$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: gNAaBukIxT9iFWsWUnYfocT73OlHerULkFMD59ULmFM= Subject key identifier: 6F:A5:0A:76:DE:54:84:4F:52:CD:77:36:C9:2D:33:46:C3:10:35:09 Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 1407 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13F8 Signing time: Tue 24 Mar 2026 16:49:33 +0000 Manifest this update: Tue 24 Mar 2026 16:49:33 +0000 Manifest next update: Tue 31 Mar 2026 16:49:33 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: fUAYmr5zIXtMFQ9llmjOv9z+BrzZqXUTH1pkP8TjDdw=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: 2PmqHELB1hwleGl17N3DUTadd9q9hQXwA/8mpl3xfuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5127 (0x1407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Mar 24 16:49:33 2026 GMT Not After : Mar 31 16:49:33 2026 GMT Subject: CN=69c2c09d-c17d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:64:d4:ea:e2:06:4e:8f:2f:74:38:d1:df: 2f:77:8e:dd:fc:6e:7c:70:fb:2e:72:64:4f:4b:66: 24:5c:d3:f9:09:5b:8d:fa:85:bf:a8:02:e8:10:85: 3c:8d:3a:7e:61:14:95:74:02:3c:9b:d5:74:77:39: 05:d4:e0:06:55:00:30:3b:02:40:29:a8:bb:56:ee: e4:2e:a2:79:9b:03:35:c2:78:b3:b2:31:a4:9d:16: 93:ce:d4:02:02:79:4f:62:f2:6e:07:0d:aa:30:7d: 51:40:e1:d2:62:e9:50:03:9a:23:ab:f2:85:b0:9e: 66:ee:e8:2b:08:f8:ea:5d:1c:d9:5f:4e:f5:97:8f: 58:56:e5:e1:46:58:44:fa:5b:a8:6b:cf:8a:af:7b: 3c:01:ac:b5:f1:d4:92:b3:51:dc:1a:58:a3:29:20: d3:c2:03:48:86:a4:2e:1b:9f:b6:ee:bb:a3:2e:81: eb:5b:fc:97:ec:15:91:f4:f7:49:89:26:09:c3:59: b6:7e:b5:20:a7:b7:cd:59:78:ec:cc:da:63:14:18: 12:8a:aa:60:12:94:e0:87:3d:96:bd:79:9d:e3:32: be:e0:3f:04:f7:b6:9c:fb:40:ba:ee:e6:9b:99:74: 21:f9:08:be:e2:7e:8a:f4:77:6f:aa:71:79:37:6e: e4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A5:0A:76:DE:54:84:4F:52:CD:77:36:C9:2D:33:46:C3:10:35:09 X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:38:97:f4:29:da:02:6f:69:cf:c1:f1:8b:58:b7:a9:d5:f4: 9c:19:fb:38:87:5e:ff:f6:84:b7:f4:86:25:09:b5:6e:1a:94: cf:f3:fb:db:f8:07:07:08:d7:55:69:ea:a6:97:c9:eb:e9:3a: 08:c2:0b:69:2b:0f:69:19:18:56:88:fe:50:af:85:72:a0:20: c7:dd:da:a1:59:81:fb:33:9c:d3:74:6c:32:84:7c:7e:a8:8d: 1c:c7:26:ac:93:35:df:59:e0:de:af:71:28:e1:9b:5e:96:6b: 10:2d:ef:73:30:f6:64:43:5a:bb:ad:a8:c1:20:51:99:fd:9e: 46:c4:72:14:ba:85:9e:14:71:9a:e4:12:aa:b1:69:a8:20:cb: 93:26:a1:d0:08:66:41:78:3d:c4:0c:39:29:e8:1b:21:09:f4: 68:d4:6f:ed:7a:97:ba:e4:c3:78:8c:ff:fe:f4:f0:6c:e4:78: ba:ca:c0:51:8b:05:b5:c7:41:76:32:ac:fb:42:c0:e3:09:05: bc:47:8b:a9:cb:b2:fb:44:72:59:41:aa:07:59:58:7c:41:bc: 2a:ea:b0:59:3d:a1:e1:89:a7:62:31:eb:80:ea:94:f3:69:11: 73:e0:a7:4c:7f:d7:e8:3b:48:7f:8d:40:55:ec:ac:92:a5:7d: 80:48:17:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwMzI0MTY0OTMzWhcNMjYwMzMxMTY0OTMzWjAYMRYwFAYD VQQDEw02OWMyYzA5ZC1jMTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Nk1OriBk6PL3Q40d8vd47d/G58cPsucmRPS2YkXNP5CVuN+oW/qALoEIU8 jTp+YRSVdAI8m9V0dzkF1OAGVQAwOwJAKai7Vu7kLqJ5mwM1wnizsjGknRaTztQC AnlPYvJuBw2qMH1RQOHSYulQA5ojq/KFsJ5m7ugrCPjqXRzZX071l49YVuXhRlhE +luoa8+Kr3s8Aay18dSSs1HcGlijKSDTwgNIhqQuG5+27rujLoHrW/yX7BWR9PdJ iSYJw1m2frUgp7fNWXjszNpjFBgSiqpgEpTghz2WvXmd4zK+4D8E97ac+0C67uab mXQh+Qi+4n6K9HdvqnF5N27kKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG+lCnbe VIRPUs13NsktM0bDEDUJMB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASDiX9CnaAm9pz8Hxi1i3qdX0nBn7OIde//aEt/SGJQm1bhqUz/P72/gHBwjX VWnqppfJ6+k6CMILaSsPaRkYVoj+UK+FcqAgx93aoVmB+zOc03RsMoR8fqiNHMcm rJM131ng3q9xKOGbXpZrEC3vczD2ZENau62owSBRmf2eRsRyFLqFnhRxmuQSqrFp qCDLkyah0AhmQXg9xAw5KegbIQn0aNRv7XqXuuTDeIz//vTwbOR4usrAUYsFtcdB djKs+0LA4wkFvEeLqcuy+0RyWUGqB1lYfEG8KuqwWT2h4YmnYjHrgOqU82kRc+Cn TH/X6DtIf41AVeyskqV9gEgXIw== -----END CERTIFICATE-----Generated at Thu Mar 26 13:05:12 2026 by rpki-client