$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: 48BV7EXPp2MT0eXInUMBJe4y3epasjPPyjOa3BJq0Lk= Subject key identifier: 94:18:6C:C4:01:EC:25:AF:A3:BA:C1:4F:E2:DB:0E:21:94:9B:B8:EA Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 0111 Signing time: Sun 05 Apr 2026 05:22:14 +0000 Manifest this update: Sun 05 Apr 2026 05:22:13 +0000 Manifest next update: Sun 12 Apr 2026 05:22:13 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: 5N1Srv5pO3GFSeqGEx0XTaC+quBYcOpN44k5dUJWdQs=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Z+DrfE+gqHihIiYtOwJ20Al7Qo+Lrwz4FvqdoOjvXzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Apr 5 05:22:13 2026 GMT Not After : Apr 12 05:22:13 2026 GMT Subject: CN=69d1f186-8263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:ab:4d:35:e0:57:1b:a0:e8:b4:e5:99:c7:1a: 47:56:f8:12:99:97:96:25:a1:32:48:67:a5:fa:7b: 3e:69:2c:57:35:f6:9e:d0:1f:7c:8b:dc:a5:a4:e1: fb:12:bf:c5:3d:2f:a0:3d:ce:63:9c:5e:b6:46:09: 39:20:94:fd:b4:14:0d:e2:d9:a3:75:ab:f4:95:0e: a2:df:d8:33:6a:2f:5b:fb:6b:be:44:66:7b:5c:36: 56:f0:bd:75:7b:d7:a0:cb:a8:21:c7:f5:0b:9b:60: d2:47:76:0c:da:85:6a:1c:9e:9e:70:e4:e4:d2:94: dd:07:ea:7e:46:22:c6:c4:df:29:cb:59:26:ef:1b: e3:99:0f:93:ef:e2:53:a3:2e:fb:71:85:69:d2:68: 9f:dd:01:ce:ab:46:e7:1d:a7:f8:cf:33:d9:ca:3b: 8f:96:7d:69:12:47:3a:93:f4:6b:9e:e8:a6:1f:06: 49:ff:ca:a6:17:34:bc:02:79:90:f1:d9:d2:a1:1f: 64:a9:b2:ed:f5:11:09:dd:21:61:13:42:73:30:0a: c1:0e:1d:47:61:eb:36:e5:fe:74:42:f9:85:a2:e5: 88:af:2b:b9:6e:89:9e:fb:5e:75:6c:64:d4:4c:67: e5:a6:74:c6:3c:35:ec:66:c9:73:31:9f:71:fc:10: 65:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:18:6C:C4:01:EC:25:AF:A3:BA:C1:4F:E2:DB:0E:21:94:9B:B8:EA X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:cc:9c:ea:42:0c:c6:46:5e:8e:67:ae:2c:55:66:e2:d5:bb: 41:39:61:50:32:eb:8d:e2:1e:78:10:db:33:84:66:c8:56:ab: ba:dc:91:c6:81:29:00:38:79:0d:6e:c0:18:15:55:8c:31:86: 6e:43:34:7e:4c:21:49:0f:3c:74:86:0f:55:5d:af:36:77:d2: 58:ee:84:56:57:3b:46:2b:bd:fa:cd:e4:2e:3c:fd:db:40:d5: 88:c2:31:4a:05:e8:5f:69:f4:25:c1:7a:f6:d7:51:4e:48:c6: db:bc:c1:02:ab:fa:15:c6:6a:19:f4:0f:cd:12:b2:ea:02:ac: 92:45:a1:2c:2b:da:27:5d:ef:da:08:b2:a3:f6:f0:c3:69:45: c6:d2:77:09:1b:f0:cb:1b:10:5a:77:fc:3b:d7:25:da:18:b1: 58:6f:46:e5:d7:c9:b9:69:08:f8:76:3b:b8:7b:80:5e:f6:9b: f5:0a:c2:fa:f5:8d:3e:dd:d3:ef:a3:4a:fd:2c:c8:40:a9:12: bd:f3:2d:db:34:7b:49:a1:2b:35:09:03:83:28:48:6c:ba:29: 3a:de:6d:1a:d7:38:a9:6a:46:46:13:cf:b6:38:d2:e3:25:c9: 20:d2:2b:00:41:fb:de:6a:e6:c5:4e:39:b4:e2:16:f1:3b:f2: f6:2a:73:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwNDA1MDUyMjEzWhcNMjYwNDEyMDUyMjEzWjAYMRYwFAYD VQQDEw02OWQxZjE4Ni04MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiatNNeBXG6DotOWZxxpHVvgSmZeWJaEySGel+ns+aSxXNfae0B98i9ylpOH7 Er/FPS+gPc5jnF62Rgk5IJT9tBQN4tmjdav0lQ6i39gzai9b+2u+RGZ7XDZW8L11 e9egy6ghx/ULm2DSR3YM2oVqHJ6ecOTk0pTdB+p+RiLGxN8py1km7xvjmQ+T7+JT oy77cYVp0mif3QHOq0bnHaf4zzPZyjuPln1pEkc6k/RrnuimHwZJ/8qmFzS8AnmQ 8dnSoR9kqbLt9REJ3SFhE0JzMArBDh1HYes25f50QvmFouWIryu5bome+151bGTU TGflpnTGPDXsZslzMZ9x/BBlmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJQYbMQB 7CWvo7rBT+LbDiGUm7jqMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArsyc6kIMxkZejmeuLFVm4tW7QTlhUDLrjeIeeBDbM4RmyFarutyRxoEpADh5 DW7AGBVVjDGGbkM0fkwhSQ88dIYPVV2vNnfSWO6EVlc7Riu9+s3kLjz920DViMIx SgXoX2n0JcF69tdRTkjG27zBAqv6FcZqGfQPzRKy6gKskkWhLCvaJ13v2giyo/bw w2lFxtJ3CRvwyxsQWnf8O9cl2hixWG9G5dfJuWkI+HY7uHuAXvab9QrC+vWNPt3T 76NK/SzIQKkSvfMt2zR7SaErNQkDgyhIbLopOt5tGtc4qWpGRhPPtjjS4yXJINIr AEH73mrmxU45tOIW8Tvy9ipzNw== -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:48 2026 by rpki-client