$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: Ny+0jpj0l/UU9TvFGV3zLIwC5xt1MNZ9iNz2dwQQz4A= Subject key identifier: 96:C9:C8:24:B4:C3:D8:6B:76:EE:B8:72:B0:F8:DA:0A:43:A0:C8:C6 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 0123 Signing time: Mon 11 May 2026 05:49:55 +0000 Manifest this update: Mon 11 May 2026 05:49:55 +0000 Manifest next update: Mon 18 May 2026 05:49:55 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: Bp1iIFenZSBdCVQkhxffvGS0QKuSLHZD0ZJziKte7nc=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Z+DrfE+gqHihIiYtOwJ20Al7Qo+Lrwz4FvqdoOjvXzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: May 11 05:49:55 2026 GMT Not After : May 18 05:49:55 2026 GMT Subject: CN=6a016e03-c47b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3f:37:88:4d:f6:e6:80:bf:23:4f:1e:bc:41: dd:99:5b:06:21:44:16:08:a8:83:00:17:f3:ff:ea: f1:27:8d:67:1b:f7:66:48:d5:02:c3:e2:2d:fa:59: ef:fa:28:6a:89:85:15:1e:e5:d4:6f:a9:ae:16:90: 1b:3a:2f:52:e9:bb:d3:d6:6a:f8:79:f5:03:71:af: 27:c8:31:f2:46:15:84:b7:59:f2:a8:0c:a1:2d:87: 90:64:48:c9:d6:e2:12:e9:15:27:15:5d:ac:9b:d6: 5c:24:bc:85:05:d2:ef:a0:37:6a:ca:a2:2a:c6:38: d5:f4:ba:34:54:94:e4:6d:26:ea:2b:d2:64:13:ad: a9:2d:b9:24:59:87:85:9e:ad:f6:06:4c:fb:83:cf: ce:0a:ab:4e:60:ed:cc:43:6d:27:9b:48:f5:f6:5f: 5d:af:89:38:62:ad:36:c9:a2:65:6a:20:9f:83:f5: 73:d6:f2:66:61:93:dd:cf:e3:35:ee:2c:61:3a:03: 1f:82:33:fe:a0:eb:04:ce:2c:77:1e:2c:0e:ab:de: f5:a8:e3:f3:11:35:6b:10:73:eb:1b:44:09:a8:f5: af:a0:25:65:07:9e:76:05:5b:89:94:96:a8:32:59: 52:ae:df:8e:da:7e:04:62:0d:f0:c6:22:c4:4b:4b: 2f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C9:C8:24:B4:C3:D8:6B:76:EE:B8:72:B0:F8:DA:0A:43:A0:C8:C6 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:7b:15:f7:e8:be:d9:fc:3b:b8:19:0f:a0:ce:e3:fc:56:68: 4f:01:11:78:88:8f:7d:15:32:5a:89:a4:ee:e7:5d:f0:8d:dc: 17:22:42:71:7b:7d:13:b6:ed:29:0b:5d:c0:39:fa:27:1f:f5: 58:81:c7:0a:90:65:d7:3a:51:18:c0:c2:d1:25:7f:93:55:4f: ea:ba:1e:94:c9:10:64:07:0e:3d:38:a3:de:69:59:00:73:8d: 18:02:af:26:d2:90:35:ee:1b:fc:52:52:57:d3:ee:f1:ea:34: f3:a4:a3:a4:a2:73:fd:96:81:49:b9:d1:6c:b9:48:e0:aa:4f: 54:2b:13:ab:80:6b:4b:9d:26:d6:1b:c8:b3:46:bc:03:e1:60: 90:da:a6:8d:51:20:97:fe:1c:11:5a:00:53:00:eb:d2:8f:30: 71:34:bf:42:9d:44:f8:d5:ff:92:be:58:78:50:0e:d2:5c:fe: 97:87:ed:f9:8c:8d:7a:70:54:98:81:61:a7:04:cc:24:a2:f4: 49:a1:da:34:fc:70:6a:88:5d:35:1b:c8:44:0d:2f:fe:bc:db: 91:5b:91:41:13:d4:6d:e6:1a:53:6c:f3:8b:4d:cb:5e:dc:24: 9c:aa:59:87:a0:1d:bb:ad:20:66:29:d6:c6:da:90:38:12:8b: 94:42:e7:7d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwNTExMDU0OTU1WhcNMjYwNTE4MDU0OTU1WjAYMRYwFAYD VQQDEw02YTAxNmUwMy1jNDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0z83iE325oC/I08evEHdmVsGIUQWCKiDABfz/+rxJ41nG/dmSNUCw+It+lnv +ihqiYUVHuXUb6muFpAbOi9S6bvT1mr4efUDca8nyDHyRhWEt1nyqAyhLYeQZEjJ 1uIS6RUnFV2sm9ZcJLyFBdLvoDdqyqIqxjjV9Lo0VJTkbSbqK9JkE62pLbkkWYeF nq32Bkz7g8/OCqtOYO3MQ20nm0j19l9dr4k4Yq02yaJlaiCfg/Vz1vJmYZPdz+M1 7ixhOgMfgjP+oOsEzix3HiwOq971qOPzETVrEHPrG0QJqPWvoCVlB552BVuJlJao MllSrt+O2n4EYg3wxiLES0svnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJbJyCS0 w9hrdu64crD42gpDoMjGMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqHsV9+i+2fw7uBkPoM7j/FZoTwEReIiPfRUyWomk7udd8I3cFyJCcXt9E7bt KQtdwDn6Jx/1WIHHCpBl1zpRGMDC0SV/k1VP6roelMkQZAcOPTij3mlZAHONGAKv JtKQNe4b/FJSV9Pu8eo086SjpKJz/ZaBSbnRbLlI4KpPVCsTq4BrS50m1hvIs0a8 A+FgkNqmjVEgl/4cEVoAUwDr0o8wcTS/Qp1E+NX/kr5YeFAO0lz+l4ft+YyNenBU mIFhpwTMJKL0SaHaNPxwaohdNRvIRA0v/rzbkVuRQRPUbeYaU2zzi03LXtwknKpZ h6Adu60gZinWxtqQOBKLlELnfQ== -----END CERTIFICATE-----Generated at Wed May 13 05:31:36 2026 by rpki-client