Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: zBj7y91wWDdRCl6qzm6w0NWiz5JYcsh7Ljpk7tTlsKw=
Subject key identifier: 49:47:36:D5:1A:B1:1B:8B:10:1C:8F:C3:CE:89:8E:FC:2B:43:DC:46
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0425
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 020D
Signing time: Thu 26 Feb 2026 23:43:06 +0000
Manifest this update: Thu 26 Feb 2026 23:43:05 +0000
Manifest next update: Sun 05 Apr 2026 23:43:05 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: h2hh4Mmt4Sr/4+v7FFOHmKD3XR19qc0Wlyk2QnvOZeo=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: sC63sv5lLEgwJeJApm9XAHuS0TuxC0EV2x6XJKHLR/M=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: taKbD8L3PTXqj79KeLq3ZxRK1rGxCcxXRc3ul9QT7yU=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: 2WGLkCGqWClg5/VNkovW7BF9/26njoPgOm2lqG8OK/k=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: J3QvMyjSu/mlOCgDYIpwmBKOzi3lVS2WQVqVWXIwWBA=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: YqP3EQ4gZQupoyAnsio+uyLPJSGEe3tg16/uRThMN2A=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 05 Apr 2026 23:18:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1061 (0x425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Feb 26 23:43:05 2026 GMT
Not After : Apr 5 23:43:05 2026 GMT
Subject: CN=69a0da8a-cd73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:4e:96:0a:74:c1:d3:4d:d0:bd:15:47:ba:
10:44:ca:5c:b0:86:5b:ab:df:72:cb:2b:19:40:b5:
c2:5d:da:3c:08:5f:99:3e:9a:1f:81:67:67:02:ab:
58:fe:5b:6c:5c:63:ac:73:3b:9d:b3:0d:bf:f3:65:
4b:a3:f2:d5:86:63:40:24:08:43:77:8e:6d:32:37:
dd:03:56:b1:e2:d7:aa:b8:80:48:77:4a:11:52:5d:
43:3a:b0:5c:c9:12:4c:87:45:90:3a:24:89:6f:3e:
4b:13:58:cc:d8:90:9e:88:1c:10:99:49:f7:29:8e:
88:12:a1:7b:58:eb:c9:f6:ac:79:7a:87:74:f7:84:
0b:65:2c:97:de:12:c7:b7:e3:0a:19:3c:b3:d8:36:
04:80:d0:95:8b:81:be:41:31:a6:2f:6b:a2:16:56:
b2:fa:0b:93:4e:86:5d:47:d9:8b:7d:fc:27:01:99:
3a:bd:26:0e:ce:d5:bc:ce:c2:18:6c:60:62:8a:14:
f2:c1:cf:7d:8f:3e:c4:6c:3c:fd:d1:62:c7:0f:7f:
a2:63:b9:d3:e7:1a:25:c0:54:07:09:38:87:7d:19:
b8:5a:69:92:e2:ee:6b:44:1e:a1:c2:ca:3c:3e:0b:
1b:22:a7:25:98:dc:39:a8:df:03:09:5b:63:53:fd:
b7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:47:36:D5:1A:B1:1B:8B:10:1C:8F:C3:CE:89:8E:FC:2B:43:DC:46
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
93:d5:6d:2f:32:a3:d8:40:ea:6a:ba:d1:8b:12:82:81:8a:59:
7e:43:31:4f:0b:4e:c7:d7:63:31:dc:d0:50:32:2c:1c:85:44:
0c:5c:0f:7f:19:59:13:8a:fb:0e:c8:31:6a:4e:55:d9:77:01:
c6:86:7c:42:8c:26:b7:df:e1:43:ad:f4:50:52:46:07:02:34:
4b:35:d0:1a:54:73:fb:6b:a9:fe:75:cb:3d:5d:51:78:39:84:
bf:80:32:ca:83:af:46:94:27:f0:83:ae:31:7e:8f:85:4e:88:
0e:e1:1d:40:95:34:fc:ab:ea:40:c9:3b:77:3c:3c:1e:9d:47:
84:e5:5e:b0:59:f9:7e:1e:96:19:0a:59:fb:79:69:4d:03:40:
99:b7:cd:2c:43:7b:0a:f0:80:bc:a7:56:4f:d3:bc:03:15:0e:
80:30:c3:ae:ff:ae:9d:bf:ca:69:a3:12:4d:66:4b:d0:58:76:
e4:28:85:e4:d7:ab:e7:67:95:65:25:60:c1:1c:79:8c:19:e9:
83:8e:c9:4a:f5:f3:67:fb:b1:3f:61:a1:1d:07:76:2b:77:c5:
cb:e5:8e:7e:df:cb:92:c1:91:c8:63:2f:fe:52:0a:72:90:82:
80:b1:bb:d6:28:be:bc:ca:b5:89:d6:50:54:bd:99:cd:2c:aa:
ad:4f:58:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 27 01:57:44 2026 by rpki-client