Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: H7KQl9NwOxL39Q/8RRW4DcB0GTYGBcr0a3idd7c/OZE=
Subject key identifier: DD:69:1C:27:E1:60:88:B6:2A:A1:56:0D:87:DE:CA:F5:C5:83:92:F2
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 047D
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0239
Signing time: Mon 15 Jun 2026 23:24:54 +0000
Manifest this update: Mon 15 Jun 2026 23:24:54 +0000
Manifest next update: Wed 22 Jul 2026 23:24:54 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: mBlg3CvRFG6f98p8omSGL8wS6VtxJ4Zae5Wq+CcQlQ8=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: MymxrIMZR18B4IryWND9Ho8qIcyP5cQ5niPnq8bfSqk=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: 4ed+dMPXjAj/EKvd4EfqjgbhYYQtzb7YnUDEr9sIg3Q=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: WqJ+s40wkruwMjV67ig+ksyqTqcCXDRDmmH2irPH5Es=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1149 (0x47d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 15 23:24:54 2026 GMT
Not After : Jul 22 23:24:54 2026 GMT
Subject: CN=6a3089c6-a507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2d:a0:ee:a2:5b:86:87:9e:0b:a5:72:da:86:
32:57:32:4b:e0:b7:12:cc:47:15:dd:b2:a5:6f:50:
39:8a:d1:6b:27:08:32:1f:99:bd:b5:d0:84:ce:38:
44:08:f8:ac:20:d4:81:60:2b:26:b9:d6:bf:1c:a8:
a8:d2:4c:cc:25:4e:77:45:32:51:5c:1c:55:2b:fb:
2c:c4:79:76:94:a2:dc:75:c8:e8:d4:c3:af:2b:b9:
54:ee:2e:cb:d9:2e:da:1c:0c:86:b5:b6:be:33:1e:
24:e7:a8:fc:9e:8d:a6:6c:eb:76:88:87:d3:c4:7e:
af:ce:94:61:84:95:bd:e4:fa:28:6a:05:c3:63:4b:
ac:a0:b3:b3:64:08:02:44:6a:08:fe:db:22:54:47:
0d:91:17:2d:97:0e:3c:57:99:f7:66:a4:14:76:84:
8d:bd:5b:8e:44:18:7c:6e:cf:8d:2e:cd:a4:74:7e:
13:ae:14:bd:8b:55:b4:3c:af:70:0a:66:a0:2a:3f:
92:87:3a:5a:7b:80:6b:3b:d2:75:34:9d:b9:4b:6a:
20:7c:2a:3d:0c:5e:23:c1:96:2b:ec:2d:1a:32:4f:
55:aa:ef:c2:a6:58:28:31:52:72:ba:bd:bd:b2:a1:
30:c8:b9:71:37:64:62:96:09:83:5f:d2:51:f6:ec:
e5:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:69:1C:27:E1:60:88:B6:2A:A1:56:0D:87:DE:CA:F5:C5:83:92:F2
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
79:fb:1d:80:31:38:6f:04:79:a4:68:bc:b2:04:e3:cb:43:00:
99:fe:34:4e:f3:d3:1b:d3:2c:52:64:6f:c1:a0:8a:d6:41:0a:
5d:9c:3c:c2:07:f1:52:a2:66:58:62:66:2a:ac:c2:5c:67:84:
e5:91:25:ce:60:e3:1b:1e:fd:d3:8d:a7:1c:c0:01:a6:e3:83:
4c:15:a2:7c:4c:c5:f0:8a:27:da:5a:6a:34:26:d6:e1:49:23:
71:07:5e:67:0b:8a:10:07:ac:a4:b2:13:d5:e3:f5:9b:bc:26:
10:a1:b5:4c:8c:ba:a6:47:dc:a0:df:88:37:16:99:55:ec:48:
7c:56:1a:13:1f:a5:c4:43:79:a2:9d:e2:20:7e:c6:92:73:09:
39:42:de:2f:be:c9:2b:c0:19:10:43:77:79:0a:88:07:ac:d0:
20:09:93:0f:5a:6f:bd:d6:4b:36:d0:d4:ad:db:7e:39:4f:f5:
c2:37:aa:34:0f:ad:52:06:02:2a:2f:1f:b9:1a:ab:ae:6c:f2:
9f:7d:c8:b2:a7:da:b3:95:6e:42:bf:93:92:13:47:ad:00:74:
51:d2:00:d5:18:62:ad:fe:ec:13:08:11:e7:c9:8f:00:ab:5c:
ee:d5:ad:21:43:96:e8:85:24:71:16:51:0c:39:01:c0:cb:d8:
fd:68:26:1a
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICBH0wDQYJKoZIhvcNAQELBQAwWjElMCMGA1UEAxMcYXBu
aWMtcnBraS1yb290LWludGVybWVkaWF0ZTExMC8GA1UEBRMoOTgxNDJDOUQwQjQx
QTNCOUZCNjAzRDc2OTg0ODIzNkZEMUYzMTkyNDAeFw0yNjA2MTUyMzI0NTRaFw0y
NjA3MjIyMzI0NTRaMBgxFjAUBgNVBAMTDTZhMzA4OWM2LWE1MDcwggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpLaDuoluGh54LpXLahjJXMkvgtxLMRxXd
sqVvUDmK0WsnCDIfmb210ITOOEQI+Kwg1IFgKya51r8cqKjSTMwlTndFMlFcHFUr
+yzEeXaUotx1yOjUw68ruVTuLsvZLtocDIa1tr4zHiTnqPyejaZs63aIh9PEfq/O
lGGElb3k+ihqBcNjS6ygs7NkCAJEagj+2yJURw2RFy2XDjxXmfdmpBR2hI29W45E
GHxuz40uzaR0fhOuFL2LVbQ8r3AKZqAqP5KHOlp7gGs70nU0nblLaiB8Kj0MXiPB
livsLRoyT1Wq78KmWCgxUnK6vb2yoTDIuXE3ZGKWCYNf0lH27OV5AgMBAAGjggJP
MIICSzAdBgNVHQ4EFgQU3WkcJ+FgiLYqoVYNh97K9cWDkvIwHwYDVR0jBBgwFoAU
mBQsnQtBo7n7YD12mEgjb9HzGSQwDgYDVR0PAQH/BAQDAgeAMHMGA1UdHwRsMGow
aKBmoGSGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJF
MEI3N0UxMUU3QTk2QTM5NTIxQTRGNEZCNC9tQlFzblF0Qm83bjdZRDEybUVnamI5
SHpHU1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5LzgzOERCMjE0MTY2NTExRTJCM0JDMjg2
MTcyRkQxRkYyL21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdTUS5jZXIwSgYDVR0g
AQH/BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5h
cG5pYy5uZXQvUlBLSS9DUFMucGRmMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcw
C4ZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5Lzk4MDY1MkUwQjc3
RTExRTdBOTZBMzk1MjFBNEY0RkI0L21CUXNuUXRCbzduN1lEMTJtRWdqYjlIekdT
US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQSMBAw
BgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB5+x2AMThvBHmkaLyy
BOPLQwCZ/jRO89Mb0yxSZG/BoIrWQQpdnDzCB/FSomZYYmYqrMJcZ4TlkSXOYOMb
Hv3TjaccwAGm44NMFaJ8TMXwiifaWmo0JtbhSSNxB15nC4oQB6ykshPV4/WbvCYQ
obVMjLqmR9yg34g3FplV7Eh8VhoTH6XEQ3mineIgfsaScwk5Qt4vvskrwBkQQ3d5
CogHrNAgCZMPWm+91ks20NSt2345T/XCN6o0D61SBgIqLx+5GquubPKffciyp9qz
lW5Cv5OSE0etAHRR0gDVGGKt/uwTCBHnyY8Aq1zu1a0hQ5bohSRxFlEMOQHAy9j9
aCYa
-----END CERTIFICATE-----
Generated at Tue Jun 16 05:33:32 2026 by rpki-client