Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: UVU2tmb8F6N6Db/C+G3sLrfNothaKWRy198jIUjqhvY=
Subject key identifier: 29:1A:AD:33:4E:D6:68:64:10:2E:2E:EA:CE:D7:92:72:A6:AD:91:54
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 46D5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 46CC
Signing time: Tue 19 Aug 2025 14:50:28 +0000
Manifest this update: Tue 19 Aug 2025 14:50:27 +0000
Manifest next update: Tue 26 Aug 2025 14:50:27 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: f2ut4uoCr86TQZT88CX54fC+zlei/9exzVIzwozpsE8=)
2: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: fxyUaruAjaaco/fzq2Q5nRs7XM9NtVdLWIcLFflk+gY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 26 Aug 2025 14:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18133 (0x46d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Aug 19 14:50:27 2025 GMT
Not After : Aug 26 14:50:27 2025 GMT
Subject: CN=68a48f34-eae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:97:e3:b4:83:02:93:40:75:87:35:d6:6b:
f5:e1:c3:e4:f8:2e:e7:67:f8:c3:26:15:72:10:42:
cd:c6:43:34:d7:14:82:62:96:73:29:a0:8d:9d:1f:
de:26:03:bf:ad:e7:11:f5:df:18:df:2d:51:dc:6b:
60:aa:5f:64:31:18:89:9a:5a:37:61:57:ac:91:3d:
a4:50:55:03:3a:35:92:b2:ac:a3:94:55:2e:4e:f0:
fd:c3:12:97:b8:1a:5d:74:8c:79:d1:9a:2b:44:0e:
7a:96:3d:78:9b:d5:2b:0b:3d:5b:ab:76:2f:16:90:
e0:91:81:72:c2:65:ed:e6:f0:73:47:c8:e2:16:38:
c4:55:6f:d5:0d:b9:c5:23:23:2e:ec:d0:b7:8a:17:
10:e5:b0:a8:79:af:3a:14:a5:0b:30:3d:c1:e5:bd:
9b:55:0b:8e:68:e7:a1:cc:bd:61:5b:74:de:d2:db:
26:c8:e9:e0:2e:4f:be:d6:ec:bc:01:e8:45:28:8e:
c1:e0:ab:8f:e5:77:7b:a9:88:02:d7:51:d8:47:2d:
9d:b2:e2:b1:e0:28:62:5d:36:97:24:49:ba:8a:22:
90:0b:0f:59:3f:9a:83:56:a8:55:39:b8:3b:f8:f5:
c2:0a:c5:51:1c:24:50:d3:08:c0:98:0f:ea:cb:72:
f0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1A:AD:33:4E:D6:68:64:10:2E:2E:EA:CE:D7:92:72:A6:AD:91:54
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
41:4f:c0:aa:79:e9:78:23:f8:34:66:bc:11:a3:2d:73:f3:1a:
5e:54:33:4a:35:66:1d:40:ec:f9:38:47:1c:68:9a:71:77:42:
7b:41:91:14:34:da:26:7d:1c:c1:32:a6:2c:d9:f6:d9:5c:7f:
04:b9:56:97:dd:10:bf:9b:7f:a9:66:4f:60:e0:61:47:7a:5a:
f8:49:dc:18:74:21:59:d1:86:33:0c:2b:15:d7:71:f3:e2:c6:
e4:bb:48:cf:8e:62:bd:9f:b1:50:48:ac:24:be:bd:77:71:55:
c9:24:18:21:89:6d:af:7d:1b:aa:cf:69:f8:71:44:16:b4:a1:
83:08:86:12:b0:69:2f:88:20:ff:e3:4c:54:05:0b:2e:dd:5c:
4b:6e:1e:41:6c:c6:61:9b:dd:6f:2d:5a:bb:f3:30:78:9f:83:
cf:1f:11:6e:18:68:a5:da:af:b8:31:5d:16:5b:12:c8:9a:b9:
ae:52:d5:2d:65:32:3b:2d:21:e3:0a:31:f9:d4:83:2a:33:00:
47:87:65:4f:b6:52:61:2d:5c:75:68:65:22:04:e4:a0:a1:04:
1f:b7:de:d4:6e:e6:52:25:1e:d1:4d:d8:fd:c8:00:34:c9:7e:
2c:35:4f:29:4a:4b:00:e0:ea:2b:a4:91:d6:3d:16:1f:f5:32:
6c:65:e1:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 19 17:32:05 2025 by rpki-client