$ rpki-client -vvf rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft File: orn_7UcMW3HFLztks7btpBm-E7M.mft (raw, json) Hash identifier: dUXmF51cAXb4DTeQ2DzxtFdOASf4A0kMHjoN/HJMhhk= Subject key identifier: 29:14:32:55:E3:80:35:24:49:CA:76:2A:EA:6E:B9:67:42:90:BF:A8 Authority key identifier: A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 Certificate issuer: /CN=A91187C1/serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft Manifest number: 8C Signing time: Wed 25 Mar 2026 06:46:15 +0000 Manifest this update: Wed 25 Mar 2026 06:46:14 +0000 Manifest next update: Wed 01 Apr 2026 06:46:14 +0000 Files and hashes: 1: orn_7UcMW3HFLztks7btpBm-E7M.crl (hash: SWMmOUosG07W9cjfB2lrN5mD/rlgPWTHabSESJhtNDc=) 2: C265A63A571211F092B99F2AC4F9AE02.roa (hash: vaeeD9A4QxOANnmAmiWS0iabhsevE39S0swYTABF/54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187C1, serialNumber=A2B9FFED470C5B71C52F3B64B3B6EDA419BE13B3 Validity Not Before: Mar 25 06:46:14 2026 GMT Not After : Apr 1 06:46:14 2026 GMT Subject: CN=69c384b7-27d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6c:90:e5:b3:c4:64:0a:c1:07:13:2d:e3:78: a9:ff:31:74:a6:d9:1d:d0:8e:a1:7c:c7:91:65:dd: 4b:fe:19:d1:35:2c:8c:8b:ac:ab:41:c7:27:25:ae: c2:a0:26:ca:b6:b8:1b:bc:7b:c4:7d:41:12:ef:c2: 20:e7:ea:ac:69:14:e5:68:72:dd:73:12:ab:57:a8: 52:fa:6c:49:7e:59:1c:e7:34:5b:a6:37:d8:3e:63: 5d:af:8c:8a:a3:ce:f2:17:54:4f:37:ed:cb:85:ac: 87:9e:f8:cf:3d:92:92:95:a2:35:2b:29:28:a9:27: e6:61:80:54:57:ab:78:0c:11:da:c6:e9:85:fb:91: 30:1a:d7:28:f7:4f:db:ec:9c:a9:0a:30:13:a9:89: aa:44:34:d2:14:7b:cc:5b:9e:de:21:05:6c:6d:17: 06:8c:f1:d3:73:3f:6b:d2:c3:37:eb:52:c8:95:e1: c5:21:5c:be:3a:df:e1:47:dc:1c:90:23:db:0f:cf: 8d:9a:72:7d:f4:5c:b4:5d:93:ae:6b:cb:28:b6:35: 8b:4d:04:6f:75:07:af:f7:4e:0f:53:e2:c6:ad:c6: 3e:48:77:16:8a:ac:22:78:30:ac:a6:ba:0d:f2:40: d4:00:23:81:d4:e9:2a:b3:98:d4:1e:74:df:d9:7a: d6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:14:32:55:E3:80:35:24:49:CA:76:2A:EA:6E:B9:67:42:90:BF:A8 X509v3 Authority Key Identifier: keyid:A2:B9:FF:ED:47:0C:5B:71:C5:2F:3B:64:B3:B6:ED:A4:19:BE:13:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/orn_7UcMW3HFLztks7btpBm-E7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187C1/2631C8B4570A11F0B538CF65C4F9AE02/orn_7UcMW3HFLztks7btpBm-E7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:00:da:c1:9a:63:ae:a9:bc:c4:77:ca:8d:57:f0:5b:06:de: b0:17:3b:79:dd:24:47:3c:f2:cc:34:ff:d8:b9:63:08:ce:15: 25:23:2d:58:6f:80:67:83:b2:53:6b:38:71:e5:0b:59:0c:0b: 3f:e7:b1:a2:cb:c3:e7:b8:69:15:4a:6c:47:9c:26:e6:7a:96: f3:e3:1f:3d:f1:c1:dc:30:e0:02:6b:fb:b7:47:1c:31:ce:13: ff:08:22:d9:88:f5:45:47:9b:37:b3:4f:15:90:85:f1:de:22: 50:3c:17:a5:f0:3c:db:99:7a:e7:57:c7:a7:5f:ce:24:c1:f8: 5e:b6:e7:e8:c1:5d:68:14:3b:6b:b4:ea:56:cd:2d:89:0c:c7: a7:3f:c1:cb:4c:92:15:bf:70:91:f9:26:1e:87:c1:2a:4f:8e: 00:d6:9a:e3:e4:c0:03:ce:15:9c:4e:7f:78:b0:1a:03:ea:aa: 55:a2:a3:49:c9:2f:71:73:d1:97:0d:a7:08:75:d9:36:24:ed: 60:66:5e:8e:1a:5e:66:61:1d:08:f1:81:c0:5f:a4:33:a8:c4: 64:0f:62:56:4d:1d:0d:e6:28:41:0b:49:d1:7b:ec:c2:9f:24: 02:1e:a8:3c:55:a3:dc:ac:39:72:b2:b2:97:ee:3d:87:62:6c: 97:bc:b5:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3QzExMTAvBgNVBAUTKEEyQjlGRkVENDcwQzVCNzFDNTJGM0I2NEIzQjZFREE0 MTlCRTEzQjMwHhcNMjYwMzI1MDY0NjE0WhcNMjYwNDAxMDY0NjE0WjAYMRYwFAYD VQQDEw02OWMzODRiNy0yN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WyQ5bPEZArBBxMt43ip/zF0ptkd0I6hfMeRZd1L/hnRNSyMi6yrQccnJa7C oCbKtrgbvHvEfUES78Ig5+qsaRTlaHLdcxKrV6hS+mxJflkc5zRbpjfYPmNdr4yK o87yF1RPN+3LhayHnvjPPZKSlaI1KykoqSfmYYBUV6t4DBHaxumF+5EwGtco90/b 7JypCjATqYmqRDTSFHvMW57eIQVsbRcGjPHTcz9r0sM361LIleHFIVy+Ot/hR9wc kCPbD8+NmnJ99Fy0XZOua8sotjWLTQRvdQev904PU+LGrcY+SHcWiqwieDCsproN 8kDUACOB1Okqs5jUHnTf2XrWVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCkUMlXj gDUkScp2KupuuWdCkL+oMB8GA1UdIwQYMBaAFKK5/+1HDFtxxS87ZLO27aQZvhOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODdDMS8yNjMxQzhCNDU3 MEExMUYwQjUzOENGNjVDNEY5QUUwMi9vcm5fN1VjTVczSEZMenRrczdidHBCbS1F N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ybl83VWNNVzNIRkx6dGtzN2J0cEJtLUU3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODdDMS8yNjMxQzhCNDU3MEExMUYwQjUzOENGNjVDNEY5QUUwMi9vcm5fN1VjTVcz SEZMenRrczdidHBCbS1FN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApADawZpjrqm8xHfKjVfwWwbesBc7ed0kRzzyzDT/2LljCM4VJSMtWG+AZ4Oy U2s4ceULWQwLP+exosvD57hpFUpsR5wm5nqW8+MfPfHB3DDgAmv7t0ccMc4T/wgi 2Yj1RUebN7NPFZCF8d4iUDwXpfA825l651fHp1/OJMH4Xrbn6MFdaBQ7a7TqVs0t iQzHpz/By0ySFb9wkfkmHofBKk+OANaa4+TAA84VnE5/eLAaA+qqVaKjSckvcXPR lw2nCHXZNiTtYGZejhpeZmEdCPGBwF+kM6jEZA9iVk0dDeYoQQtJ0Xvswp8kAh6o PFWj3Kw5crKyl+49h2Jsl7y1xQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:00:43 2026 by rpki-client