Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: lSejf+b1VwJkKzYdZrIoBO//Taj7eNyX6xWg3gHDmMw=
Subject key identifier: 4E:17:62:7D:25:23:13:0F:DB:4F:2B:0E:75:7A:F7:37:46:3E:91:70
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 044F
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0222
Signing time: Tue 14 Apr 2026 22:47:00 +0000
Manifest this update: Tue 14 Apr 2026 22:46:59 +0000
Manifest next update: Thu 21 May 2026 22:46:59 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: KHEs7VqjGIMcuHXQI/HSshAoi+5s+e34ewqwFy9lJLc=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: jvxsUpwLtuZT3kJEdj5zFe6Srkpag71M/guGhxsWtGI=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: YVio2jc3AawzIw0uiZL5Gkju5OhBfR6DBRvDSpCQM1U=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: smAWZS9K8MP9hAYwZBrtiFmM1mhy7IDnVmOxvMZLNLs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 09 May 2026 22:28:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1103 (0x44f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Apr 14 22:46:59 2026 GMT
Not After : May 21 22:46:59 2026 GMT
Subject: CN=69dec3e4-eefd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cb:de:44:b7:74:4a:31:80:1c:a5:55:f1:d8:
68:78:0c:52:5f:d8:e9:26:c0:23:28:de:e1:cc:c3:
38:cf:d4:3e:aa:45:6d:6e:c1:1f:d8:1f:1f:d9:85:
89:10:fd:3b:1a:ee:88:5d:a9:db:1e:bf:01:6b:db:
29:49:df:e9:68:a3:48:28:5c:1e:27:d9:dc:68:b2:
3a:aa:d3:40:fe:3d:c2:d1:b1:6d:0f:7f:3a:65:c3:
e7:c8:be:d3:4a:84:2d:a2:7a:da:d2:42:e2:70:f8:
ca:c0:54:c1:76:d6:5e:d5:c9:97:75:9d:84:ff:73:
24:ba:07:46:fe:8a:12:8f:ca:fb:7c:7f:d2:4c:fa:
bc:e6:fc:e0:55:81:4a:93:f0:5b:76:0a:7d:2d:0e:
96:3b:34:d9:33:ad:2f:0b:54:bf:03:d9:2d:3d:18:
24:48:e3:a1:d2:41:be:02:d0:0a:7d:c0:89:e6:c9:
de:4d:a5:29:37:41:04:3d:41:ad:dc:6b:fb:ed:98:
3a:6f:33:54:26:21:12:fd:35:2c:e7:64:98:78:87:
7d:c1:d8:4b:dc:01:ba:ea:a1:e2:44:70:5c:c2:21:
8c:41:d3:2f:c8:4a:a5:8b:04:d2:72:23:9d:15:dd:
e9:b4:8e:ff:ab:b4:b4:04:75:23:0d:13:90:78:46:
7c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:17:62:7D:25:23:13:0F:DB:4F:2B:0E:75:7A:F7:37:46:3E:91:70
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
97:b5:17:3d:53:bc:52:3a:be:37:57:28:76:77:55:64:76:1d:
3f:43:5d:99:79:16:8d:6e:bf:79:6f:36:22:67:e8:93:cc:b9:
b9:3e:a6:fb:e8:d1:3c:8c:4a:6c:8e:a8:c6:cb:86:47:9e:39:
60:ab:46:6c:39:2d:64:79:46:5c:2c:4c:14:b7:b8:fd:3d:64:
65:d5:76:c4:f4:91:12:9b:89:bf:d2:8e:56:94:1a:4a:c5:f8:
ec:d7:11:2f:37:55:17:3b:3f:f2:eb:f3:c0:a5:fb:3f:db:f0:
74:06:66:8e:ed:34:f5:fd:71:06:26:c5:46:23:00:0a:24:cf:
42:26:a7:e1:cc:6f:6d:50:7b:0b:23:e5:cd:36:e7:7b:fb:6f:
70:0c:0b:96:9d:09:6c:79:81:86:c8:c3:03:ca:24:e6:32:60:
f5:38:0b:7a:86:af:94:83:64:01:b2:36:69:43:39:4d:93:0f:
1c:f0:fd:55:34:41:1f:2e:a8:59:44:9b:1b:bb:c7:05:cc:96:
32:d9:11:51:4d:7e:93:07:29:ac:99:90:5a:d0:80:e8:dc:6a:
d0:1d:e1:1b:8f:65:c0:1e:9e:c1:8d:16:ef:2d:45:cb:a8:a6:
ca:c4:67:f7:3a:72:b2:36:bb:fd:db:90:eb:7f:85:06:de:91:
25:a9:a7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 10:13:04 2026 by rpki-client