$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: GqKwZeeoIA2vx6gy/QL9aowkLpNR4a7zcYfc3Ee40Jc= Subject key identifier: EB:5C:16:AC:55:B8:7F:B4:78:C6:D7:A0:0D:17:06:81:B6:C8:CE:97 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 010C Signing time: Fri 27 Mar 2026 05:32:06 +0000 Manifest this update: Fri 27 Mar 2026 05:32:05 +0000 Manifest next update: Fri 03 Apr 2026 05:32:05 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: Hv9qH6ur1izlmogdqLpvYxBL7cYrEvjL4A1/RlFJpcU=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Z+DrfE+gqHihIiYtOwJ20Al7Qo+Lrwz4FvqdoOjvXzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 05:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Mar 27 05:32:05 2026 GMT Not After : Apr 3 05:32:05 2026 GMT Subject: CN=69c61656-45e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:66:91:87:18:0d:d6:e2:22:f3:29:da:40:5e: da:0a:5b:14:ef:c9:b1:57:1c:6a:8c:18:1f:fd:5e: ed:7b:6f:99:ea:e5:7e:c5:f9:fd:17:af:bc:72:bd: dc:dd:ea:03:ce:9b:d9:6e:67:83:9f:a5:e0:b8:d2: 82:05:cb:0d:f9:33:0a:48:99:85:c1:5f:55:54:76: cc:4c:59:dd:b1:f4:d0:87:7e:31:9c:25:2c:87:53: fb:9a:ca:38:12:f1:28:89:91:f8:72:6e:14:96:4f: d7:7b:16:20:b6:bf:13:4f:40:3c:23:35:47:dd:ac: 0b:4b:cc:61:e1:cb:00:50:3c:ed:23:a1:69:a4:70: 35:f8:cb:c4:f3:59:af:a8:e4:c8:9a:46:1d:e0:a4: a2:25:b6:05:2c:d8:05:63:73:13:86:29:e6:61:34: 8b:0e:9b:34:5d:dc:f4:41:ef:66:0d:f8:20:15:58: 8c:07:17:f1:0b:c7:ce:dc:17:a9:c7:11:db:4f:a3: c5:b3:31:c2:4e:b4:4c:53:5f:1a:50:81:63:24:fe: 98:c8:71:ab:25:28:74:6b:b3:2c:92:ec:86:f9:94: 80:e1:56:08:75:cd:67:55:a3:5a:10:c2:f8:98:7d: dd:dc:c8:62:ec:6c:1f:6f:b8:2b:f8:87:02:8b:0b: b1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5C:16:AC:55:B8:7F:B4:78:C6:D7:A0:0D:17:06:81:B6:C8:CE:97 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:41:ce:52:20:2a:c1:60:90:c2:a5:b5:97:b1:8a:90:cf:56: 78:50:d4:50:60:76:4c:d0:bf:da:3e:fe:9b:48:20:61:72:6b: 2e:a3:57:8b:37:25:18:bc:58:88:17:a3:c7:62:70:bc:3d:11: f8:6c:c8:db:32:76:f6:f7:37:19:0a:e9:0f:4e:ed:7f:56:e4: 25:51:78:15:93:46:24:b7:4f:1a:fb:22:e7:fd:70:03:4e:4a: 3f:65:ad:ed:82:af:de:86:2a:13:a4:91:32:5d:00:bf:2c:9a: e5:07:a4:14:c5:03:61:9b:ea:a1:02:2e:20:b9:cc:b6:1d:d2: 76:cf:af:03:0a:d6:80:d5:cf:23:6f:19:55:0a:9d:ff:00:60: 33:45:41:31:f7:13:42:3b:3d:07:cd:13:a5:c4:3b:31:5f:20: 58:a9:21:8c:98:b4:fd:96:c5:e9:fd:0a:98:6b:88:f2:ed:cd: 42:b7:4c:39:e0:23:34:73:68:f4:49:f7:2c:80:e9:c3:95:cf: dd:94:f7:bc:c7:4d:d0:2e:2b:24:8b:79:78:45:ab:98:cb:e9: 6f:bd:31:ca:a5:29:bc:e6:ae:e3:a1:6f:69:aa:37:46:2e:d4: 1c:f1:84:43:14:2c:ac:7e:05:cd:03:77:d5:f8:66:9d:6c:00: 1c:d0:6c:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwMzI3MDUzMjA1WhcNMjYwNDAzMDUzMjA1WjAYMRYwFAYD VQQDEw02OWM2MTY1Ni00NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWaRhxgN1uIi8ynaQF7aClsU78mxVxxqjBgf/V7te2+Z6uV+xfn9F6+8cr3c 3eoDzpvZbmeDn6XguNKCBcsN+TMKSJmFwV9VVHbMTFndsfTQh34xnCUsh1P7mso4 EvEoiZH4cm4Ulk/XexYgtr8TT0A8IzVH3awLS8xh4csAUDztI6FppHA1+MvE81mv qOTImkYd4KSiJbYFLNgFY3MThinmYTSLDps0Xdz0Qe9mDfggFViMBxfxC8fO3Bep xxHbT6PFszHCTrRMU18aUIFjJP6YyHGrJSh0a7MskuyG+ZSA4VYIdc1nVaNaEML4 mH3d3Mhi7Gwfb7gr+IcCiwuxiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOtcFqxV uH+0eMbXoA0XBoG2yM6XMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA4UHOUiAqwWCQwqW1l7GKkM9WeFDUUGB2TNC/2j7+m0ggYXJrLqNXizclGLxY iBejx2JwvD0R+GzI2zJ29vc3GQrpD07tf1bkJVF4FZNGJLdPGvsi5/1wA05KP2Wt 7YKv3oYqE6SRMl0Avyya5QekFMUDYZvqoQIuILnMth3Sds+vAwrWgNXPI28ZVQqd /wBgM0VBMfcTQjs9B80TpcQ7MV8gWKkhjJi0/ZbF6f0KmGuI8u3NQrdMOeAjNHNo 9En3LIDpw5XP3ZT3vMdN0C4rJIt5eEWrmMvpb70xyqUpvOau46Fvaao3Ri7UHPGE QxQsrH4FzQN31fhmnWwAHNBs4g== -----END CERTIFICATE-----Generated at Sat Mar 28 10:44:11 2026 by rpki-client