Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: IEYOtA6Nchusw8igXBUdpX6bmQ04xKNS57tCw3ywbTM=
Subject key identifier: 98:C2:C6:8B:17:50:62:1D:F1:62:2D:16:92:31:6E:5F:F2:5A:52:33
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0479
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 0237
Signing time: Thu 11 Jun 2026 00:04:01 +0000
Manifest this update: Thu 11 Jun 2026 00:04:00 +0000
Manifest next update: Sat 18 Jul 2026 00:04:00 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: qJOwTN2GXtVMu0NUBk5MExujp+FL3G1/Cmqom9M3EKA=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: Odg7ItNz9eOgXurogWiqvKRo2EJl+lYhTmDZonsb3jw=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: 4ed+dMPXjAj/EKvd4EfqjgbhYYQtzb7YnUDEr9sIg3Q=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: PJIO4EkIbc5Wfgs3qRuAWbwtuWqVYDA0960OOy6ijN8=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 22 Jun 2026 01:32:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1145 (0x479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 11 00:04:00 2026 GMT
Not After : Jul 18 00:04:00 2026 GMT
Subject: CN=6a29fb70-83a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:01:43:69:7b:7f:f6:54:44:fd:ca:6f:01:ce:
77:6d:43:ab:bb:cc:90:59:c5:2e:9e:74:05:5b:d5:
84:c2:74:20:9c:b9:8d:ea:17:06:20:12:5b:7e:3a:
4b:2f:29:f6:f5:95:28:e6:2f:cd:03:f6:bf:3e:53:
84:24:93:3e:d9:02:76:d2:2f:56:d9:43:c4:af:3f:
05:cf:f4:80:ad:9a:bf:57:3a:94:bf:0e:44:ac:df:
20:4f:e0:da:f9:42:42:e4:68:b9:54:5e:6e:07:ca:
88:74:bb:a5:03:a7:3e:ab:72:12:5c:f0:aa:1d:a6:
c3:b2:9e:52:ef:e6:0c:d7:33:9b:f5:73:c5:9a:0f:
71:d7:f3:c9:a2:44:84:b3:e6:e8:b7:0f:1d:d6:33:
43:24:23:ef:74:bb:e2:9b:69:e7:a3:f7:58:53:1e:
c2:45:30:0d:e5:02:db:df:b3:92:66:3d:4a:8b:6a:
3e:8c:99:54:06:a6:1f:af:c1:0c:64:c9:63:2a:35:
49:93:26:78:5e:45:ee:73:40:f4:da:0b:02:f9:0e:
7b:b5:dc:c0:8f:fd:bb:17:e3:04:11:91:de:30:0d:
9d:7f:c3:5e:25:03:5f:d1:4d:18:f0:9e:d4:a4:2b:
4d:79:21:51:b8:14:35:25:37:0a:23:86:78:e1:aa:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C2:C6:8B:17:50:62:1D:F1:62:2D:16:92:31:6E:5F:F2:5A:52:33
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
69:4e:31:8d:d9:7d:33:ac:29:b1:e4:f8:22:2b:4e:cf:be:4f:
53:80:71:93:0d:0b:6b:9b:82:1a:ce:5b:42:25:f8:70:c3:9e:
a7:f4:c8:ec:e7:9f:10:07:00:81:2b:ee:df:f8:45:f8:b9:c0:
d8:25:f8:24:08:ca:2a:cc:de:89:0f:e4:97:69:7f:ce:36:f8:
24:f1:5d:3e:a1:00:69:2e:6f:94:e3:1e:5a:4f:88:e7:db:de:
2d:a5:5d:49:da:40:ac:51:30:68:5a:13:df:3d:b2:8d:d6:7e:
5a:03:b5:23:23:ac:33:d3:bf:b5:ed:e0:1e:e9:53:6e:d9:c6:
bd:e8:14:64:8b:24:48:2b:55:b3:3c:b9:db:75:15:8a:b3:4c:
8d:e7:14:a6:68:9e:7c:21:c8:e4:c8:6f:af:69:cd:13:c6:c9:
7b:f3:55:14:61:f0:2b:a2:e3:55:e1:22:13:87:08:25:11:8e:
1b:39:7b:c1:dd:2f:55:aa:f7:27:71:61:8f:f4:ac:16:f9:a0:
21:3f:6d:22:21:26:7e:4e:06:bb:84:fc:68:26:bb:90:f9:a5:
c8:e9:65:61:77:7c:d0:6e:19:ac:18:7a:d7:69:39:31:bc:cc:
47:b6:41:70:44:47:ca:93:9c:63:1e:8b:ee:a4:42:b4:dc:85:
c3:cc:15:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 04:27:32 2026 by rpki-client