$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: PhZRkb0OEh0m3y7L6HlbuYkR4S/UF+S2D+qSstmw4QQ= Subject key identifier: CE:B2:C4:20:A9:B0:19:BB:BF:44:66:39:C1:3C:D4:D7:8C:DF:94:E9 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1421 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 1412 Signing time: Thu 14 May 2026 16:54:33 +0000 Manifest this update: Thu 14 May 2026 16:54:32 +0000 Manifest next update: Thu 21 May 2026 16:54:32 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: wwl5vigHHKfGp19Hp/WQdnLbF6DT0cDhHIfn7E9coB4=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: 2PmqHELB1hwleGl17N3DUTadd9q9hQXwA/8mpl3xfuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 May 2026 16:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5153 (0x1421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: May 14 16:54:32 2026 GMT Not After : May 21 16:54:32 2026 GMT Subject: CN=6a05fe48-84ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3d:7f:1a:0b:a7:bb:c3:19:f3:a0:bd:e3:e4: f7:5c:6b:b0:36:c0:e5:3b:38:ab:a5:2d:61:36:a5: a8:20:6d:12:3e:6c:f1:09:f8:0f:aa:13:71:90:49: 6b:60:4a:8b:1b:28:1a:c8:65:65:6a:49:27:7d:a5: 50:9f:7a:14:dc:d4:b5:36:7c:5f:ee:69:ee:23:00: ea:e9:77:72:3b:4c:ce:3e:f1:bd:04:39:d1:d0:28: ca:0c:2a:d3:30:f3:a5:a4:b5:ed:4d:21:1d:e4:c2: 22:cc:5f:71:ff:e0:df:b0:f9:68:0b:84:cf:5f:d8: 35:83:36:b8:a7:41:8b:d8:f7:c3:5d:f5:c8:eb:a8: cc:53:1b:7f:d0:44:84:23:bb:3e:07:7f:b4:c3:dc: c9:71:ab:0c:d8:e2:8a:61:7a:95:1c:1c:13:9c:56: aa:65:ea:15:d0:4f:33:34:0a:ea:81:73:3a:8c:d3: 45:c2:ac:4d:61:c6:06:a0:0c:c6:3b:68:a3:b5:c0: bc:45:88:3a:f4:24:11:76:e9:03:67:3d:44:67:a3: 3e:d9:64:fe:d5:9a:49:75:ba:1e:9d:90:80:c0:53: 2c:ff:e3:b3:c6:56:a6:52:57:d1:4b:1d:8c:84:d9: bb:11:91:2c:c1:e8:7c:68:a1:87:5f:5e:9c:9a:76: 32:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B2:C4:20:A9:B0:19:BB:BF:44:66:39:C1:3C:D4:D7:8C:DF:94:E9 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:f4:80:f4:f6:d9:b6:fc:1e:7f:1f:ee:8c:d7:53:5c:d8:6f: 5e:8a:56:aa:2c:e4:64:d1:b3:ce:1f:c6:c2:d3:ac:01:16:f7: 25:e2:c7:60:63:a9:66:1b:3f:6f:82:15:eb:d5:71:80:99:d5: b4:e5:01:e0:a6:0d:77:32:73:6e:b7:29:b4:04:0f:97:f7:1b: f8:12:a0:92:63:f7:cc:0b:5e:a3:2f:b5:12:d1:e9:3a:d5:8f: 36:99:4a:48:18:6c:ec:6a:db:03:6c:f8:45:f7:74:99:57:b3: 60:00:da:ae:1c:88:2f:0c:61:24:74:9f:7a:ed:36:da:e5:95: 01:32:f1:da:d6:61:5c:43:07:19:3b:8b:81:2a:a2:f9:2d:cc: c6:8f:34:b0:de:60:ba:c1:c7:08:c3:8d:21:9a:cd:47:25:35: 45:bb:de:cb:25:9a:58:00:35:9a:35:23:8f:e0:df:f9:fc:b8: 15:f4:6a:b0:00:ba:a0:9c:99:1b:00:18:ee:4c:53:14:06:02: 89:e5:3b:0b:44:d6:9b:89:b8:68:b1:44:2c:af:63:4a:9a:93: 07:18:86:e6:63:29:2f:33:2e:e0:40:e0:56:e4:4f:3d:6a:67: bc:66:7b:69:1e:d5:8a:6b:a8:72:e0:18:ee:4f:65:65:c1:85: 96:af:8d:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwNTE0MTY1NDMyWhcNMjYwNTIxMTY1NDMyWjAYMRYwFAYD VQQDEw02YTA1ZmU0OC04NGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvT1/Ggunu8MZ86C94+T3XGuwNsDlOzirpS1hNqWoIG0SPmzxCfgPqhNxkElr YEqLGygayGVlakknfaVQn3oU3NS1Nnxf7mnuIwDq6XdyO0zOPvG9BDnR0CjKDCrT MPOlpLXtTSEd5MIizF9x/+DfsPloC4TPX9g1gza4p0GL2PfDXfXI66jMUxt/0ESE I7s+B3+0w9zJcasM2OKKYXqVHBwTnFaqZeoV0E8zNArqgXM6jNNFwqxNYcYGoAzG O2ijtcC8RYg69CQRdukDZz1EZ6M+2WT+1ZpJdboenZCAwFMs/+OzxlamUlfRSx2M hNm7EZEsweh8aKGHX16cmnYyQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM6yxCCp sBm7v0RmOcE81NeM35TpMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK/SA9PbZtvwefx/ujNdTXNhvXopWqizkZNGzzh/GwtOsARb3JeLHYGOpZhs/ b4IV69VxgJnVtOUB4KYNdzJzbrcptAQPl/cb+BKgkmP3zAteoy+1EtHpOtWPNplK SBhs7GrbA2z4Rfd0mVezYADarhyILwxhJHSfeu022uWVATLx2tZhXEMHGTuLgSqi +S3Mxo80sN5gusHHCMONIZrNRyU1RbveyyWaWAA1mjUjj+Df+fy4FfRqsAC6oJyZ GwAY7kxTFAYCieU7C0TWm4m4aLFELK9jSpqTBxiG5mMpLzMu4EDgVuRPPWpnvGZ7 aR7VimuocuAY7k9lZcGFlq+N/g== -----END CERTIFICATE-----Generated at Fri May 15 20:47:22 2026 by rpki-client