Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: k+ip7AoqdTDHIS/g0v9PokjdjsVjsc8yodb79nBjSg0=
Subject key identifier: 80:C4:E2:1B:E5:A2:63:7D:7A:A1:08:29:DD:5A:7D:A9:5C:43:1C:F4
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0471
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0233
Signing time: Wed 03 Jun 2026 02:23:34 +0000
Manifest this update: Wed 03 Jun 2026 02:23:33 +0000
Manifest next update: Fri 10 Jul 2026 02:23:33 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: /6P8+de5hj1fEcmfZTl/QKvOpxAyBSP5NtfRUX747n4=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: 9MFz/f1x9OWpWWGjiP1xM1R0B106mdb1q4ShRwIcWgw=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: cM87XeVmDMSzMu5MivyF3KYZ+0jWLHmZ3t/7ui1VcgU=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: PJIO4EkIbc5Wfgs3qRuAWbwtuWqVYDA0960OOy6ijN8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 3 02:23:33 2026 GMT
Not After : Jul 10 02:23:33 2026 GMT
Subject: CN=6a1f9026-2e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:0b:be:9c:ea:ef:5a:c3:44:e6:41:c8:a6:
5c:d5:d5:05:7b:3f:2a:15:4a:4c:27:66:98:c5:19:
7c:70:35:2e:d0:84:0a:13:ff:21:4f:e3:bd:b4:3b:
a1:31:28:7c:d7:31:71:8f:39:cc:d7:30:ca:e7:e2:
a2:f0:43:22:03:4e:53:34:50:39:97:56:5d:42:05:
51:28:50:3f:39:42:e1:9e:c1:e5:23:d0:ca:2c:08:
00:ab:28:f0:09:45:cf:a1:84:6a:c5:2e:6b:a3:a7:
ad:84:d8:f2:a3:f5:bb:13:8a:4a:0a:6f:bc:a6:0e:
cc:83:48:0c:4d:28:67:c8:b9:f6:ee:4e:35:68:f6:
62:d0:de:c7:e8:8f:dc:eb:a4:d9:2d:c4:09:1f:bb:
ff:a7:ae:2d:dc:7d:e4:07:85:2d:e5:6c:8c:ca:68:
8c:f4:e2:2a:97:56:57:24:b1:6b:8c:56:46:ee:f1:
95:c8:48:75:68:8f:ec:65:62:6a:b0:6e:71:51:7f:
58:17:5a:c3:d1:71:90:0a:61:1d:0b:6b:a3:d6:56:
b4:0e:44:77:02:df:e3:43:b9:22:c5:6a:99:c7:8c:
5c:d1:63:a3:ee:43:77:36:ae:5a:f9:b9:f7:31:0e:
0c:4c:07:9d:6e:a9:74:1e:df:61:9b:da:e5:46:59:
e5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C4:E2:1B:E5:A2:63:7D:7A:A1:08:29:DD:5A:7D:A9:5C:43:1C:F4
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
3e:a2:6f:ac:06:bb:36:0b:45:e2:00:20:e4:89:dd:ca:72:7d:
54:b5:e7:04:3a:9b:8a:bd:71:79:2d:ea:cd:32:0f:21:27:90:
aa:f8:48:8d:75:68:fd:12:a6:35:ed:94:9d:8e:df:28:c5:a5:
70:8c:36:6e:cf:0c:18:18:7a:8b:f3:72:07:69:da:4f:06:44:
c8:2e:62:6f:fb:ab:c3:ce:0f:84:ae:c2:4c:4a:5c:e6:1a:83:
56:81:41:36:45:97:55:fb:e2:33:e6:26:93:b8:27:9b:54:8b:
2b:5d:e8:55:39:15:70:e3:4c:34:2c:16:10:9f:62:0a:3a:77:
c3:63:50:3d:8e:5c:43:a2:1b:b6:79:de:c7:ae:17:98:3d:4b:
06:b6:22:81:e4:2d:ba:ff:6c:0b:b5:b7:1a:c3:dd:97:ea:88:
73:8e:3c:f0:bc:83:44:a5:8d:a6:46:31:49:89:ae:71:b2:32:
cd:be:f2:5d:c3:96:00:18:3d:c3:cb:e3:fb:61:00:35:77:e3:
81:d1:9f:39:8d:c4:8f:86:3e:12:4c:65:1a:39:21:e8:89:18:
71:3b:a5:32:f9:e4:32:55:95:f5:eb:b1:7d:33:ff:ed:88:77:
a7:b9:59:83:ac:f2:ce:a2:f0:77:e1:9d:f0:eb:08:19:45:c2:
dd:8e:92:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:38:56 2026 by rpki-client