Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: yRdGOIaXYKay8BSMkXTc9+gsBvC+SyEbi8eGRTRNf88=
Subject key identifier: 19:CA:39:1E:17:4D:F2:F0:39:E8:70:71:CB:D7:EF:9C:97:8C:33:F6
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0477
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0236
Signing time: Tue 09 Jun 2026 23:06:14 +0000
Manifest this update: Tue 09 Jun 2026 23:06:14 +0000
Manifest next update: Thu 16 Jul 2026 23:06:14 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: 7KdEl0HHUid5HMzUo897qF5s6s3C1/s/SjEgpmqxM50=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: Odg7ItNz9eOgXurogWiqvKRo2EJl+lYhTmDZonsb3jw=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: 4lDc7qDs206/AlejyDt8IZbeYDS0adIpX/P+hYpi8a4=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: PJIO4EkIbc5Wfgs3qRuAWbwtuWqVYDA0960OOy6ijN8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1143 (0x477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 9 23:06:14 2026 GMT
Not After : Jul 16 23:06:14 2026 GMT
Subject: CN=6a289c66-a5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f8:26:16:36:ce:60:d9:43:aa:8d:0a:78:eb:
f9:7c:51:33:52:1b:77:c8:b1:42:39:f0:bb:8c:ab:
38:56:69:10:9e:b8:dc:9e:19:a5:16:04:5c:b0:78:
58:15:8c:90:32:4d:87:1e:47:0f:33:46:6f:ed:a9:
c7:aa:a9:a2:26:a9:39:9c:45:71:91:69:28:b0:e9:
c8:f1:23:e9:97:74:02:e6:a9:cd:87:ed:4e:18:95:
56:77:f7:1a:b4:05:f2:67:bb:5a:6c:6a:a9:aa:50:
df:77:51:b9:df:14:83:02:f8:2c:34:0a:23:cd:35:
50:15:74:88:e4:c8:3a:72:f0:8f:03:6a:ca:23:67:
f9:f5:a4:56:26:3b:2f:54:de:db:71:b2:df:32:d0:
16:df:af:b1:bc:7b:4e:06:48:69:2d:7c:e4:19:7f:
bf:fb:7f:9a:da:87:2b:46:95:40:1c:4a:81:15:84:
c1:b5:8e:13:86:17:6e:89:24:7b:50:36:cf:b2:36:
69:03:55:ad:c0:cc:cf:cd:ff:73:44:dd:3f:40:f4:
9f:bb:b4:13:85:cd:df:79:ee:f4:02:5d:be:fe:73:
fc:a4:32:f6:4a:24:17:bb:4b:b9:5d:98:4e:30:41:
b3:43:a7:63:4f:c4:c3:a3:b9:76:7b:1b:2e:89:54:
68:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CA:39:1E:17:4D:F2:F0:39:E8:70:71:CB:D7:EF:9C:97:8C:33:F6
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
cc:4d:9c:22:16:5f:a6:d2:d8:3f:d2:40:26:18:3b:24:4c:97:
c8:88:09:4d:08:ee:c3:e5:ab:c1:6a:8a:24:45:c0:9f:a7:d4:
99:bc:71:70:e7:71:d5:00:0f:7e:16:de:04:e2:9b:af:9f:58:
a8:87:a9:a9:50:e3:6d:bd:c9:e4:6d:cb:d6:ee:03:2d:77:10:
23:a3:cc:8c:83:b3:9f:c2:ba:6c:0c:86:57:46:ab:13:c0:d4:
0e:ef:e0:3c:a8:6b:40:61:c0:fe:33:5e:0c:40:8d:81:bd:6c:
49:83:27:a9:95:f3:24:58:76:0a:0b:1c:34:90:6c:bc:84:36:
c0:66:7d:56:f8:23:9e:20:44:13:e6:18:2e:cb:29:48:6e:32:
8a:ac:bf:81:9b:7a:e9:b5:f2:4d:a4:9c:1e:6b:cb:a2:2f:95:
40:db:b6:08:01:b5:48:6d:d5:44:84:03:d0:dd:20:fb:6c:29:
83:6f:51:6f:17:2d:61:37:e7:db:fa:e8:2d:34:c3:60:9a:eb:
4f:51:c1:7a:2f:29:4b:df:1b:32:39:c7:d1:f9:6e:1a:87:4a:
21:f2:ed:34:18:77:8e:4e:25:ca:7f:51:89:54:12:59:d5:6e:
c9:cb:b7:e6:fe:f3:0d:00:3e:39:9b:2f:1f:84:dd:e0:b5:4d:
1c:6d:60:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 10 02:40:55 2026 by rpki-client