Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
File:                     SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json)
Hash identifier:          v+I81PIoQVCke1WCSR6DHImuVCCkqPMy3iwztRlAG4k=
Subject key identifier:   67:DE:18:E2:C8:18:4E:3A:AF:0B:7B:A9:F0:CB:F5:3F:88:35:AE:A4
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Certificate issuer:       /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial:       05B3
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
Manifest number:          04BE
Signing time:             Sun 19 Jul 2026 01:10:02 +0000
Manifest this update:     Sun 19 Jul 2026 01:10:02 +0000
Manifest next update:     Sun 26 Jul 2026 01:10:02 +0000
Files and hashes:         1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: FWptQowNLOqG2TXW0MT05asqLZnIwZNlpqokhPgSXTI=)
                          2: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: Xv/wQAgGQuRKdOuR7b3JljTxpd1z5U1GoeLFF2m7jXc=)
                          3: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: 92wRIZw680AyP/v/OZd/w9DgRsgSI6ONdeqJ58u9NjE=)
                          4: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: W828W0l0bTgnpTlS9/sHF0lVKlK0jtphre/w8R0LrXg=)
                          5: 48421E1E61A311F1AD9134E08747A888.roa (hash: 0L5T+62/+LuV8AB9j6gcu/g9GsKvWn9orUiZH54FdP4=)
                          6: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: g3/xtOL31AkLVTBnIUdXCHbVSuqpwrEw296Y7D5oHRk=)
                          7: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: FoSzwvvgDPOGghYrGRoNT/3F/hsXOUjc7S8nBc84FDI=)
                          8: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: 6mq5bZQGJ64qqRG9rU+13rtax05sI2Ele52oI5PPSIM=)
                          9: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: jKcbK4IEw6IX5DBWAj2PfbXbqhFpVe65Ce73aszMZHQ=)
                          10: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: vmvv3bajE/r0eTCiEw69x6M9NsL+S+IX+coP+B6z88E=)
                          11: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: oFCRKJ2F0EfbbPkmQz5K49dGmf/1cMbEIIfSRomsCOA=)
                          12: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: GfVyeK1u4sYQdScjmEZa/TgSrlbpkVV/b2NL/9s4N4g=)
                          13: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: 6BPjWf3PRrYbjxHXmcTYFTcq9mEbXJz5EDwd+WrDRUk=)
                          14: 39D293CC61A311F184335DAE8747A888.roa (hash: jedw50TUWq7AyJ3VTKcKZQQqP8Wlj4F5zK+M/tpfaYU=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
                          rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 26 Jul 2026 01:10:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1459 (0x5b3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
        Validity
            Not Before: Jul 19 01:10:02 2026 GMT
            Not After : Jul 26 01:10:02 2026 GMT
        Subject: CN=6a5c23ea-ca1f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:83:c9:3f:00:94:a3:af:33:b6:13:10:5d:0f:
                    f7:ff:74:f9:36:5a:ce:29:89:ce:58:a1:f5:f6:05:
                    04:6f:d3:d1:ca:5f:8c:91:21:41:4d:89:77:51:d4:
                    ca:5e:d8:9f:ae:a6:03:66:6e:04:11:66:a5:80:25:
                    58:b9:3f:b6:d0:33:88:7b:a5:f7:ba:9f:eb:16:89:
                    30:47:fc:fb:e5:eb:2a:92:ff:c0:f4:79:dd:9a:a2:
                    92:27:88:be:35:84:9a:04:73:6c:7a:db:9a:98:7d:
                    f3:7f:3b:18:95:24:bc:12:27:f5:1f:69:10:52:c2:
                    29:a7:a6:7d:15:61:b8:1f:ca:86:3c:dc:d4:ef:ef:
                    57:e4:c8:4e:24:f8:88:ec:d7:66:5c:41:12:af:72:
                    f7:39:8f:e4:3c:db:1c:50:fc:ef:26:eb:b6:fc:11:
                    75:76:c5:64:f8:47:4a:bd:01:90:05:03:f8:ed:1e:
                    6d:41:73:6f:19:7a:20:2c:59:b1:d6:3f:6d:f4:18:
                    eb:86:67:a7:01:46:08:92:a3:f2:31:a5:58:05:22:
                    a6:ac:af:57:50:4d:5d:d1:f4:c0:57:d6:6e:fb:19:
                    fd:f0:f5:ca:ef:de:11:a1:6b:09:6c:f4:d3:0a:c3:
                    08:a3:f0:d0:ea:10:17:f0:44:85:ff:d9:2d:7e:3c:
                    83:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:DE:18:E2:C8:18:4E:3A:AF:0B:7B:A9:F0:CB:F5:3F:88:35:AE:A4
            X509v3 Authority Key Identifier:
                keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:ed:b6:53:d8:08:14:fd:0a:ea:28:55:f7:a0:f9:29:77:9e:
         b9:e9:0e:b9:38:1a:ed:b6:55:4e:d9:42:c5:39:64:db:ec:a5:
         26:7c:43:0f:53:ab:29:44:bb:4d:59:55:fe:13:48:8e:90:12:
         e5:0a:72:e0:8d:27:b4:21:2b:0f:38:50:29:99:8b:1c:7e:00:
         eb:0c:12:d9:08:84:ea:f0:34:3a:a5:9c:bd:5c:6f:4c:62:06:
         05:3d:64:7a:27:a2:0e:50:2c:ca:43:c1:a9:d4:3f:5e:14:4c:
         da:7a:b4:89:36:cf:37:60:94:ee:4e:36:b3:00:19:c7:4e:e7:
         77:3d:b0:e8:f1:84:45:a5:3d:90:62:2e:bc:a0:a4:08:72:65:
         fd:c8:2f:fc:5c:ca:83:86:03:04:49:8d:ca:4a:69:98:2d:eb:
         e2:66:1b:af:45:76:4c:cc:77:49:35:0c:80:83:96:3f:b5:5c:
         e1:23:70:dc:3f:39:6c:67:56:9b:f0:d6:ac:4d:a4:24:74:33:
         e3:69:73:04:22:b8:41:d7:dd:7c:ee:9e:bd:2d:d5:70:26:b8:
         45:ba:91:9c:b0:f5:53:6e:4e:58:b7:e3:fb:3f:28:bc:aa:bf:
         20:01:5b:4a:61:57:5e:f9:26:c7:41:de:7c:1d:bc:94:ef:ac:
         27:c3:04:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 17:35:24 2026 by rpki-client