Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
File:                     SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json)
Hash identifier:          5JGN6FdGCcFuXqB2eIbnDYdbVqY0FbnsSckF8lKMV9w=
Subject key identifier:   8E:8E:70:8C:C3:2B:F3:A5:7F:27:19:BB:D5:13:C9:E6:D9:15:8B:E4
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Certificate issuer:       /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial:       05B0
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
Manifest number:          04BB
Signing time:             Mon 13 Jul 2026 00:39:46 +0000
Manifest this update:     Mon 13 Jul 2026 00:39:46 +0000
Manifest next update:     Mon 20 Jul 2026 00:39:46 +0000
Files and hashes:         1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: zgca1mdQUOdrMWTC9arCVhuHV+SMZWoH7IGMJseilHA=)
                          2: 48421E1E61A311F1AD9134E08747A888.roa (hash: 0L5T+62/+LuV8AB9j6gcu/g9GsKvWn9orUiZH54FdP4=)
                          3: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: oFCRKJ2F0EfbbPkmQz5K49dGmf/1cMbEIIfSRomsCOA=)
                          4: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: 6BPjWf3PRrYbjxHXmcTYFTcq9mEbXJz5EDwd+WrDRUk=)
                          5: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: Xv/wQAgGQuRKdOuR7b3JljTxpd1z5U1GoeLFF2m7jXc=)
                          6: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: g3/xtOL31AkLVTBnIUdXCHbVSuqpwrEw296Y7D5oHRk=)
                          7: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: 6mq5bZQGJ64qqRG9rU+13rtax05sI2Ele52oI5PPSIM=)
                          8: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: W828W0l0bTgnpTlS9/sHF0lVKlK0jtphre/w8R0LrXg=)
                          9: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: jKcbK4IEw6IX5DBWAj2PfbXbqhFpVe65Ce73aszMZHQ=)
                          10: 39D293CC61A311F184335DAE8747A888.roa (hash: jedw50TUWq7AyJ3VTKcKZQQqP8Wlj4F5zK+M/tpfaYU=)
                          11: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: vmvv3bajE/r0eTCiEw69x6M9NsL+S+IX+coP+B6z88E=)
                          12: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: 92wRIZw680AyP/v/OZd/w9DgRsgSI6ONdeqJ58u9NjE=)
                          13: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: FoSzwvvgDPOGghYrGRoNT/3F/hsXOUjc7S8nBc84FDI=)
                          14: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: GfVyeK1u4sYQdScjmEZa/TgSrlbpkVV/b2NL/9s4N4g=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
                          rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 20 Jul 2026 00:39:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1456 (0x5b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
        Validity
            Not Before: Jul 13 00:39:46 2026 GMT
            Not After : Jul 20 00:39:46 2026 GMT
        Subject: CN=6a5433d2-a654
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:93:f4:ac:36:67:03:06:2a:b4:71:69:42:50:
                    d9:00:ab:0a:80:21:d7:19:38:8f:d0:dd:5e:9b:65:
                    ff:4a:7b:27:84:1e:8c:c8:6c:f8:16:47:12:05:82:
                    5a:cc:f8:af:5e:19:6c:01:5d:2a:2b:31:21:f9:98:
                    3c:de:0c:05:87:43:53:f1:06:78:5b:e3:2f:dc:77:
                    ba:f3:2a:f1:c4:80:31:37:14:47:29:6d:77:d8:4c:
                    29:63:53:cd:1a:2c:f1:68:25:63:d3:54:bd:14:46:
                    dc:ad:e0:5e:f3:5e:4e:2e:bf:8f:61:7d:82:e7:f0:
                    89:d5:04:b0:55:86:3f:ff:2a:a3:ad:31:21:bc:3a:
                    a6:80:d4:c1:6d:b6:f1:9e:16:5c:ce:ab:8d:2f:25:
                    e3:98:bd:45:53:43:3f:f2:83:71:25:72:17:ac:45:
                    68:5d:6a:94:3b:2c:86:76:19:a6:24:43:23:96:37:
                    50:83:cf:7a:67:34:6e:56:ad:b5:31:1a:39:fa:dc:
                    19:ca:7a:b3:45:16:4e:19:4d:0e:3c:cd:b1:a8:2d:
                    fb:40:d4:cf:82:b0:53:7b:73:af:40:2f:dc:da:77:
                    a9:e2:88:a0:26:ab:69:69:ba:9d:66:70:56:7f:e1:
                    d5:dc:6b:76:16:09:37:22:a9:a0:45:d4:ef:d6:41:
                    0a:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:8E:70:8C:C3:2B:F3:A5:7F:27:19:BB:D5:13:C9:E6:D9:15:8B:E4
            X509v3 Authority Key Identifier:
                keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:af:75:1f:f8:5a:5a:b7:5e:b5:5e:96:74:8e:ba:84:02:27:
         64:dd:bb:79:a3:30:6b:6f:03:09:a2:de:10:c3:2a:72:36:46:
         6b:69:0a:0d:03:45:c9:03:7c:b6:7d:3c:e2:0d:48:9f:3c:57:
         1c:75:79:6c:38:66:5a:ee:aa:2e:ea:f0:ab:67:ad:c6:3b:0a:
         41:a9:93:9e:ef:65:af:37:16:9f:d8:e8:99:b7:df:6a:da:2f:
         ca:19:05:18:e8:27:a0:2a:c8:1d:e6:dc:4b:d9:09:14:b5:dd:
         2f:3d:58:df:98:74:81:64:13:4c:e5:74:e1:42:3d:23:cb:8f:
         d8:a3:3d:5e:d0:46:aa:62:7a:b6:81:d8:48:50:36:7e:0a:6f:
         3f:8f:11:ec:02:dc:14:d7:25:40:73:18:81:f7:10:d1:f2:70:
         0c:d6:47:0f:3b:1f:9c:7d:85:dc:d2:3c:9b:e8:9b:1c:2c:98:
         05:93:43:98:55:89:b2:4e:5e:ab:bb:09:13:00:51:c4:cd:b3:
         1e:97:52:bf:ba:cd:91:b1:63:f0:69:4c:ef:12:cc:16:5e:74:
         87:84:5d:61:12:3a:2a:45:f2:56:20:9d:d2:4d:b1:2f:b4:06:
         3b:bb:aa:f0:ac:8b:17:64:0a:a8:85:8f:36:f1:4a:0a:d5:7a:
         4a:99:e1:1c
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF
RDk4NDY0OUQwHhcNMjYwNzEzMDAzOTQ2WhcNMjYwNzIwMDAzOTQ2WjAYMRYwFAYD
VQQDEw02YTU0MzNkMi1hNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0pP0rDZnAwYqtHFpQlDZAKsKgCHXGTiP0N1em2X/SnsnhB6MyGz4FkcSBYJa
zPivXhlsAV0qKzEh+Zg83gwFh0NT8QZ4W+Mv3He68yrxxIAxNxRHKW132EwpY1PN
GizxaCVj01S9FEbcreBe815OLr+PYX2C5/CJ1QSwVYY//yqjrTEhvDqmgNTBbbbx
nhZczquNLyXjmL1FU0M/8oNxJXIXrEVoXWqUOyyGdhmmJEMjljdQg896ZzRuVq21
MRo5+twZynqzRRZOGU0OPM2xqC37QNTPgrBTe3OvQC/c2nep4oigJqtpabqdZnBW
f+HV3Gt2Fgk3IqmgRdTv1kEKbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI6OcIzD
K/OlfycZu9UTyebZFYvkMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE
NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t
YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEApa91H/haWrdetV6WdI66hAInZN27eaMwa28DCaLeEMMqcjZGa2kKDQNFyQN8
tn084g1InzxXHHV5bDhmWu6qLurwq2etxjsKQamTnu9lrzcWn9jombffatovyhkF
GOgnoCrIHebcS9kJFLXdLz1Y35h0gWQTTOV04UI9I8uP2KM9XtBGqmJ6toHYSFA2
fgpvP48R7ALcFNclQHMYgfcQ0fJwDNZHDzsfnH2F3NI8m+ibHCyYBZNDmFWJsk5e
q7sJEwBRxM2zHpdSv7rNkbFj8GlM7xLMFl50h4RdYRI6KkXyViCd0k2xL7QGO7uq
8KyLF2QKqIWPNvFKCtV6SpnhHA==
-----END CERTIFICATE-----
Generated at Mon Jul 13 14:02:14 2026 by rpki-client