Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: twRn3Vv75WQ9IKISoIQ1vc68u8YiYMJVd+66Vv0YQlk=
Subject key identifier: 02:A8:54:74:5F:41:9F:56:83:BD:9C:EE:25:C7:67:7D:F5:A6:91:BE
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 49E3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 49D1
Signing time: Mon 27 Apr 2026 14:58:29 +0000
Manifest this update: Mon 27 Apr 2026 14:58:29 +0000
Manifest next update: Mon 04 May 2026 14:58:29 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: OTnDmNmib+JfmG5AZw8VEnkfeS7uCHWdPQHnck8DGTY=)
2: m8SNrBAOdU7o4cpqupQk4z013mo.cer (hash: DAx7UlAvMbUwqFlgbX2D8PwGFIpgUqf+UohgpZy64Zs=)
3: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: fxyUaruAjaaco/fzq2Q5nRs7XM9NtVdLWIcLFflk+gY=)
4: V2i_S72Luw3lwVz_jwqRSKCyLtU.cer (hash: fV23EOKOQ2uckiTmtDtK1711Y2atvjgTwc7thiZrIec=)
5: 5x-HDnK9Im57-jqrGpGKtGIybF8.cer (hash: dc92CXSHVcK4zCYIrrv+NPWC93p6+eAno540R7w0xUo=)
6: 2wVNT_SDuJTYCF4P43hs4um1MGI.cer (hash: 9g0d999WloLZl2Y8eVT/3PQyV06kf0W47UHGLmFv+Vo=)
7: Ak2PFao5dyF1iDou3BZQFOGSiho.cer (hash: NRcDr6REbVzbTiHoNzZyK4YoKwtLqg9UeS+C5SRci4o=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 04 May 2026 14:58:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18915 (0x49e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Apr 27 14:58:29 2026 GMT
Not After : May 4 14:58:29 2026 GMT
Subject: CN=69ef7995-5778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b0:c2:7b:ba:b6:f8:6e:23:25:a1:eb:5c:6a:
e2:d7:f0:ba:1c:1e:d6:c8:26:0e:ef:22:6b:36:7d:
0f:09:56:e5:57:9f:7e:f7:24:d8:08:3d:5e:5d:e8:
7b:8e:f1:af:41:91:3e:b5:d2:c8:c1:e7:b9:23:25:
0f:51:19:10:e9:87:a0:91:b0:5e:e3:b7:80:5f:43:
79:78:b0:d2:0a:8f:b2:85:a0:e4:f4:13:32:48:6e:
df:2f:51:a5:e2:14:11:e8:d5:42:c6:87:b2:9e:44:
ba:6f:ae:c4:2a:89:5d:ac:a8:b0:99:96:3e:bd:8b:
ed:8f:fe:8d:05:2b:81:18:5f:fe:19:2c:35:8b:a6:
0b:7a:4e:da:18:03:9f:5c:65:3f:b6:93:f7:16:de:
26:5c:d6:2d:10:ab:02:35:c1:87:02:90:ef:ef:e1:
3e:a4:15:4f:0a:ef:be:de:21:5f:18:d4:b7:c7:0f:
5b:19:dd:75:e7:b7:45:66:5f:5f:b3:fa:cc:0b:8a:
60:6c:6b:fb:fd:84:cd:27:3e:37:99:dd:4b:c7:e5:
c2:25:c9:39:34:5b:93:f2:a2:f2:c2:32:10:05:c3:
d9:3c:41:fb:e2:52:c9:1b:7e:e4:d8:18:05:1e:b8:
95:42:9e:3b:d2:bb:f1:ed:8f:ed:9a:ee:3b:a0:81:
37:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A8:54:74:5F:41:9F:56:83:BD:9C:EE:25:C7:67:7D:F5:A6:91:BE
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4c:30:f0:6f:1e:89:99:62:09:99:f9:49:22:43:f2:df:0b:db:
e3:9c:40:dd:d0:ec:19:ec:9f:b3:55:5a:da:d4:9c:6e:c2:2f:
df:ba:be:53:22:28:4a:09:9c:3f:3c:31:a6:3f:34:a2:d4:56:
37:9d:b9:7c:d8:b7:ba:8b:e5:65:40:8b:1d:3b:be:d2:b4:1c:
61:5f:7b:3d:2c:05:81:19:ac:b1:61:87:13:8c:33:95:34:cc:
d6:83:ab:f8:21:67:08:2d:98:1c:af:77:36:f2:6e:00:28:8e:
a1:18:3c:27:ef:0c:db:2b:c5:62:4c:35:ec:cb:10:ea:23:28:
23:14:09:0d:3c:7d:50:5e:7b:c1:34:84:48:7f:4d:c2:bf:81:
d8:30:c7:82:6f:9a:14:6d:0f:4b:56:cf:01:52:8a:92:c7:b5:
54:b2:6a:7c:e2:34:a6:93:cd:6a:43:54:84:40:bb:86:2a:87:
94:98:c5:6c:fd:06:f8:37:14:b0:ff:4d:f6:63:a3:bd:1c:e0:
22:51:c1:61:1c:fb:9e:d1:53:e4:06:4f:2c:18:ee:97:9d:c1:
d5:2f:0f:ea:ff:d3:2d:92:8e:cb:7f:a1:80:b4:7f:d1:60:90:
ce:dc:1d:fd:6d:85:c3:72:ca:b6:34:81:75:e1:35:bb:1e:35:
70:33:d6:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 21:03:02 2026 by rpki-client