Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: pytwhcql09g7if7gD27vl3f7/kopc9YRt7WJGeoxJ94=
Subject key identifier: EF:6D:5A:68:59:56:42:88:DF:44:1F:E5:23:81:8C:49:8B:30:BA:0B
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0467
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 022E
Signing time: Wed 06 May 2026 02:45:21 +0000
Manifest this update: Wed 06 May 2026 02:45:21 +0000
Manifest next update: Sat 13 Jun 2026 02:45:21 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: Tbju6NMmBuF/ulzOJSGad/iFvQ+N77+mwwncGpcyTCg=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: qh4nK9cHrKFPfL/gxHU+JPA2pbi1XDDvkI7ZEyjfRWU=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: ULEDSJ99XVRDVr5JO2BJsdmyGcSlEjPKbXijHYRzM6w=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: hSwPDj8J2trm5yAl+zeKAUswXRv7le+CXy9t/J9/STA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 13 Jun 2026 02:45:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1127 (0x467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: May 6 02:45:21 2026 GMT
Not After : Jun 13 02:45:21 2026 GMT
Subject: CN=69faab41-e077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:34:c3:8d:d5:59:8d:bb:5f:1e:ad:ac:03:42:
3b:be:fc:e2:f6:4d:90:d7:87:e3:0b:ef:af:3d:dc:
e7:9f:2a:9a:04:cd:a7:b0:6a:65:01:38:53:ad:6f:
e5:35:f8:0c:47:5b:e8:78:29:29:d3:f2:eb:87:8c:
08:27:f1:a7:f1:02:95:a6:b9:58:38:de:66:4d:69:
ee:13:e7:3c:87:ac:57:14:50:a2:d2:00:eb:e2:98:
0a:66:d8:d9:85:d9:4a:48:f2:64:d4:bc:3f:da:2b:
a9:fd:e8:30:c8:78:88:43:9c:3e:7e:03:9b:55:d8:
b7:e8:a8:4a:08:b7:e6:8c:b8:31:59:13:42:dc:a9:
ab:51:6d:f8:64:a4:c9:3f:b8:96:f0:22:6d:d0:f6:
a0:6e:22:9b:a8:95:43:3a:01:41:c1:c5:1a:db:7f:
43:c2:ef:28:91:22:3a:fa:f9:0c:a4:c3:95:86:d3:
ae:20:7d:5c:b1:57:f7:c5:e0:96:48:c6:dd:59:6a:
9c:3c:79:59:8c:66:b2:31:4b:3e:9a:a5:52:29:cd:
98:88:0d:ef:c1:18:0a:4d:7c:92:44:6d:e8:4f:06:
c5:5c:3e:c1:be:ee:a8:40:e8:cb:29:0e:20:43:ab:
12:4e:1c:4e:e8:cd:cf:8b:12:7d:91:27:ed:1e:5f:
57:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:6D:5A:68:59:56:42:88:DF:44:1F:E5:23:81:8C:49:8B:30:BA:0B
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
79:e0:3d:92:bc:39:bc:ac:53:1f:7a:b2:ba:a8:c3:78:77:71:
7a:07:6c:b1:1a:86:f0:07:71:88:8f:d8:ac:9c:4b:19:83:17:
75:36:d2:82:2a:e1:ab:ac:51:c0:59:f7:2a:e6:17:15:84:5b:
f8:fb:fa:01:c6:ac:1f:4d:47:d7:df:c9:ab:5b:bc:44:18:de:
7c:b3:f4:ad:34:cd:fb:a1:bb:4b:66:43:19:85:da:4e:3b:56:
ee:e8:6f:28:c0:f0:d7:06:5d:04:95:28:9a:f4:cf:3b:d1:b8:
94:f7:dc:3b:e9:08:10:fb:c7:ce:84:f7:63:ee:69:a1:d6:0d:
7a:03:31:b5:0a:5f:ba:30:3a:af:b4:a6:ca:d5:1b:c4:f7:29:
84:14:5e:27:ef:84:e3:eb:55:68:8d:19:20:26:7f:b4:b2:3e:
4c:e0:6f:0c:c8:a3:0a:66:2e:72:70:ba:df:04:4d:b0:0f:ca:
db:0c:a1:d7:b2:45:65:04:67:ca:2a:d1:00:58:aa:7e:e1:cf:
9a:70:bb:14:38:56:a4:06:05:dd:de:41:fb:39:52:5e:8f:72:
3a:c7:3c:78:0c:52:da:43:22:f0:6b:fd:4b:e0:87:36:51:3c:
d9:f9:b2:2c:de:50:94:4b:78:13:c9:0e:24:87:57:4d:c3:7c:
30:3f:57:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 11 20:16:36 2026 by rpki-client