$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: iJAQVsO9e4/Gd9AbaeL8L88rHKDknzpIyCCX0RgffHI= Subject key identifier: A8:90:FF:6A:D9:04:1C:6A:0F:7B:6D:3A:DE:D5:FE:1A:D6:23:5A:6A Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 140A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13FB Signing time: Mon 30 Mar 2026 16:55:11 +0000 Manifest this update: Mon 30 Mar 2026 16:55:11 +0000 Manifest next update: Mon 06 Apr 2026 16:55:11 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: HAEOuYItzfQ1EtEXxX8Z/s1Id3SQ4MXJ1UXv9jjwHRQ=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: 2PmqHELB1hwleGl17N3DUTadd9q9hQXwA/8mpl3xfuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5130 (0x140a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Mar 30 16:55:11 2026 GMT Not After : Apr 6 16:55:11 2026 GMT Subject: CN=69caaaef-da6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b1:19:a1:9b:d1:a9:49:5f:28:f1:ed:ef:88: c9:d2:c9:25:75:ad:10:68:bc:fe:2d:aa:0f:22:df: b8:7a:b4:f9:06:2d:3b:2e:70:fc:67:83:cc:30:8f: c1:ec:38:60:b5:c3:b8:ff:53:f1:d7:c1:0e:0a:5c: 10:26:7b:32:9e:b4:7d:9e:16:ca:46:4e:63:f9:b8: 27:81:7e:1b:03:d8:aa:49:f0:9b:40:f6:0a:ab:75: 2b:b9:12:5f:6d:45:b4:94:8b:44:7a:af:f7:9b:3f: e2:c5:32:15:30:3d:af:ba:98:0e:10:d9:4a:82:5b: e2:70:75:71:e4:1f:d5:6d:5e:5a:48:91:c6:49:85: f1:94:3d:d9:37:a4:b8:dd:bd:91:84:05:69:68:fa: 0f:b3:38:f5:3e:40:df:fa:52:b3:4d:f8:4b:cd:61: 05:35:c9:b1:77:3a:e4:44:78:9f:58:76:75:e6:84: 68:dc:6a:17:5b:85:13:4a:4a:8a:92:0c:68:b5:6b: 81:70:40:ee:02:f0:9b:25:8f:48:13:69:20:ab:e4: 97:51:f1:4e:d1:38:e8:4a:74:ab:ed:af:ad:9f:f8: 0c:e2:69:4a:a3:f4:94:5d:1b:c5:85:95:25:9f:5a: c3:b0:da:9d:88:f6:10:55:96:7f:c1:ed:15:a0:90: 48:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:90:FF:6A:D9:04:1C:6A:0F:7B:6D:3A:DE:D5:FE:1A:D6:23:5A:6A X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:87:41:9f:9d:d3:0e:ca:85:a5:fe:ce:09:1c:7f:08:e7:a3: fa:65:83:d8:61:6f:24:c5:01:bb:a5:41:90:ef:46:f5:fe:0a: 77:4a:a8:e4:af:e0:46:21:da:b4:65:47:ea:5e:f0:00:b3:7a: 0a:2a:88:71:9f:bb:da:c8:c3:38:43:98:57:f8:d6:5d:1a:29: 88:5b:db:e7:0f:f5:b7:05:2d:85:a9:a5:dd:3d:e1:70:b4:13: 39:71:7a:40:c5:eb:ef:67:03:a3:7c:66:cf:48:99:d5:92:03: ad:58:ca:2a:62:70:67:02:3f:43:e5:10:89:0f:53:62:c0:70: f3:d2:1d:58:02:85:92:29:0a:2c:40:9f:af:9e:52:04:63:8c: 8b:b3:2d:11:6a:56:d9:94:a8:ea:e6:3a:34:cd:d1:c5:8a:dc: 4d:3a:e1:02:f8:2b:56:74:3e:a1:a9:61:68:7f:33:25:92:61: 33:3b:e7:d1:d8:06:bd:a4:7f:14:de:fa:ea:a6:06:92:a2:96: 5c:64:40:e7:4a:c2:14:55:02:70:9f:7e:e4:0e:89:ff:19:db: 83:77:c2:29:01:30:ae:f3:e6:23:89:11:ec:9e:3d:ba:e0:e9: 0f:d9:af:b1:27:9b:5d:1e:86:34:ca:a3:04:9e:0b:cc:a4:82: 1f:b9:c1:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwMzMwMTY1NTExWhcNMjYwNDA2MTY1NTExWjAYMRYwFAYD VQQDEw02OWNhYWFlZi1kYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7EZoZvRqUlfKPHt74jJ0sklda0QaLz+LaoPIt+4erT5Bi07LnD8Z4PMMI/B 7DhgtcO4/1Px18EOClwQJnsynrR9nhbKRk5j+bgngX4bA9iqSfCbQPYKq3UruRJf bUW0lItEeq/3mz/ixTIVMD2vupgOENlKglvicHVx5B/VbV5aSJHGSYXxlD3ZN6S4 3b2RhAVpaPoPszj1PkDf+lKzTfhLzWEFNcmxdzrkRHifWHZ15oRo3GoXW4UTSkqK kgxotWuBcEDuAvCbJY9IE2kgq+SXUfFO0TjoSnSr7a+tn/gM4mlKo/SUXRvFhZUl n1rDsNqdiPYQVZZ/we0VoJBIWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKiQ/2rZ BBxqD3ttOt7V/hrWI1pqMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdodBn53TDsqFpf7OCRx/COej+mWD2GFvJMUBu6VBkO9G9f4Kd0qo5K/gRiHa tGVH6l7wALN6CiqIcZ+72sjDOEOYV/jWXRopiFvb5w/1twUthaml3T3hcLQTOXF6 QMXr72cDo3xmz0iZ1ZIDrVjKKmJwZwI/Q+UQiQ9TYsBw89IdWAKFkikKLECfr55S BGOMi7MtEWpW2ZSo6uY6NM3RxYrcTTrhAvgrVnQ+oalhaH8zJZJhMzvn0dgGvaR/ FN766qYGkqKWXGRA50rCFFUCcJ9+5A6J/xnbg3fCKQEwrvPmI4kR7J49uuDpD9mv sSebXR6GNMqjBJ4LzKSCH7nBlA== -----END CERTIFICATE-----Generated at Tue Mar 31 04:21:59 2026 by rpki-client