Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: 2Vp82yS8n3B1C8yrspoo4ASzwEy0pZpHdNoy6nXN8tY=
Subject key identifier: 28:81:DF:A4:4C:62:4E:8F:52:9F:A0:15:AA:B1:13:84:10:35:9B:D1
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 0449
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 021F
Signing time: Thu 09 Apr 2026 00:15:50 +0000
Manifest this update: Thu 09 Apr 2026 00:15:50 +0000
Manifest next update: Sat 16 May 2026 00:15:50 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: GeKwXCB5H0dU1ap5cpQhS6uvzqdR1shDJ0q2c7a/LU4=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: HvBVoi7peyVruKoMqA8m9fc5aNSsi6jivmqKbRjnsQc=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: FuQ0uc0Ny5MuKRgVPx1tB1pfaGgKge1pvc6MZQ7KjDk=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: WVmxsOlDF0xat6+qJEYw0FI7gJpo7ipvHNwUyCZPWe8=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: BzomQBXibu6rXFR+3NQfA7GFTe3SbjQ+CY0Z7QkyctY=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: smAWZS9K8MP9hAYwZBrtiFmM1mhy7IDnVmOxvMZLNLs=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 09 May 2026 22:28:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1097 (0x449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Apr 9 00:15:50 2026 GMT
Not After : May 16 00:15:50 2026 GMT
Subject: CN=69d6efb6-0e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:f6:6b:98:88:e3:39:78:7e:3f:52:b4:c6:
c2:2f:78:2b:37:30:53:ac:0c:7c:1c:dc:ce:6b:70:
49:9a:d0:6c:d9:91:3c:d9:66:8c:24:f4:8d:d8:d8:
05:70:13:ec:a5:a3:54:e8:ca:91:59:6b:fb:72:ad:
1f:0c:e0:ef:72:cb:d5:11:fb:79:69:9e:38:0f:b1:
b2:29:4b:6e:1a:63:38:9c:bc:66:46:3f:08:08:9b:
01:53:6f:04:07:3f:cd:d3:2b:f4:27:23:37:d4:97:
bf:f5:8a:5a:30:08:53:41:f9:e2:31:b2:3f:84:5f:
16:1d:b7:3f:4c:1a:ae:77:33:1e:0b:2e:46:1f:84:
1e:34:47:a4:54:51:9e:43:1a:b2:78:56:27:18:08:
8f:a7:73:ec:85:d5:1d:de:f9:c7:98:08:41:4d:50:
06:6a:5c:fa:27:1f:e8:cf:bd:bb:ed:3c:02:94:16:
a9:73:1c:72:58:1a:b8:ac:a2:b4:be:7c:00:30:c6:
ed:54:0e:dc:6e:cd:8c:ed:65:9b:00:dc:ac:5e:83:
ad:8e:b2:75:dd:05:6a:09:6c:6f:0f:4c:7f:f4:f0:
5c:05:ca:06:f0:af:06:81:e2:45:82:17:fb:6c:24:
3b:83:e3:ea:27:90:c5:74:c4:ce:38:06:da:f0:6c:
14:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:81:DF:A4:4C:62:4E:8F:52:9F:A0:15:AA:B1:13:84:10:35:9B:D1
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
da:3d:5c:b7:a5:ea:73:37:fc:8c:33:57:3a:e1:ac:8c:3d:38:
0b:86:60:08:39:e2:9f:d9:04:32:01:93:27:ac:ac:87:cd:33:
27:3a:d3:6c:20:08:e4:1d:a0:b7:e1:cc:d1:30:e4:3a:00:56:
8b:bb:22:65:92:b6:cc:57:03:d8:a9:bb:76:4f:3b:a1:7e:d3:
c2:0e:64:af:c3:90:17:a0:f2:ef:19:5d:db:af:67:c0:6e:d4:
ad:6a:c9:9d:2d:be:24:1b:6e:9d:7c:84:04:78:a9:3e:58:30:
63:60:6e:31:f3:47:78:e1:e6:2e:7f:33:16:cb:5a:f7:4b:93:
f1:d7:70:69:9d:bd:c5:23:60:fc:71:11:8e:a9:a5:71:28:ff:
14:3e:81:96:9d:fe:10:2c:0b:8e:d6:09:8c:9e:97:46:68:5b:
8c:7d:6d:41:b7:c8:04:be:7a:42:5f:e2:77:74:ae:a0:f7:2b:
a9:6e:c0:54:5b:d9:17:57:7e:ae:78:c0:c6:cf:53:74:03:ae:
b9:32:0e:6f:e3:06:a0:8b:2c:bd:e6:3a:8c:3b:bb:47:3e:d2:
ec:4c:b8:39:5b:13:38:01:cc:d1:ed:57:5e:6c:41:4c:4f:ff:
b5:0e:9d:a6:87:64:f1:7a:35:bf:c9:98:78:40:63:ae:cf:d5:
c4:76:be:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 9 23:25:57 2026 by rpki-client