Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: YZJSfzOvNPU84cRBBBpjINFOGjkeXRuri6/SIRhnQWI=
Subject key identifier: E3:6E:29:E1:AE:5A:B5:4C:52:9D:88:48:27:25:BC:EE:A1:31:09:9E
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0437
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0216
Signing time: Thu 19 Mar 2026 22:13:20 +0000
Manifest this update: Thu 19 Mar 2026 22:13:20 +0000
Manifest next update: Sun 26 Apr 2026 22:13:20 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: OZPhNdE2Aa1A61gGUdi45BdJ89F4HVE5PCQ8RyshRXA=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: AYRJQMey03A23BqsDiCq097hR0Fnslw7dY1uxX0IMhk=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: Ruoq0B1BTnhUXAO5yEkBp8G+tJeDt1HJZYuzo5dhBik=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: NvSQdOpjbNko8KZoxWdKOdTzk9Rg1mZxrALiFCau4lU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 05 Apr 2026 23:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1079 (0x437)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Mar 19 22:13:20 2026 GMT
Not After : Apr 26 22:13:20 2026 GMT
Subject: CN=69bc7500-ab94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:81:52:1a:32:d3:8e:99:0d:58:eb:d9:09:1b:
28:38:2d:0e:57:bc:bb:33:fb:84:34:1b:12:44:46:
1c:9d:50:e7:38:00:bf:db:15:98:e1:c4:76:ba:55:
ea:63:6d:20:2c:31:56:79:60:4b:d8:6a:f0:45:80:
20:f7:f1:1f:ea:43:8b:c6:f0:60:67:f5:eb:8f:18:
0b:e7:d6:44:cb:04:d6:49:75:f9:43:7a:0e:5d:fb:
17:8a:e8:21:2a:8a:61:ed:f0:4e:04:04:4a:de:90:
22:18:75:4e:a8:14:17:f9:13:9e:0d:91:74:09:ff:
bd:67:0c:40:55:cf:d1:4e:9e:35:e1:f0:3d:1f:fd:
49:cf:66:4e:d6:03:8a:85:26:58:e0:6c:4b:d9:74:
07:1c:56:51:ae:b0:64:9a:bc:22:9b:7a:16:70:0b:
20:e8:ad:be:2e:74:54:9d:68:31:6f:86:1c:0a:86:
f9:e4:84:08:e8:4f:f7:14:ff:82:b0:08:cc:db:d4:
0e:3a:00:05:2f:91:25:c0:0a:d7:0e:ca:cb:21:67:
95:d4:a7:07:36:6d:0f:38:1c:08:44:92:a3:ce:67:
28:f3:c5:15:34:27:d9:1a:30:89:81:44:c8:0c:4e:
48:2f:d5:a3:a2:9b:2f:b3:9e:b6:9f:63:a3:25:50:
16:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6E:29:E1:AE:5A:B5:4C:52:9D:88:48:27:25:BC:EE:A1:31:09:9E
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b3:0f:b9:0b:be:37:fe:9e:da:e9:dc:bb:d5:2e:d4:5a:88:0c:
5f:37:c5:61:ad:38:90:07:37:8a:23:63:2b:b8:2e:b6:5a:3b:
0e:00:71:7d:38:9a:62:fe:7f:c8:1b:cd:e0:df:dc:55:53:96:
d6:aa:64:67:0a:f7:67:b0:5c:ff:15:e9:ec:e1:c5:b9:f5:c3:
25:79:07:59:7a:48:61:16:82:4b:41:8f:d2:35:bf:66:c9:3e:
52:ea:02:29:33:d5:62:c3:17:65:57:99:8f:36:24:f3:53:f0:
83:fc:f9:ec:2c:ca:50:09:41:4e:a6:1c:71:2b:53:42:bb:d7:
01:d8:6f:79:16:63:92:11:a7:fe:66:84:f3:11:82:4c:a7:5d:
bd:0a:4a:f5:d6:d1:6a:40:37:6d:3d:3b:f6:1c:be:21:34:6c:
0d:07:d3:d5:de:f8:0f:b2:f6:a1:6f:00:52:ec:13:14:dc:e3:
74:35:75:0f:ae:2d:3f:61:97:8d:c7:cf:cb:ec:f0:33:0d:19:
71:97:30:a5:65:e5:27:ff:67:41:99:76:f7:03:09:6b:0c:fb:
f2:39:5d:f3:1f:28:0f:37:a9:9e:8d:0f:a3:d8:9a:c8:94:5c:
01:14:a8:bf:e3:c6:35:d0:98:5e:77:d3:54:90:f7:86:c3:ee:
d6:a8:7e:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 22 03:29:53 2026 by rpki-client