Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: UtMNiKN1yQ6nNmtfPKPMlxdQUDBqGfYNzGgE2P7SGQ0=
Subject key identifier: 0C:64:D1:78:D0:9F:AF:86:DE:15:FC:E4:5E:F6:8B:F4:CB:A4:29:A7
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0415
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0205
Signing time: Thu 19 Feb 2026 22:34:00 +0000
Manifest this update: Thu 19 Feb 2026 22:33:59 +0000
Manifest next update: Thu 26 Mar 2026 22:33:59 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: X14ifbQbO2omsz+XHuw4fqay1oivvWFBPZA981dTaOM=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: Fd2yXvcOGhywUgOtBsL6iEgDpyBn8SwQZVJsPPG58mA=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: u/+qEy9DMB0v2bEzkV3hONbRtJzxsZrJz+Rii9Pk6LQ=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: NNRmCkUau9X02u79Px3QwcTodHbkWW+WmHkQngETnp4=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: ow2l9bWqPtSC5Rb9AR7DsmtJHC5rtoKqnMRdFSq5TPc=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: aAtoNujzcetvuEaJqfcZE+B/tuWJcm29UgkfUeRqe9s=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Mar 2026 23:25:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1045 (0x415)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Feb 19 22:33:59 2026 GMT
Not After : Mar 26 22:33:59 2026 GMT
Subject: CN=69978fd7-ff8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:ee:28:fa:f8:e8:b6:3d:8f:65:a7:63:1d:
ca:5a:49:20:0d:48:28:ae:f9:cc:c2:e7:d5:8c:3f:
35:00:0d:bb:68:fc:af:35:be:b1:38:be:5a:87:0a:
75:f7:22:83:8c:a7:d4:ef:e6:d5:30:d0:71:49:70:
d7:7d:39:58:ba:40:b8:3c:6f:b1:fb:a0:aa:48:50:
8b:4d:85:39:3a:21:73:85:e8:3a:3c:82:da:9c:a7:
bc:b5:bf:26:82:09:f4:98:2a:0f:91:f8:c5:c7:06:
55:85:9d:a1:54:42:02:e4:dc:e0:fb:5a:87:a2:a5:
49:8f:b2:e1:50:23:80:fc:44:e6:af:db:63:84:8a:
70:90:98:8e:a9:6e:0d:0b:91:d5:3c:f6:29:dc:0a:
c9:45:b6:a0:4d:f2:99:fc:d7:5b:bb:26:f9:0f:0b:
cb:38:4b:b3:3f:af:69:7b:c9:1f:62:2d:a8:6f:a7:
fa:89:e5:63:cf:e5:0f:9f:01:3d:3c:5c:41:f8:48:
94:f9:0d:d5:fe:1d:7a:4b:21:27:32:22:d5:c1:99:
ff:0b:69:62:ef:74:57:20:82:a1:e3:8a:76:74:3d:
8c:7b:ba:3e:81:a0:15:76:fe:83:d9:0a:15:3a:08:
f6:00:bc:dc:9d:bd:9c:59:a0:f4:f7:75:0c:46:6a:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:64:D1:78:D0:9F:AF:86:DE:15:FC:E4:5E:F6:8B:F4:CB:A4:29:A7
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
da:3c:2e:b6:e4:50:93:1e:53:01:5e:2d:2e:06:0b:7c:ac:46:
b6:d2:7f:ba:ac:0d:29:e3:fe:e4:4e:ee:79:22:5a:5e:15:bb:
1d:af:b0:2f:bf:2a:d4:66:a8:b4:cf:be:08:11:49:65:23:1f:
ca:2e:c1:bc:66:85:25:13:87:73:10:4b:62:aa:6e:39:4e:0a:
1e:99:f9:6d:b1:41:9b:7a:37:31:72:b2:24:26:ea:7d:7c:2e:
47:7c:32:a1:59:59:5a:d7:9e:14:18:5e:e9:b6:de:48:87:8c:
a5:d1:34:99:52:01:4d:56:e4:19:f5:54:1b:fc:e8:c0:c5:a9:
33:e6:5d:39:41:f8:15:a3:8e:9a:55:48:3d:c6:97:d9:eb:ad:
d1:c0:2e:a8:f0:33:f1:94:fa:07:a8:6e:db:7d:c3:68:c1:ae:
bb:82:11:86:4c:32:53:ea:6b:8d:c8:79:22:d6:2c:72:c1:0d:
4d:c9:ee:cb:88:59:ce:d9:b6:a7:59:e0:45:4e:68:0c:03:6b:
12:53:7b:91:9a:bb:83:7c:fe:c2:dd:6f:55:82:f8:8f:bd:09:
14:90:f0:ca:31:44:fc:54:4c:25:a9:88:0f:84:41:c4:8e:13:
8f:31:eb:dc:3f:fc:33:f6:b6:da:74:fd:17:d5:70:1b:ca:e2:
c2:22:c0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 24 01:47:19 2026 by rpki-client