Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
File: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft (raw, json)
Hash identifier: NjY5LWZszSrN8Llo9o5BPcvOhCRQOJJHyi0jiV3ackA=
Subject key identifier: EB:A3:C5:49:AC:C6:AD:21:E5:5A:4A:9F:A5:2B:1E:5F:63:EC:D6:89
Authority key identifier: 96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
Certificate issuer: /CN=A90DC5BE/serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Certificate serial: 4794
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
Subject info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
Manifest number: 4789
Signing time: Mon 20 Oct 2025 14:50:29 +0000
Manifest this update: Mon 20 Oct 2025 14:50:28 +0000
Manifest next update: Mon 27 Oct 2025 14:50:28 +0000
Files and hashes: 1: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl (hash: Hg7rleFuxKYx5FOp05QKEL5wyhdkDmxa6Bxk9IqFmNo=)
2: Ak2PFao5dyF1iDou3BZQFOGSiho.cer (hash: NRcDr6REbVzbTiHoNzZyK4YoKwtLqg9UeS+C5SRci4o=)
3: 4kPzvoJVabsWrLN0vJjavmkLF8E.cer (hash: fxyUaruAjaaco/fzq2Q5nRs7XM9NtVdLWIcLFflk+gY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 27 Oct 2025 14:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18324 (0x4794)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=96A85EF4B8CAF5D4C35A157F4E125EE494BAF939
Validity
Not Before: Oct 20 14:50:28 2025 GMT
Not After : Oct 27 14:50:28 2025 GMT
Subject: CN=68f64c35-ccd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:87:15:d2:ef:90:f0:1b:bb:13:b5:12:a2:9d:
19:b8:ea:7b:d8:de:7c:47:15:ef:71:33:07:c5:ed:
75:7f:bf:a8:03:cf:1a:24:53:64:a6:a2:46:66:ab:
44:c8:42:27:e3:f8:9c:79:ec:62:02:3d:16:9d:5c:
65:45:ba:eb:22:74:ee:27:11:4f:5e:b2:cb:1b:f5:
1c:59:e5:c4:be:1e:b1:3a:6a:04:7a:c0:d9:a5:fb:
c7:1d:ec:76:b0:a2:14:a2:ca:fc:34:f4:40:3e:ab:
0c:79:02:2f:eb:9e:ff:d4:7a:ee:3e:bb:9e:1a:9d:
01:a9:51:91:84:dd:db:12:bf:46:8d:51:b5:95:81:
96:e7:e8:b4:58:04:d1:5d:15:8e:f6:ce:2b:c4:e9:
15:ee:25:ca:b5:19:bf:d4:85:50:6a:a9:1e:fe:22:
ad:dd:ce:46:d4:e7:4a:25:d8:6f:0f:14:54:8a:31:
82:ec:80:ba:e0:de:41:d0:f3:07:e8:cc:b2:43:13:
3d:83:b1:32:ae:bd:64:5f:36:d6:e9:49:e9:1f:0a:
d4:eb:0f:e5:8e:a8:a9:1e:0c:c9:a6:0e:22:94:5c:
64:9d:31:87:3c:16:41:00:75:3f:e5:77:64:80:4e:
92:f5:66:13:95:67:a9:fc:fc:76:38:6f:44:18:83:
68:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A3:C5:49:AC:C6:AD:21:E5:5A:4A:9F:A5:2B:1E:5F:63:EC:D6:89
X509v3 Authority Key Identifier:
keyid:96:A8:5E:F4:B8:CA:F5:D4:C3:5A:15:7F:4E:12:5E:E4:94:BA:F9:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ef:56:99:ce:d2:43:d5:a3:95:ae:0c:04:55:70:14:e7:18:
66:26:76:56:d7:c2:58:b6:a5:cd:8c:31:8d:6d:06:dd:15:d3:
26:74:1e:d4:3c:a2:c4:bb:0f:64:d3:b0:a4:c8:e0:35:fa:99:
35:c4:4d:86:36:01:a8:3a:4b:f0:3a:b2:b5:49:1f:0a:9a:13:
2c:e8:00:21:86:d1:52:83:5d:f8:a5:17:06:82:05:91:09:05:
f9:c1:02:d0:78:a2:3c:fc:cd:95:d4:f3:1c:1e:5b:1c:32:df:
e0:b5:5a:9d:1b:e9:00:53:3c:4f:15:f9:1e:b9:95:bf:d9:60:
8a:cc:c2:eb:74:51:6d:e3:07:3f:c2:30:92:8f:a0:2f:14:0a:
6c:ec:83:3d:2f:86:11:7e:e2:45:b3:32:3c:74:13:52:3e:d3:
70:99:1a:3b:6b:bc:fe:38:95:c3:fd:cd:47:26:09:34:68:2b:
c3:b6:74:fc:8d:17:4a:87:59:b3:72:e4:bf:d7:85:22:bb:74:
12:5b:83:3b:1a:f3:4c:ff:20:21:61:28:6d:89:39:08:e4:2d:
bb:81:d3:bf:87:d9:3c:52:ed:85:2d:98:24:2a:43:cf:ed:5a:
8f:76:b0:a5:d2:e0:88:dc:67:a2:54:8d:04:53:ea:60:cd:0a:
d5:ae:31:14
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgICR5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDk2QTg1RUY0QjhDQUY1RDRDMzVBMTU3RjRFMTI1RUU0
OTRCQUY5MzkwHhcNMjUxMDIwMTQ1MDI4WhcNMjUxMDI3MTQ1MDI4WjAYMRYwFAYD
VQQDEw02OGY2NGMzNS1jY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxocV0u+Q8Bu7E7USop0ZuOp72N58RxXvcTMHxe11f7+oA88aJFNkpqJGZqtE
yEIn4/iceexiAj0WnVxlRbrrInTuJxFPXrLLG/UcWeXEvh6xOmoEesDZpfvHHex2
sKIUosr8NPRAPqsMeQIv657/1HruPrueGp0BqVGRhN3bEr9GjVG1lYGW5+i0WATR
XRWO9s4rxOkV7iXKtRm/1IVQaqke/iKt3c5G1OdKJdhvDxRUijGC7IC64N5B0PMH
6MyyQxM9g7Eyrr1kXzbW6UnpHwrU6w/ljqipHgzJpg4ilFxknTGHPBZBAHU/5Xdk
gE6S9WYTlWep/Px2OG9EGINoOQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFOujxUms
xq0h5VpKn6UrHl9j7NaJMB8GA1UdIwQYMBaAFJaoXvS4yvXUw1oVf04SXuSUuvk5
MA4GA1UdDwEB/wQEAwIHgDBzBgNVHR8EbDBqMGigZqBkhmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjRBMUJFQTYxRDY2MTFFMkIyQ0Q4QjdDNzJG
RDFGRjIvbHFoZTlMaks5ZFREV2hWX1RoSmU1SlM2LVRrLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9scWhlOUxqSzlk
VERXaFZfVGhKZTVKUzYtVGsuY2VyMEoGA1UdIAEB/wRAMD4wPAYIKwYBBQUHDgIw
MDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMubmV0L1JQS0kvQ1BTLnBk
ZjCBtQYIKwYBBQUHAQsEgagwgaUwbgYIKwYBBQUHMAuGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS9CNEExQkVBNjFENjYxMUUyQjJDRDhCN0M3MkZE
MUZGMi9scWhlOUxqSzlkVERXaFZfVGhKZTVKUzYtVGsubWZ0MDMGCCsGAQUFBzAN
hidodHRwczovL3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYB
BQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA
AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAf71aZztJD1aOVrgwEVXAU5xhmJnZW18JY
tqXNjDGNbQbdFdMmdB7UPKLEuw9k07CkyOA1+pk1xE2GNgGoOkvwOrK1SR8KmhMs
6AAhhtFSg134pRcGggWRCQX5wQLQeKI8/M2V1PMcHlscMt/gtVqdG+kAUzxPFfke
uZW/2WCKzMLrdFFt4wc/wjCSj6AvFAps7IM9L4YRfuJFszI8dBNSPtNwmRo7a7z+
OJXD/c1HJgk0aCvDtnT8jRdKh1mzcuS/14Uiu3QSW4M7GvNM/yAhYShtiTkI5C27
gdO/h9k8Uu2FLZgkKkPP7VqPdrCl0uCI3GeiVI0EU+pgzQrVrjEU
-----END CERTIFICATE-----
Generated at Mon Oct 20 20:23:40 2025 by rpki-client