Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
File:                     SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json)
Hash identifier:          KwWw2khAo/sUjkZFWITlNAQ+OQv0cfbjCyU/pPTAwFU=
Subject key identifier:   5C:A6:B8:98:5D:F7:78:E7:F9:D7:25:8C:56:2E:2E:29:8B:27:DD:04
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Certificate issuer:       /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial:       059B
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
Manifest number:          04B3
Signing time:             Wed 01 Jul 2026 01:40:05 +0000
Manifest this update:     Wed 01 Jul 2026 01:40:05 +0000
Manifest next update:     Wed 08 Jul 2026 01:40:05 +0000
Files and hashes:         1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: yxIxz77tDfUwaHFZiXdvLJwNcL2vTrpScqRIWfoFpYI=)
                          2: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: 3zeR3y4ThnqjrUYK2B2lRbeCm3UuFhf7qDtePwaC2RU=)
                          3: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: vsM3lJioCOwfp3LZZpdveH83fo62+Y9urJ8LtwiCnMw=)
                          4: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: awi/D8lHc6L4dnToUMe+Br+mJLk9zICL465IydEzQlc=)
                          5: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: /JQTTMGxpG1rEnJAGVjqQn7ENfIeEQm+h8FaXqx7IVA=)
                          6: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: mwjCND/hb5mcBVM5huPhi5+mLyWxYoFCwlwxmeL4yts=)
                          7: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: WLbihB2PWZ1o++RM42EGDbLREOZKJSeaYxV3v/0bXwE=)
                          8: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: VkKyUkZvufLeqNWH4XS4MFj5LEClAP479cUeOm9p8S8=)
                          9: 39D293CC61A311F184335DAE8747A888.roa (hash: UFEXheRWbldng6QGjy1RCb9qHZzLRVLyuLDbBU1e2yo=)
                          10: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: Xpp2kFVSkuxzwBMowkkOloasdXHXgZJRNUiRPlt0tnI=)
                          11: 48421E1E61A311F1AD9134E08747A888.roa (hash: 3KvNugzJmOfWXWejLGn4X2zH7tN8BJMAw0UhDMUUtUI=)
                          12: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: tnJ/yjknRBuc7UcBwzOHFJo2tnhzqFgevM34YS5rTmY=)
                          13: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: VpLsJjoOM5TQH3OZEcPzV4PLIS2G8Hn1FrYlhKbie54=)
                          14: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: kNZ9kMcIVbL2jK5YIL401eBQNsQQQ0xAhM8Sv/4h4WQ=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
                          rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Wed 08 Jul 2026 01:40:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1435 (0x59b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
        Validity
            Not Before: Jul  1 01:40:05 2026 GMT
            Not After : Jul  8 01:40:05 2026 GMT
        Subject: CN=6a446ff5-6f49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:9a:3e:c0:f8:17:ac:b2:03:b9:c1:a9:cb:88:
                    f0:74:68:85:f7:34:76:4b:75:98:9f:e5:62:e1:c8:
                    c7:51:9c:19:a6:d2:6a:80:d9:36:c0:63:be:ad:78:
                    ef:de:f5:0e:29:27:2b:ca:22:33:94:85:b9:06:c5:
                    11:98:2f:0a:4d:bf:4c:1e:bd:d7:23:e9:c7:93:37:
                    73:f1:c0:69:62:60:ca:23:56:15:85:ff:a8:3f:fb:
                    9f:cf:6a:22:14:e8:4f:0a:bb:83:ca:41:73:9d:7c:
                    79:f9:cb:05:5d:69:fc:ba:74:c4:84:ef:6d:f3:30:
                    75:4d:b8:e5:8e:b9:c9:1a:e9:22:2c:e3:73:77:62:
                    c8:e7:c3:2f:54:94:58:2d:30:02:54:a6:0d:5c:91:
                    9c:51:1f:9c:26:d5:25:69:f4:23:f9:d7:b3:0b:23:
                    ca:e0:69:1f:97:7e:28:34:10:34:23:b4:ec:ef:1b:
                    09:21:90:9d:4e:96:63:86:87:b4:6f:11:e1:e0:13:
                    95:d3:4b:66:71:bf:f5:52:02:7e:2a:57:fd:7a:bd:
                    27:fa:c0:8d:3c:73:26:cf:b3:89:c0:4a:72:69:f5:
                    a6:a5:28:7a:09:f1:33:2e:67:c8:e1:07:9e:b0:26:
                    a6:59:53:ed:8e:45:4f:b7:a0:33:de:f6:9f:fb:e2:
                    dd:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:A6:B8:98:5D:F7:78:E7:F9:D7:25:8C:56:2E:2E:29:8B:27:DD:04
            X509v3 Authority Key Identifier:
                keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:58:28:6a:94:74:96:60:e2:af:b0:92:cb:08:0f:10:45:7f:
         32:de:6d:48:cf:43:21:2e:e6:d4:d1:9e:c9:ed:bd:ea:3d:69:
         95:1d:c4:31:f2:c0:2c:2d:5f:0b:d6:be:a9:fb:05:c3:3e:2a:
         a8:4c:fc:c7:6b:83:8c:a7:4b:36:d8:b4:ef:20:c4:3a:a5:9e:
         4f:b4:8d:cc:52:72:45:8b:b6:ee:59:59:73:45:b7:d9:d9:3d:
         2d:b8:f4:03:5c:a7:17:08:83:3c:a0:0c:b7:3d:e7:ef:66:40:
         8c:41:e4:43:d8:7f:fc:80:ca:a7:fd:e1:5f:00:6b:27:a5:d2:
         54:e2:39:ed:56:9b:8b:85:a8:ae:dd:3e:ad:27:72:af:ca:86:
         aa:6e:39:cf:34:33:c7:5e:93:5d:96:63:4d:6c:80:74:84:5d:
         c5:48:5e:fc:fa:01:96:41:15:88:3b:b2:53:35:04:c6:4e:97:
         3d:7b:db:26:20:ac:80:8d:8b:05:e6:38:c5:47:91:07:ba:ee:
         52:5b:6d:4b:88:9e:c4:46:36:80:cb:49:98:c4:bb:3d:f7:14:
         dc:63:ba:e4:2f:4c:be:5f:23:fd:9d:45:6c:cd:57:56:dc:ca:
         47:6a:f3:fb:70:b2:a2:ac:71:47:d3:e1:3a:40:00:50:9b:2e:
         95:25:3d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 04:37:22 2026 by rpki-client