$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft File: oRHoHEs-J72m4nEkl_bbugz7CCY.mft (raw, json) Hash identifier: V70BZeaUSB/Wl3GjEeXHytqXE54fTozc4Nlz6jfPwoo= Subject key identifier: 48:3C:B9:9B:DD:9C:71:A9:07:0A:B2:E5:20:B4:AE:15:0B:FF:93:3B Authority key identifier: A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 Certificate issuer: /CN=A91C1DB8/serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Certificate serial: 13FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft Manifest number: 13EC Signing time: Mon 02 Mar 2026 01:49:57 +0000 Manifest this update: Mon 02 Mar 2026 01:49:56 +0000 Manifest next update: Mon 09 Mar 2026 01:49:56 +0000 Files and hashes: 1: oRHoHEs-J72m4nEkl_bbugz7CCY.crl (hash: 4guSCVwhVxxMlN0VtrKF5D16KJ2t3tenqWQ9jDMGGhE=) 2: 6D6692CAAA0211EEAADA3D32C4F9AE02.roa (hash: 2PmqHELB1hwleGl17N3DUTadd9q9hQXwA/8mpl3xfuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5115 (0x13fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1DB8, serialNumber=A111E81C4B3E27BDA6E2712497F6DBBA0CFB0826 Validity Not Before: Mar 2 01:49:56 2026 GMT Not After : Mar 9 01:49:56 2026 GMT Subject: CN=69a4ecc5-8e67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:11:9e:aa:c7:dd:48:4a:0d:57:fa:3c:17:50: a8:c1:c7:f4:b3:01:d9:8d:e4:ad:32:70:27:db:fe: 89:9c:8c:90:d1:59:d0:0d:6f:4f:9d:21:14:13:a7: a7:75:d9:29:29:80:87:25:bb:79:ba:85:f4:a1:66: 4e:38:2f:38:da:6b:62:72:21:b1:92:87:c5:e1:af: 65:64:e8:bf:0c:02:7a:6f:4b:7e:1c:fa:64:3e:f9: 4f:9e:24:75:8a:e7:6c:f4:ab:91:6c:1d:05:70:11: e9:69:a5:8a:a0:0b:5f:93:e4:2c:15:e3:ec:3c:e8: bc:30:82:9c:70:94:ec:79:ef:20:a1:78:34:8f:ba: 41:e0:9a:82:28:ed:25:65:c6:8d:52:a8:c4:9f:6d: d2:1e:69:1b:26:a0:91:73:06:d1:95:0e:d8:ec:08: e0:18:ee:5e:d6:b7:f6:85:d1:c0:5e:fc:60:a7:1a: 28:fc:3a:4a:46:f6:e7:7e:8b:ee:20:82:1f:79:a9: 78:21:63:96:0c:d2:4a:9c:63:7a:81:b2:80:ab:d7: 32:84:c6:04:3a:3b:f6:f9:29:b4:0f:6f:c2:91:1a: 90:cc:9b:45:73:70:4e:b6:21:fb:ba:5b:23:85:b2: 0f:43:e6:4a:2e:39:71:1d:49:21:a2:75:be:b7:4d: 9c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:3C:B9:9B:DD:9C:71:A9:07:0A:B2:E5:20:B4:AE:15:0B:FF:93:3B X509v3 Authority Key Identifier: keyid:A1:11:E8:1C:4B:3E:27:BD:A6:E2:71:24:97:F6:DB:BA:0C:FB:08:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oRHoHEs-J72m4nEkl_bbugz7CCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/0D9931BAA11E11E89E636710C4F9AE02/oRHoHEs-J72m4nEkl_bbugz7CCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d0:39:2b:2b:60:93:36:06:60:cf:1f:8e:32:00:85:97:8a: 28:66:14:c6:7e:fa:cf:29:3a:9f:5d:21:8a:ed:ff:51:ea:dc: 3e:6b:9e:46:71:09:d5:0f:36:a3:bc:8c:ac:9f:94:48:4e:83: d2:b6:9f:7d:a2:3b:8e:b8:6f:21:83:c0:f8:8c:b2:83:80:95: dd:2f:44:4f:00:cf:27:ef:9e:89:75:66:3f:55:ac:be:6f:5c: 94:25:9c:b3:2f:e3:ca:a2:f3:b2:ec:22:47:ea:7c:c9:07:bb: c2:b5:00:34:ce:36:43:78:09:90:17:8e:1a:68:bb:05:d8:61: 5d:91:d0:69:2b:cb:0c:40:14:e0:52:5f:a5:0e:90:44:13:a3: 37:25:d4:49:3a:6f:08:99:15:a5:f9:3c:e9:04:3b:45:82:46: 93:b3:2f:b2:3c:e1:f9:ef:a8:39:92:dc:e4:c3:3e:fe:90:d9: c1:8d:7c:d7:8f:4f:2a:08:01:0e:9f:70:94:57:62:7b:63:4e: a0:62:14:45:d6:21:45:3a:f8:fe:9a:8c:ad:f7:6f:67:87:b5: 89:51:90:22:a3:9d:e1:42:52:6a:98:55:53:4c:14:f4:78:85: 1a:11:1e:10:70:d6:8e:2b:8b:1f:64:1f:5d:bc:14:43:76:7c: b0:3e:e1:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFEQjgxMTAvBgNVBAUTKEExMTFFODFDNEIzRTI3QkRBNkUyNzEyNDk3RjZEQkJB MENGQjA4MjYwHhcNMjYwMzAyMDE0OTU2WhcNMjYwMzA5MDE0OTU2WjAYMRYwFAYD VQQDEw02OWE0ZWNjNS04ZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlBGeqsfdSEoNV/o8F1Cowcf0swHZjeStMnAn2/6JnIyQ0VnQDW9PnSEUE6en ddkpKYCHJbt5uoX0oWZOOC842mticiGxkofF4a9lZOi/DAJ6b0t+HPpkPvlPniR1 iuds9KuRbB0FcBHpaaWKoAtfk+QsFePsPOi8MIKccJTsee8goXg0j7pB4JqCKO0l ZcaNUqjEn23SHmkbJqCRcwbRlQ7Y7AjgGO5e1rf2hdHAXvxgpxoo/DpKRvbnfovu IIIfeal4IWOWDNJKnGN6gbKAq9cyhMYEOjv2+Sm0D2/CkRqQzJtFc3BOtiH7ulsj hbIPQ+ZKLjlxHUkhonW+t02cuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEg8uZvd nHGpBwqy5SC0rhUL/5M7MB8GA1UdIwQYMBaAFKER6BxLPie9puJxJJf227oM+wgm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMURCOC8wRDk5MzFCQUEx MUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3Mm00bkVrbF9iYnVnejdD Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29SSG9IRXMtSjcybTRuRWtsX2JidWd6N0NDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MURCOC8wRDk5MzFCQUExMUUxMUU4OUU2MzY3MTBDNEY5QUUwMi9vUkhvSEVzLUo3 Mm00bkVrbF9iYnVnejdDQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC9A5KytgkzYGYM8fjjIAhZeKKGYUxn76zyk6n10hiu3/UercPmueRnEJ1Q82 o7yMrJ+USE6D0raffaI7jrhvIYPA+Iyyg4CV3S9ETwDPJ++eiXVmP1Wsvm9clCWc sy/jyqLzsuwiR+p8yQe7wrUANM42Q3gJkBeOGmi7BdhhXZHQaSvLDEAU4FJfpQ6Q RBOjNyXUSTpvCJkVpfk86QQ7RYJGk7Mvsjzh+e+oOZLc5MM+/pDZwY18149PKggB Dp9wlFdie2NOoGIURdYhRTr4/pqMrfdvZ4e1iVGQIqOd4UJSaphVU0wU9HiFGhEe EHDWjiuLH2QfXbwUQ3Z8sD7hAQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:44:39 2026 by rpki-client