Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: TQFV2IOzPwEPc9eK6GqadNK3QAt3Hb2yD2WKzJKB1Jk=
Subject key identifier: 52:C5:4A:D9:E1:09:40:2E:C1:DF:41:62:16:C5:28:94:1F:37:5E:E0
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0489
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 023F
Signing time: Tue 23 Jun 2026 23:13:03 +0000
Manifest this update: Tue 23 Jun 2026 23:13:02 +0000
Manifest next update: Thu 30 Jul 2026 23:13:02 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: oFnhLEcacOmzZrbGm6wdPTqqc6V2JgmCYraH5KtAE6E=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: OfYlAey5G/9eww8MfSLsCKd+ct0b+babL1ZO+0p5zAU=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: ATgve2070Q2HLMuJxZG7RNiDFEa3mcphfB0TKoFQiZY=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: 2wvSf3mvkmBJarrorgDD4c1VL/vS28rDRIDRnYLdNAA=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Jul 2026 22:49:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1161 (0x489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 23 23:13:02 2026 GMT
Not After : Jul 30 23:13:02 2026 GMT
Subject: CN=6a3b12ff-f027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:00:50:e1:8e:43:1e:d5:63:ab:ed:af:0a:85:
29:12:16:cd:d8:ca:05:18:6a:63:96:bb:48:12:85:
b4:7f:02:16:ba:cf:3c:ec:43:c5:ce:83:45:53:22:
26:3f:c9:ec:c3:4f:99:ea:26:a7:65:db:76:8f:4a:
44:5c:03:c5:d8:bd:64:df:5c:4e:87:cf:4f:51:4e:
c2:1b:19:9b:81:d8:de:4f:aa:dc:4f:8a:cd:1f:48:
f1:86:3e:02:ec:d5:fc:99:94:05:90:06:7f:ed:18:
35:bf:a2:7b:09:05:bb:44:f2:b4:cd:56:d9:2b:e4:
08:d0:c7:27:75:51:0e:54:ca:c9:55:af:c1:af:da:
68:49:32:a4:02:33:23:25:f1:74:81:e6:2d:83:06:
a9:8b:68:7f:2a:77:b0:9e:d7:80:ff:b2:da:a5:ce:
b1:b6:13:b6:5a:28:a2:75:38:7c:05:65:7f:c0:80:
6d:c3:d4:21:d3:37:9a:62:b4:a1:fb:ea:b6:c3:61:
09:97:95:99:ee:87:c5:06:03:9c:de:c5:f3:02:cb:
40:66:f8:51:e1:25:1b:84:7e:79:a0:92:be:d3:ae:
40:c7:0a:78:25:29:87:e7:86:73:95:de:28:c4:d0:
9e:04:2c:0f:06:4f:b8:f5:7d:d4:f8:ac:be:2a:ff:
e6:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C5:4A:D9:E1:09:40:2E:C1:DF:41:62:16:C5:28:94:1F:37:5E:E0
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
73:65:e1:51:5e:32:e5:23:40:78:fe:ba:ab:6d:ec:b9:ab:72:
70:02:d8:24:b1:e4:b5:e2:7d:b3:8a:9f:32:55:91:35:92:e6:
77:df:d4:ac:b9:82:38:a3:0e:52:59:df:ae:70:51:3e:48:f4:
b2:76:6d:49:9c:c8:09:90:8f:ef:c3:91:e3:fa:d6:b9:4e:99:
4a:53:13:a6:17:8f:e8:23:dc:33:06:86:00:5c:c4:b2:4f:c3:
c5:c4:ea:30:78:d7:81:a0:0d:cd:b6:7e:62:b4:ff:0b:d1:5a:
e8:d0:67:58:f3:0a:b1:5a:5c:5f:4f:40:fa:bf:0a:70:e8:5b:
04:f5:a6:30:10:17:4a:2b:29:ad:71:cf:e2:38:ff:4a:bb:17:
d6:d4:29:33:04:2f:79:9d:56:37:17:82:62:81:a5:40:d6:a1:
70:4a:ba:21:cc:05:6c:96:5f:9d:fd:5f:50:0b:ea:33:46:a3:
50:6b:d1:88:e7:04:fe:4d:6c:62:dc:05:55:1e:04:d2:ce:a9:
4a:d8:21:d2:2b:c4:7e:dd:a5:d0:54:78:dc:9a:8e:36:8a:d7:
e7:6a:f3:c0:24:18:08:4f:f6:9d:58:fd:6f:75:2b:b0:28:c2:
a5:5e:cd:1f:55:95:22:7c:58:b5:b6:e8:a8:b2:0f:6f:f9:db:
fb:36:0d:ac
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu
aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx
QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjA2MjMyMzEzMDJaFw0y
NjA3MzAyMzEzMDJaMBgxFjAUBgNVBAMTDTZhM2IxMmZmLWYwMjcwggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPAFDhjkMe1WOr7a8KhSkSFs3YygUYamOW
u0gShbR/Aha6zzzsQ8XOg0VTIiY/yezDT5nqJqdl23aPSkRcA8XYvWTfXE6Hz09R
TsIbGZuB2N5PqtxPis0fSPGGPgLs1fyZlAWQBn/tGDW/onsJBbtE8rTNVtkr5AjQ
xyd1UQ5UyslVr8Gv2mhJMqQCMyMl8XSB5i2DBqmLaH8qd7Ce14D/stqlzrG2E7Za
KKJ1OHwFZX/AgG3D1CHTN5pitKH76rbDYQmXlZnuh8UGA5zexfMCy0Bm+FHhJRuE
fnmgkr7TrkDHCnglKYfnhnOV3ijE0J4ELA8GT7j1fdT4rL4q/+arAgMBAAGjggJP
MIICSzAdBgNVHQ4EFgQUUsVK2eEJQC7B30FiFsUolB83XuAwHwYDVR0jBBgwFoAU
mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow
aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF
MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5
SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2
MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g
AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h
cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw
C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3
RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT
US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw
BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBzZeFRXjLlI0B4/rqr
bey5q3JwAtgkseS14n2zip8yVZE1kuZ339SsuYI4ow5SWd+ucFE+SPSydm1JnMgJ
kI/vw5Hj+ta5TplKUxOmF4/oI9wzBoYAXMSyT8PFxOoweNeBoA3Ntn5itP8L0Vro
0GdY8wqxWlxfT0D6vwpw6FsE9aYwEBdKKymtcc/iOP9KuxfW1CkzBC95nVY3F4Ji
gaVA1qFwSrohzAVsll+d/V9QC+ozRqNQa9GI5wT+TWxi3AVVHgTSzqlK2CHSK8R+
3aXQVHjcmo42itfnavPAJBgIT/adWP1vdSuwKMKlXs0fVZUifFi1tuiosg9v+dv7
Ng2s
-----END CERTIFICATE-----
Generated at Thu Jun 25 10:17:52 2026 by rpki-client