Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: 2eJrvXNy01uNW9/nTjRa63fpFPKahepMU7B28JM2oMo=
Subject key identifier: 65:B0:53:87:4A:8F:09:E1:E6:0E:E7:00:B0:F3:06:A7:70:79:D3:EA
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0411
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0203
Signing time: Thu 12 Feb 2026 22:56:33 +0000
Manifest this update: Thu 12 Feb 2026 22:56:32 +0000
Manifest next update: Thu 19 Mar 2026 22:56:32 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: B7AmKVQikzs9aVRhchClglQYbbKTa6iQZLtZ2fpiW+Y=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fd2yXvcOGhywUgOtBsL6iEgDpyBn8SwQZVJsPPG58mA=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: HNzUbc7qlmHDDReTxIZTpjpIuY+/76pngqPJC5pBA7A=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: vwpMvjGjOAwUT2lW+JqPZCwS9iM7Db0BGcO5sFRcGII=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: aAtoNujzcetvuEaJqfcZE+B/tuWJcm29UgkfUeRqe9s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Mar 2026 23:25:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1041 (0x411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Feb 12 22:56:32 2026 GMT
Not After : Mar 19 22:56:32 2026 GMT
Subject: CN=698e5aa1-22fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:81:6d:b0:2f:91:67:9b:f4:24:7a:25:ea:4f:
ca:97:d9:f3:33:fa:6c:93:40:79:c2:24:a4:f9:85:
8f:df:72:c3:0f:e5:d4:8e:4a:ee:f1:11:b8:8e:75:
e6:f5:3e:c2:a8:92:48:65:bf:fd:ac:4a:d9:8c:cc:
7e:f1:ab:ca:ad:c0:e7:9e:cd:13:8d:e6:60:e1:5d:
15:bd:d2:78:34:1e:14:4f:1c:c5:d4:bd:4b:1e:18:
a1:66:a1:15:b2:43:35:02:73:74:ae:9c:b7:8f:43:
37:e8:bb:00:16:69:2b:17:6d:4f:7d:b0:e5:8c:f5:
7b:de:ff:91:31:1c:20:21:57:ba:54:0b:b9:fe:d4:
a7:ca:51:ab:62:78:db:b8:3d:8f:f5:76:79:00:d2:
92:c9:bf:88:ca:f4:44:c8:69:d4:e7:95:01:63:dc:
a2:74:bc:86:f9:7f:4a:77:28:67:3b:6a:d5:07:7d:
3e:aa:3d:58:14:98:e6:92:d1:84:3d:fc:a5:33:c5:
b9:40:68:fd:17:f4:09:49:89:0b:bf:6b:01:39:bd:
5d:b6:af:74:eb:c2:48:0f:82:57:a1:54:1a:0a:48:
df:0b:e8:d4:aa:23:3b:01:9b:e0:f9:1e:a6:c9:91:
b5:8e:38:66:37:5e:7c:c6:3c:62:3b:50:93:ba:f5:
47:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B0:53:87:4A:8F:09:E1:E6:0E:E7:00:B0:F3:06:A7:70:79:D3:EA
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
b9:bd:dc:1f:85:98:d6:14:94:0a:07:d1:16:6d:9c:ea:e3:83:
a7:df:7b:64:32:c9:d2:6e:86:a3:6e:27:47:11:f9:03:38:49:
9d:4a:ca:a9:4a:70:83:33:66:58:97:e7:0c:8d:34:5c:48:82:
b0:90:43:2a:51:df:a9:bc:59:52:e1:f1:bb:43:29:6b:a3:ba:
6f:1a:71:ec:a5:ca:d6:b6:3d:3c:64:e9:0b:46:b3:db:7c:39:
a9:a3:e4:1d:af:38:d1:a9:a8:b6:5c:80:60:e8:54:a2:58:f0:
fe:16:ec:43:4f:8b:8e:5b:bb:78:46:dc:2e:8e:18:16:03:c7:
ab:c1:60:9b:dd:8f:a5:2d:60:e6:80:17:5e:0a:65:ad:11:eb:
21:b8:30:5e:b0:6f:48:d7:2f:8d:9b:7c:07:fd:a9:01:ee:b6:
0f:fc:17:d1:34:25:74:7f:b8:6b:f3:6c:4e:ed:d7:a5:83:ad:
04:7e:7e:0f:36:07:cd:25:9d:70:a8:dc:06:a7:af:4b:00:73:
25:02:65:04:50:23:48:63:dc:3f:c2:7b:f8:9d:01:89:1a:6a:
3d:5a:8e:a7:d8:d1:7e:17:ef:aa:ca:b1:c7:b3:76:37:a8:8f:
58:9a:cb:a7:c7:e4:c7:77:84:95:c1:b7:15:5d:9d:f4:0e:8c:
1d:cc:5f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 17 01:21:10 2026 by rpki-client