$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: iwETZZbBtWMC9AcvmLdNweYcOBDkxzam9pMffA5nj94= Subject key identifier: CD:C3:DD:D5:32:69:74:69:BF:28:23:51:84:DF:8D:48:C1:23:AC:0B Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 012E Signing time: Mon 01 Jun 2026 06:22:47 +0000 Manifest this update: Mon 01 Jun 2026 06:22:47 +0000 Manifest next update: Mon 08 Jun 2026 06:22:47 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: BZCVJbkN5sU2Uh8Bfb6cVY9fLNe0FFuZvux4KeZF3kw=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Z+DrfE+gqHihIiYtOwJ20Al7Qo+Lrwz4FvqdoOjvXzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Jun 1 06:22:47 2026 GMT Not After : Jun 8 06:22:47 2026 GMT Subject: CN=6a1d2537-e988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0f:51:5f:48:68:a6:91:41:73:ef:66:34:bc: ce:da:09:44:a3:2d:fc:59:fc:fd:96:8d:c8:a5:aa: a1:4f:46:23:72:c7:b3:5e:8b:2f:db:4a:e6:2d:db: 23:8c:8d:38:c2:7c:95:dd:8f:ed:ef:1a:aa:f4:3a: 2f:09:2f:ae:a6:c4:3d:6f:49:9f:d4:b6:39:46:84: 5f:f2:ef:9d:01:08:c0:e8:be:ab:2e:c2:e9:23:f3: 7b:44:8d:79:e8:73:0f:2b:54:c0:cc:bc:01:83:02: ba:80:8a:52:f4:44:35:3e:ff:8d:f0:c4:c4:43:a2: bc:d3:dd:3f:7f:61:1c:fb:f7:02:e4:35:e6:92:6f: e0:14:72:84:ba:60:fb:52:5a:bc:1c:89:91:26:fb: 9d:a0:06:89:4a:73:6d:a6:27:7b:0d:2b:bd:7b:db: f6:df:27:78:15:5c:e8:d0:8f:0c:f7:fc:de:f8:64: ce:f3:a6:56:5b:fa:8b:27:e1:b9:f4:d4:11:f6:02: 01:b6:63:89:c1:31:2c:94:3c:7f:62:a2:fb:dd:2c: 26:8c:68:5f:d6:f9:eb:5a:ad:f4:5c:28:e2:55:60: c4:cb:fe:8f:8a:ae:32:29:5c:53:ad:d4:a1:85:13: 2b:90:ed:d0:39:bb:3d:b9:99:ae:95:32:38:7c:5a: 1f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C3:DD:D5:32:69:74:69:BF:28:23:51:84:DF:8D:48:C1:23:AC:0B X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:2e:e4:bd:de:05:46:1e:79:49:87:44:6a:f9:5b:76:f5:08: 49:e1:c7:e1:46:ad:f9:8a:09:8f:1a:08:fc:c4:b1:08:69:c2: ae:df:63:d5:f7:81:27:32:09:69:87:9e:1b:37:d7:71:72:fc: 78:20:03:2a:78:97:c1:22:0f:ee:de:3b:a3:66:98:cc:cf:e4: dc:37:a0:ec:5a:12:21:aa:74:ba:ad:e2:7f:25:3c:5b:99:3e: fa:bb:af:81:b2:ce:c2:c2:ae:e4:45:59:a5:df:58:14:84:38: 30:f9:ad:13:5a:32:db:56:15:94:7b:42:84:d9:a9:a1:4a:66: 8a:e2:e4:b7:ea:ac:a9:a7:d3:cf:91:30:59:9a:b0:5f:0a:53: 6e:6a:d2:e8:24:42:f7:60:80:73:33:b1:88:df:ca:85:93:fd: bf:f3:79:6f:d8:4e:9a:7c:e1:0d:28:16:83:bf:8b:04:0d:81: 20:d0:8f:ca:fb:70:05:2f:63:4f:2b:a6:26:bc:50:45:7f:77: 2d:f5:5b:a4:23:0b:b3:c9:56:3a:54:cd:73:77:40:00:fe:3a: bc:30:f7:18:42:9e:d6:c3:b1:0d:c6:28:39:66:22:38:77:bf: 8a:12:5a:47:aa:f1:81:c2:da:98:ac:e0:f9:c9:27:97:a8:92: 63:65:5d:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwNjAxMDYyMjQ3WhcNMjYwNjA4MDYyMjQ3WjAYMRYwFAYD VQQDEw02YTFkMjUzNy1lOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w9RX0hoppFBc+9mNLzO2glEoy38Wfz9lo3IpaqhT0YjcsezXosv20rmLdsj jI04wnyV3Y/t7xqq9DovCS+upsQ9b0mf1LY5RoRf8u+dAQjA6L6rLsLpI/N7RI15 6HMPK1TAzLwBgwK6gIpS9EQ1Pv+N8MTEQ6K8090/f2Ec+/cC5DXmkm/gFHKEumD7 Ulq8HImRJvudoAaJSnNtpid7DSu9e9v23yd4FVzo0I8M9/ze+GTO86ZWW/qLJ+G5 9NQR9gIBtmOJwTEslDx/YqL73SwmjGhf1vnrWq30XCjiVWDEy/6Piq4yKVxTrdSh hRMrkO3QObs9uZmulTI4fFofPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3D3dUy aXRpvygjUYTfjUjBI6wLMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHy7kvd4FRh55SYdEavlbdvUISeHH4Uat+YoJjxoI/MSxCGnCrt9j1feBJzIJ aYeeGzfXcXL8eCADKniXwSIP7t47o2aYzM/k3Deg7FoSIap0uq3ifyU8W5k++ruv gbLOwsKu5EVZpd9YFIQ4MPmtE1oy21YVlHtChNmpoUpmiuLkt+qsqafTz5EwWZqw XwpTbmrS6CRC92CAczOxiN/KhZP9v/N5b9hOmnzhDSgWg7+LBA2BINCPyvtwBS9j TyumJrxQRX93LfVbpCMLs8lWOlTNc3dAAP46vDD3GEKe1sOxDcYoOWYiOHe/ihJa R6rxgcLamKzg+cknl6iSY2VduA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:40:40 2026 by rpki-client