Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: iG1d0HN/lt6RSlc3wArWmEqTzKlIxlKmnqzx2Yat9NQ=
Subject key identifier: 78:40:07:26:3C:09:AE:10:7A:64:66:7F:D4:5D:85:F0:C2:9C:D0:94
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0451
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0223
Signing time: Thu 16 Apr 2026 22:50:58 +0000
Manifest this update: Thu 16 Apr 2026 22:50:58 +0000
Manifest next update: Sat 23 May 2026 22:50:58 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: ljfBTEszPXcBpod4LkBbQIuYC+ZhcoLVCFwzQ/MlO2E=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: jvxsUpwLtuZT3kJEdj5zFe6Srkpag71M/guGhxsWtGI=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: BzqDsBOKPugoF2AvRUh5mO7xzEDCNjEDNvo4mMZe9Mw=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: smAWZS9K8MP9hAYwZBrtiFmM1mhy7IDnVmOxvMZLNLs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 09 May 2026 22:28:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1105 (0x451)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Apr 16 22:50:58 2026 GMT
Not After : May 23 22:50:58 2026 GMT
Subject: CN=69e167d2-5af9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:7e:d6:10:e5:6a:67:31:07:5c:bc:7a:94:
d0:88:d5:ee:48:df:94:92:b1:13:c2:51:e6:72:1b:
a6:64:6f:b9:ec:d9:51:13:6a:75:67:8b:6e:9a:2a:
2d:f3:75:39:21:a3:86:c7:1e:8d:b2:86:e1:68:bb:
95:3e:c9:7e:a7:3b:6a:aa:bb:6e:c8:55:d9:2e:f5:
c7:f0:b4:99:47:ba:4d:92:42:e9:4f:f7:0f:dd:ff:
32:eb:29:8e:18:68:e2:99:2a:5f:a5:9f:60:55:58:
e0:28:1b:18:db:37:51:4b:a1:46:45:45:55:4c:cf:
94:1b:34:0e:44:18:e0:53:da:2c:9c:3b:30:63:3d:
42:8a:37:61:87:1b:3a:b3:11:7f:85:76:ed:b5:99:
57:fb:59:6f:ba:68:16:3d:be:1a:52:20:c1:2d:9d:
80:df:70:46:8b:34:d0:5d:f1:cc:7c:de:48:c8:c0:
fd:15:dd:50:35:d1:49:a8:8f:66:7d:3d:bc:cc:e3:
e2:3b:15:08:11:ec:55:49:c5:13:4b:a5:16:02:2a:
7b:26:5d:78:d0:41:cd:bc:a2:8e:a7:6b:fb:ac:1e:
93:36:08:fd:ee:57:b0:4d:12:b9:76:0f:b8:f7:1c:
22:42:68:a9:28:e7:5e:0e:7f:56:92:90:b0:28:ba:
81:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:40:07:26:3C:09:AE:10:7A:64:66:7F:D4:5D:85:F0:C2:9C:D0:94
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
01:30:8a:9c:bc:0d:32:81:e7:13:72:f2:0f:28:ca:3c:f2:ec:
88:ac:c5:5e:ca:a7:ce:ff:3f:d6:e8:cc:18:75:c1:91:38:12:
26:77:74:e0:b3:2b:09:01:9f:f0:6f:53:37:3d:28:c1:e3:e8:
ca:47:ef:4e:f7:4c:c1:7c:b1:59:45:ba:4b:6a:ac:92:f9:c7:
33:04:36:ee:e8:51:4c:a1:7a:fe:29:88:a3:ac:72:1e:77:64:
b4:97:68:18:38:52:8b:ca:27:30:56:ee:b4:90:a1:d4:72:c3:
c9:ca:6f:8e:3d:6b:c0:f9:52:e1:0f:04:68:ce:be:36:1d:4e:
82:0f:51:13:81:10:fc:4a:e3:d6:9c:b8:f0:d3:c9:11:ef:2b:
c4:ad:88:df:4d:30:36:c1:e6:1a:40:27:ba:be:1f:60:aa:07:
1d:7e:48:98:13:2c:14:de:d7:e8:c9:2f:f3:9f:30:23:88:90:
57:43:87:5e:f7:00:69:89:db:6e:22:05:97:1e:88:83:2e:89:
00:54:4a:e9:c6:89:8b:5e:f0:2a:0f:6b:5c:15:21:63:59:c0:
30:bf:84:8a:52:99:04:7c:de:0f:53:b2:9d:9b:1c:ff:bf:b3:
41:4b:3d:f2:ef:fe:38:a0:d6:bd:ef:cf:5f:f5:0f:8a:cd:3b:
0f:29:a3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:29:01 2026 by rpki-client