Manifest
$ rpki-client -vvf rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
File: mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft (raw, json)
Hash identifier: zQXmrMlthN1q4t3eophAi1lkmrsq2ypkySx8mEvkTZ8=
Subject key identifier: 51:D4:22:46:8C:1C:A0:69:66:70:29:50:50:C9:2E:0C:50:03:9C:54
Authority key identifier: 98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
Certificate issuer: /CN=apnic-rpki-root-intermediate/serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Certificate serial: 03A1
Authority info access: rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
Subject info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
Manifest number: 01CB
Signing time: Tue 10 Jun 2025 04:21:09 +0000
Manifest this update: Tue 10 Jun 2025 04:21:08 +0000
Manifest next update: Thu 17 Jul 2025 04:21:08 +0000
Files and hashes: 1: mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl (hash: o1O2QVJ/23zdJjV+fRZ3YDl+PYgy6UNDNgmdageVJvY=)
2: DmWk9f02tb1o6zySNAiXjJB6p58.cer (hash: F5ea2PHEdnp8OkhTCvVxp73LXDgcVsjPpcfj7fYDYic=)
3: dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer (hash: v7X3tVs77QGJfzoMAqlDCar9rlk4VjQiIgTubhlo3go=)
4: NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer (hash: x4mFJOMmynkwTyJAqeOPLl/8JsviT9ztJe/+Vjo6VFw=)
5: DPzneFf88B852ZpitKpi5hWedvg.cer (hash: /MHS3Sit3L4L/hosPfsdjiBL9WFnsioWd9nUWmUkMwI=)
6: lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer (hash: /2yzJwAtTJqt8ivA3yv6yDv5Ialu5ubqlmHKX9paiSo=)
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Jul 2025 03:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 929 (0x3a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=apnic-rpki-root-intermediate, serialNumber=98142C9D0B41A3B9FB603D769848236FD1F31924
Validity
Not Before: Jun 10 04:21:08 2025 GMT
Not After : Jul 17 04:21:08 2025 GMT
Subject: CN=6847b2b4-1fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:59:2d:01:a9:f3:54:92:eb:4a:7d:37:af:78:
d0:0d:50:b1:41:01:89:20:84:fc:8b:09:e2:74:87:
ed:7a:b6:39:5c:d3:30:9e:6f:0d:63:49:e9:4e:36:
16:09:4f:ba:2f:a0:af:53:9f:25:6b:e5:9e:37:53:
a4:53:67:bc:c2:1a:90:ea:f2:82:aa:b9:6b:96:65:
db:10:ea:a4:7d:a1:d7:9c:8e:1a:ad:5f:17:89:04:
19:39:5c:28:a7:60:0b:2a:85:4e:dd:c2:19:ef:af:
c3:7d:b5:ce:f2:6f:12:6f:5d:09:53:c6:37:3a:ce:
46:c9:88:6f:e4:86:96:dc:73:23:62:4c:29:a4:54:
c7:57:8b:f9:4a:0b:58:9f:a4:6f:87:61:a5:d1:68:
d2:ff:90:b7:54:44:67:79:f5:b9:24:07:8b:e7:dc:
f6:c6:6d:72:4a:97:69:e6:fe:8f:7c:45:99:00:12:
3c:fb:18:6a:07:53:90:3f:a3:54:8f:b5:1a:e0:c7:
a8:d8:84:37:3d:27:9b:36:b9:c0:39:d8:99:34:52:
d1:ea:28:4a:c8:5f:03:a4:1e:ee:75:17:8d:06:40:
50:53:43:53:2d:64:4d:1d:c3:8d:dc:2e:c8:ee:6c:
8c:af:a1:e6:42:28:26:5e:2c:3a:4a:1e:96:f8:38:
e8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D4:22:46:8C:1C:A0:69:66:70:29:50:50:C9:2E:0C:50:03:9C:54
X509v3 Authority Key Identifier:
keyid:98:14:2C:9D:0B:41:A3:B9:FB:60:3D:76:98:48:23:6F:D1:F3:19:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
a5:23:5f:47:8b:26:60:90:db:df:06:d0:4a:ce:63:ad:7a:7e:
86:fc:76:60:b5:d0:97:45:f8:8a:61:ba:82:aa:e1:27:8e:7d:
b9:dc:0d:dd:30:3c:29:90:fd:91:12:fe:e9:74:37:70:d0:a5:
57:d1:50:e2:19:da:bd:cc:46:f4:c1:70:0b:8a:c6:f6:e3:00:
17:bf:d2:52:06:dc:98:50:5c:f2:61:bd:86:20:31:dd:f8:d6:
79:ee:66:f4:b6:43:b5:af:e7:46:5e:8b:f1:73:4c:65:f6:8d:
da:b1:4d:78:90:27:53:1c:ec:fb:18:cc:69:5d:aa:73:44:88:
7c:69:d8:93:b9:00:7f:d5:ce:33:cd:05:1c:94:0d:a5:f4:8c:
11:a1:8e:9c:e8:ce:cd:6b:84:d7:92:e1:c1:55:cc:4b:a6:04:
7f:36:1a:18:1e:b7:54:0d:45:8e:2d:ef:86:2f:f7:ac:b4:57:
6c:1e:36:f6:38:8e:38:10:70:ad:4e:6b:54:77:ba:47:27:9c:
be:10:36:ea:e1:3c:11:f5:34:fe:e6:05:e0:1f:f3:34:45:22:
21:5f:8f:00:44:42:c2:55:63:ed:24:5a:87:a2:d0:ac:8d:5b:
6b:fd:d0:4b:2a:64:d0:3f:1c:ac:06:33:63:ab:6c:0e:3a:a9:
18:ca:fb:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:02:11 2025 by rpki-client