Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: g7d38/d5zeXNWMmwGC/2wio9JlEJs0IlQx4IlN4o/h0=
Subject key identifier: 2D:80:23:FB:D9:2D:27:C7:C1:31:59:74:30:1F:24:FE:CC:A0:21:70
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0485
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 023D
Signing time: Wed 17 Jun 2026 22:54:59 +0000
Manifest this update: Wed 17 Jun 2026 22:54:59 +0000
Manifest next update: Fri 24 Jul 2026 22:54:59 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: wKnpGueVtBObPT1TVDZMflCTTAiCsrxkqP8sVHfqkk4=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: OfYlAey5G/9eww8MfSLsCKd+ct0b+babL1ZO+0p5zAU=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: xNo+48dbeQIQYBFfBYWGYRNqc3vujteTHrXxYueEyJ4=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: WqJ+s40wkruwMjV67ig+ksyqTqcCXDRDmmH2irPH5Es=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 22:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1157 (0x485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 17 22:54:59 2026 GMT
Not After : Jul 24 22:54:59 2026 GMT
Subject: CN=6a3325c3-c8fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:62:1d:22:e7:12:37:39:5f:1e:13:af:6a:fc:
0d:0d:b8:38:46:d4:67:03:8a:2d:cc:22:45:be:7e:
6b:3a:1d:13:0a:0f:e8:3c:46:c8:dd:51:15:f4:9b:
4a:bd:dc:43:50:cf:3a:56:c2:b0:fd:04:02:81:dd:
59:29:da:71:0f:db:10:fe:cf:cc:9c:0f:1c:0a:47:
a9:6e:32:b5:21:66:63:b6:ca:7e:f1:1e:36:89:b3:
be:3e:cc:93:6b:b4:ad:ed:f9:54:ac:28:89:e1:65:
c4:36:d3:5c:04:1c:ee:bb:ab:d9:f9:8f:4c:1f:54:
79:fb:3a:c6:60:c1:90:e3:6d:17:53:e8:4b:2b:33:
8c:7b:53:b5:d1:a7:3a:45:7c:13:36:98:b9:67:2b:
be:1d:77:84:75:79:d3:9b:e3:32:ad:4b:57:13:e8:
52:01:c0:c4:64:35:61:ae:12:d2:0a:74:e2:dd:93:
b7:90:24:04:46:41:ba:3e:b4:6d:ca:5e:e0:aa:f5:
a6:49:69:cf:6b:43:a0:83:ec:f0:ed:d3:98:3a:eb:
df:b6:54:27:7f:43:d4:75:db:fa:a7:1d:b8:a3:3d:
1d:56:07:48:30:2a:99:51:40:4b:3f:99:0d:5e:33:
30:4e:19:e1:bd:c5:46:7b:85:2e:3e:a6:37:8e:9d:
17:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:23:FB:D9:2D:27:C7:C1:31:59:74:30:1F:24:FE:CC:A0:21:70
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
c9:1e:0d:c4:bc:99:78:94:af:55:7c:0d:7b:d4:d8:60:bb:6d:
c3:a7:e1:23:49:6f:95:b2:fd:93:5b:26:b6:b1:86:36:46:5c:
92:ca:98:6e:1f:44:d8:77:1d:bf:3e:bd:bc:49:78:b1:39:7c:
be:c2:e4:9f:8a:20:24:bc:77:e3:3f:a0:79:f8:a5:1e:5b:a5:
4d:05:30:30:c3:d7:04:41:7d:f7:c6:69:50:23:8c:ff:9a:a8:
8e:61:60:7e:36:89:44:31:b6:57:20:29:ab:39:04:cf:75:30:
a0:30:b0:70:b1:ed:e0:a1:65:0e:13:b1:a6:fa:ce:d6:da:82:
9d:be:38:2c:05:fa:80:3f:50:e0:b8:bb:39:ea:a0:57:16:b9:
89:71:c9:be:d8:6d:22:66:a8:ac:0c:73:e9:be:ef:44:05:fe:
f5:90:14:b8:ab:da:8e:0f:48:f8:a0:92:67:2f:3f:a4:d4:c4:
b8:6f:23:df:86:e7:7c:93:37:68:03:0f:3a:a9:b3:09:06:15:
1c:d7:eb:01:78:be:90:bf:38:b8:be:03:5b:1e:5e:84:b8:79:
53:0a:e3:84:ce:8e:8d:d6:54:dd:f0:2a:a2:3d:d9:8b:b6:58:
22:0f:c7:70:20:5d:ba:de:ad:7f:fe:29:9e:29:2e:36:eb:0e:
e4:15:82:df
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICBIUwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu
aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx
QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjA2MTcyMjU0NTlaFw0y
NjA3MjQyMjU0NTlaMBgxFjAUBgNVBAMTDTZhMzMyNWMzLWM4ZmMwggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHYh0i5xI3OV8eE69q/A0NuDhG1GcDii3M
IkW+fms6HRMKD+g8RsjdURX0m0q93ENQzzpWwrD9BAKB3Vkp2nEP2xD+z8ycDxwK
R6luMrUhZmO2yn7xHjaJs74+zJNrtK3t+VSsKInhZcQ201wEHO67q9n5j0wfVHn7
OsZgwZDjbRdT6EsrM4x7U7XRpzpFfBM2mLlnK74dd4R1edOb4zKtS1cT6FIBwMRk
NWGuEtIKdOLdk7eQJARGQbo+tG3KXuCq9aZJac9rQ6CD7PDt05g669+2VCd/Q9R1
2/qnHbijPR1WB0gwKplRQEs/mQ1eMzBOGeG9xUZ7hS4+pjeOnRf/AgMBAAGjggJP
MIICSzAdBgNVHQ4EFgQULYAj+9ktJ8fBMVl0MB8k/sygIXAwHwYDVR0jBBgwFoAU
mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow
aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF
MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5
SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2
MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g
AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h
cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw
C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3
RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT
US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw
BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDJHg3EvJl4lK9VfA17
1Nhgu23Dp+EjSW+Vsv2TWya2sYY2RlySyphuH0TYdx2/Pr28SXixOXy+wuSfiiAk
vHfjP6B5+KUeW6VNBTAww9cEQX33xmlQI4z/mqiOYWB+NolEMbZXICmrOQTPdTCg
MLBwse3goWUOE7Gm+s7W2oKdvjgsBfqAP1DguLs56qBXFrmJccm+2G0iZqisDHPp
vu9EBf71kBS4q9qOD0j4oJJnLz+k1MS4byPfhud8kzdoAw86qbMJBhUc1+sBeL6Q
vzi4vgNbHl6EuHlTCuOEzo6N1lTd8CqiPdmLtlgiD8dwIF263q1//imeKS426w7k
FYLf
-----END CERTIFICATE-----
Generated at Fri Jun 19 07:25:23 2026 by rpki-client