIp5kL4wF6mWRLFrs+fwLd0XIgSRelWHxHBMzZ6
ydIEv9R2z7I6dOxhdqCt7AeJrEZFp1KE126w6iaVNeB4mjU1SDrJe/0Qi1k//Fjq
FpJiHkyVS1slYuJvvJjgrboCmgOPVUoyweQCJJezRm6XUkZZOtDFlmouSf0MxSkB
FIxNBNr/bRXnla4nRO+pmVA31cWnwlcqS7BEV0PfxlqC4DBkuUnmM5S6Y9fCNAGv
VD8aakryGm7YRDrsQBjmB4TOQZLowE9QNm+Zglr3rwokhYG2OaxYXYTaQVGVLAY8
z+1g2W81Jw85SLfuqX0bgD5MKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI9LvCWG
E3aQ1P18+ujJaR9qS9TwMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE
NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t
YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAeLbeULWLQ7P9gum0+erPn8ZMJ8Z3w/uTNYBGj/s9XCVMWhf0N5PPBzJXgFXy
QSOOZ/oDVrAhVVsdVHr7tcgPkdm/ds3yr5W3OtqvgaqLz+qna/ijQio+IN5UsbCk
v5mexDmQm3xxgcacFfwMNxSO7EyH4nIpTnKZIkdvovVggcQHnBXAyqngMHhxwaO4
6BnS40/ZfgyzwlTM+xGQdHQ3O/zerFcO7NEZo4MCRC3DXktAI3nMIG/d8zBMMvHF
BhwxWEBkqIAMRpqKTUm+EeFdLUq+ID5yj9KVhH41p3C6VJ0DhxeCiJ1sIOaHm4Fi
qlIzBd8F9N3tbYP112khAV/swA==
-----END CERTIFICATE-----
Generated at Sun Jul 5 08:13:08 2026 by rpki-client