Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: i0Uu8grwRMX9yQz5/3QhK3fIiPgOWOF1BzF93MupMnY=
Subject key identifier: 1E:37:90:F9:2C:0E:2D:10:95:8D:CD:20:8F:47:00:85:D7:0F:32:9E
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0473
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0234
Signing time: Thu 04 Jun 2026 23:01:45 +0000
Manifest this update: Thu 04 Jun 2026 23:01:44 +0000
Manifest next update: Sat 11 Jul 2026 23:01:44 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: Je9VCN/CShoXQ7Kt42Ga7NZe2tCKtO+V0zjyUA+wM90=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: MvAZTFUqmNh25MRA/P85WhVSmlJvC6Hx/VMoLAkHhXI=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: cM87XeVmDMSzMu5MivyF3KYZ+0jWLHmZ3t/7ui1VcgU=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: PJIO4EkIbc5Wfgs3qRuAWbwtuWqVYDA0960OOy6ijN8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1139 (0x473)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 4 23:01:44 2026 GMT
Not After : Jul 11 23:01:44 2026 GMT
Subject: CN=6a2203d9-3a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bf:57:87:94:14:93:8c:17:65:c6:c7:f7:36:
99:a0:4b:72:44:6e:f7:7b:42:32:54:c7:73:c3:3c:
a1:bb:53:ae:d9:ce:fa:9f:d1:68:2f:2a:38:02:2f:
8f:81:fe:2c:13:f3:0f:b0:e9:33:4e:72:4e:6b:6c:
60:bf:ad:e1:55:0d:5e:df:7d:e5:05:73:8f:b0:bb:
3b:56:f0:9e:d8:29:19:b9:e1:4e:d4:bd:1b:4e:8c:
1b:63:e6:cb:09:68:ac:6c:49:c7:56:cd:0e:bc:ff:
52:d3:21:0d:51:ce:36:48:26:d2:b5:8a:7b:ba:d7:
ff:7f:13:ff:86:c8:68:ee:2e:b3:f9:db:94:f9:72:
5d:74:a2:6b:6e:af:4e:4f:71:ee:f8:59:15:6b:a4:
c1:b4:11:d6:ab:c1:96:85:a8:01:d2:94:a1:03:34:
9b:b7:ae:dd:f9:be:6f:5b:a8:3a:45:af:67:cc:7a:
e4:20:de:4b:8c:b8:55:78:94:07:7e:cd:46:8d:7d:
6e:b4:34:e8:da:35:31:ff:5c:4c:db:64:ce:67:eb:
eb:b3:35:3e:ce:27:48:3a:2a:6b:60:65:62:98:90:
c8:28:3f:95:7a:30:35:bc:a6:6b:85:b0:fc:ff:ed:
11:55:3f:91:c3:0d:a6:19:a0:36:39:df:d9:e0:6c:
e1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:37:90:F9:2C:0E:2D:10:95:8D:CD:20:8F:47:00:85:D7:0F:32:9E
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
8c:f7:67:a5:23:c0:24:cb:01:41:99:f2:c1:a3:3c:3c:8d:6f:
ea:e1:6b:2e:90:72:18:db:cb:c8:55:96:c4:fa:4a:46:6d:e9:
3f:dd:37:0a:aa:1b:fe:06:f1:c0:4f:fb:88:f3:db:21:26:22:
08:46:18:62:ef:63:b4:56:39:1c:43:c4:47:4e:64:74:20:2f:
bf:6d:b6:d1:6c:0b:bf:05:0e:45:da:2a:7f:21:ac:5a:73:bc:
39:e3:7f:2c:e5:6e:95:bc:c1:ba:44:59:3e:f1:51:62:ee:54:
47:ca:d6:c1:83:34:a6:c1:38:91:ec:e3:e9:51:e5:77:51:2f:
d8:19:4b:8e:48:1a:52:a3:55:b0:8e:00:46:23:6a:77:46:94:
6b:87:c8:04:a6:60:0a:9a:d7:ce:c8:3a:43:18:9d:f2:5c:8b:
4d:bd:94:32:94:36:41:d9:a4:b5:f3:19:3f:1a:58:67:94:cc:
74:64:2c:f6:8d:13:ac:86:bb:95:a7:ff:7e:d8:0e:b4:99:20:
ac:33:58:36:b9:6b:ee:93:c8:51:2a:dc:96:1a:69:cb:3b:dc:
f2:00:5b:c4:ff:02:e1:81:5b:03:f7:a2:8e:83:b7:a5:96:5a:
bc:54:ce:2f:df:cc:55:e7:33:17:2a:44:95:85:5a:ea:26:c1:
b0:a2:c6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 7 02:25:01 2026 by rpki-client