Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
File:                     SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json)
Hash identifier:          A/t/mdm0Jh/dP24CO3uViuEyKyneh4vSG07xiKOd52M=
Subject key identifier:   88:58:21:99:2A:53:23:E2:BA:7F:84:9F:3B:D9:8A:FC:FE:80:B3:75
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Certificate issuer:       /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial:       059C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
Manifest number:          04B4
Signing time:             Fri 03 Jul 2026 01:03:39 +0000
Manifest this update:     Fri 03 Jul 2026 01:03:38 +0000
Manifest next update:     Fri 10 Jul 2026 01:03:38 +0000
Files and hashes:         1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: mp4NMkciNdkv26gPro7ItesacF0DLI1o+joipBjjQzI=)
                          2: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: tnJ/yjknRBuc7UcBwzOHFJo2tnhzqFgevM34YS5rTmY=)
                          3: 39D293CC61A311F184335DAE8747A888.roa (hash: UFEXheRWbldng6QGjy1RCb9qHZzLRVLyuLDbBU1e2yo=)
                          4: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: vsM3lJioCOwfp3LZZpdveH83fo62+Y9urJ8LtwiCnMw=)
                          5: 48421E1E61A311F1AD9134E08747A888.roa (hash: 3KvNugzJmOfWXWejLGn4X2zH7tN8BJMAw0UhDMUUtUI=)
                          6: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: /JQTTMGxpG1rEnJAGVjqQn7ENfIeEQm+h8FaXqx7IVA=)
                          7: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: awi/D8lHc6L4dnToUMe+Br+mJLk9zICL465IydEzQlc=)
                          8: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: VkKyUkZvufLeqNWH4XS4MFj5LEClAP479cUeOm9p8S8=)
                          9: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: kNZ9kMcIVbL2jK5YIL401eBQNsQQQ0xAhM8Sv/4h4WQ=)
                          10: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: WLbihB2PWZ1o++RM42EGDbLREOZKJSeaYxV3v/0bXwE=)
                          11: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: 3zeR3y4ThnqjrUYK2B2lRbeCm3UuFhf7qDtePwaC2RU=)
                          12: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: Xpp2kFVSkuxzwBMowkkOloasdXHXgZJRNUiRPlt0tnI=)
                          13: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: mwjCND/hb5mcBVM5huPhi5+mLyWxYoFCwlwxmeL4yts=)
                          14: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: VpLsJjoOM5TQH3OZEcPzV4PLIS2G8Hn1FrYlhKbie54=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
                          rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 10 Jul 2026 01:03:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1436 (0x59c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
        Validity
            Not Before: Jul  3 01:03:38 2026 GMT
            Not After : Jul 10 01:03:38 2026 GMT
        Subject: CN=6a470a6a-f17c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:0f:b9:cc:95:14:9a:d5:9e:9a:f8:19:f4:80:
                    6c:6b:8b:56:80:6c:9b:20:b0:47:e3:59:05:1a:d1:
                    4c:86:75:ee:d3:04:b4:b0:33:e6:fb:da:97:bc:40:
                    e6:a1:be:65:1c:7e:e9:56:5f:54:45:fd:0d:ee:00:
                    8e:0f:fe:d0:ed:7c:36:a0:42:f8:9e:07:4a:fd:1d:
                    3d:e8:c0:ff:33:9e:0d:b2:c6:27:97:80:65:9e:87:
                    8f:81:59:9a:90:a3:63:6d:55:2c:a2:84:d5:fe:ae:
                    c9:5e:a9:3b:3b:52:c5:d9:4e:b0:d2:1b:72:67:27:
                    c8:24:7c:d4:a2:bf:31:ee:2a:ca:98:ff:e3:1a:73:
                    dd:bf:9e:4b:1f:e1:e1:78:59:61:fb:f6:7f:f0:62:
                    ef:5d:d8:aa:6f:9e:a3:96:fc:a4:da:b5:3d:1e:82:
                    cb:52:6b:29:d5:91:a0:22:71:b1:9b:06:8f:4d:db:
                    9a:f9:9a:b7:3d:83:29:ce:6a:73:d5:f3:8a:b8:90:
                    fe:fb:7d:f1:a9:cf:90:bb:24:15:a1:0a:90:e6:3d:
                    92:a2:a6:25:3f:0b:ce:d2:a0:4a:8c:86:61:91:5f:
                    be:29:db:1c:98:d0:70:dd:3b:71:c3:59:c0:ce:47:
                    5f:79:ea:f1:7f:94:31:03:2b:9f:2b:1d:ba:59:81:
                    d3:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:58:21:99:2A:53:23:E2:BA:7F:84:9F:3B:D9:8A:FC:FE:80:B3:75
            X509v3 Authority Key Identifier:
                keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:dd:dc:c5:0a:7c:3e:32:49:b4:02:26:e0:56:b9:dd:1a:67:
         47:b6:21:2e:58:7d:18:46:13:e0:b1:37:97:a2:a6:e9:ca:4c:
         2c:d0:2d:14:fa:4f:45:36:a4:55:64:01:46:3d:41:84:2c:7e:
         79:3b:77:31:c3:78:da:64:47:4e:d8:88:38:fc:a8:c3:af:8c:
         10:fb:c0:93:ff:7a:73:12:8d:f0:cb:a3:7f:ba:ff:0b:6e:24:
         ed:f5:81:e3:9c:e2:6e:cc:ca:53:09:bc:5b:b7:ef:bf:c3:41:
         71:20:88:91:e8:87:27:f4:0a:51:67:2a:c7:2b:9a:85:53:c2:
         e7:f8:66:a5:2d:5a:d4:c7:ae:74:90:c7:49:60:20:4e:dd:1b:
         9d:00:11:4a:f0:1f:d1:8d:ca:28:03:04:0f:57:0a:5e:c4:bd:
         02:4f:1e:41:b9:f4:29:c4:ac:96:02:a9:a4:09:df:5e:8e:bc:
         aa:37:4b:67:88:6f:aa:a5:67:00:9a:b7:42:c1:4f:27:04:4b:
         75:35:ef:41:19:06:c6:0a:26:2c:4a:0c:e2:f3:48:96:dc:fb:
         f4:ee:cf:53:a2:d5:88:2a:42:89:a7:ae:d9:c6:30:88:87:3d:
         0b:52:40:69:e6:ca:91:e8:d0:c1:06:5c:1f:a3:85:ee:a6:aa:
         84:01:3c:28
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF
RDk4NDY0OUQwHhcNMjYwNzAzMDEwMzM4WhcNMjYwNzEwMDEwMzM4WjAYMRYwFAYD
VQQDEw02YTQ3MGE2YS1mMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4A+5zJUUmtWemvgZ9IBsa4tWgGybILBH41kFGtFMhnXu0wS0sDPm+9qXvEDm
ob5lHH7pVl9URf0N7gCOD/7Q7Xw2oEL4ngdK/R096MD/M54NssYnl4BlnoePgVma
kKNjbVUsooTV/q7JXqk7O1LF2U6w0htyZyfIJHzUor8x7irKmP/jGnPdv55LH+Hh
eFlh+/Z/8GLvXdiqb56jlvyk2rU9HoLLUmsp1ZGgInGxmwaPTdua+Zq3PYMpzmpz
1fOKuJD++33xqc+QuyQVoQqQ5j2SoqYlPwvO0qBKjIZhkV++KdscmNBw3Ttxw1nA
zkdfeerxf5QxAyufKx26WYHTFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIhYIZkq
UyPiun+EnzvZivz+gLN1MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE
NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa
SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t
YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI
KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC
AQEAkd3cxQp8PjJJtAIm4Fa53RpnR7YhLlh9GEYT4LE3l6Km6cpMLNAtFPpPRTak
VWQBRj1BhCx+eTt3McN42mRHTtiIOPyow6+MEPvAk/96cxKN8Mujf7r/C24k7fWB
45zibszKUwm8W7fvv8NBcSCIkeiHJ/QKUWcqxyuahVPC5/hmpS1a1MeudJDHSWAg
Tt0bnQARSvAf0Y3KKAMED1cKXsS9Ak8eQbn0KcSslgKppAnfXo68qjdLZ4hvqqVn
AJq3QsFPJwRLdTXvQRkGxgomLEoM4vNIltz79O7PU6LViCpCiaeu2cYwiIc9C1JA
aebKkejQwQZcH6OF7qaqhAE8KA==
-----END CERTIFICATE-----
Generated at Fri Jul 3 06:45:51 2026 by rpki-client