$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: HSAbjEHiSNA94JZtI7tymbl0JsDD+6h1aD3SwqkPkO8= Subject key identifier: 08:19:61:A4:AA:4D:82:6E:83:C5:F4:CD:C3:9F:FA:5F:89:09:3C:27 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: FD Signing time: Sun 01 Mar 2026 07:16:19 +0000 Manifest this update: Sun 01 Mar 2026 07:16:19 +0000 Manifest next update: Sun 08 Mar 2026 07:16:19 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: rtc0C9csD6Lb4LmnDL9tZGIdFkwhmAO09Y8Llj/HBgg=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: zOW380YmpQpMtSyWb7ghqrZ9YCinfgNDwAX0rgUwhPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Mar 1 07:16:19 2026 GMT Not After : Mar 8 07:16:19 2026 GMT Subject: CN=69a3e7c3-a336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b4:95:20:03:72:c1:e6:ce:21:f3:e8:64:45: 49:8d:10:17:93:3f:6b:85:13:cc:ac:65:55:b8:42: cc:f5:02:d9:b9:de:47:17:d0:df:09:ae:5c:4f:20: b5:dc:7b:f7:d8:67:6d:91:37:63:81:a2:21:e2:f5: 58:cd:a3:84:62:99:5a:48:f2:80:a5:85:1b:56:3c: 59:a7:74:7a:d4:c5:a0:2e:ac:b3:8d:9c:62:e4:e1: 93:7f:47:1a:82:31:06:ab:1a:3c:ca:0f:bd:8e:9e: 46:74:73:69:81:63:03:3a:b0:95:a8:58:e3:e4:bc: ab:96:d5:ac:3d:fd:3e:05:a1:83:c9:41:9c:ec:73: c2:b4:2e:07:aa:e6:a0:df:65:1c:78:e7:54:d7:dc: 5e:02:c5:78:d2:ee:47:b6:c9:5f:33:4b:9d:fe:7d: 0a:06:32:b7:f8:93:46:f7:0a:f4:bc:58:10:75:d9: 1a:2e:cf:79:83:ad:6e:87:0d:ee:8e:ec:1c:81:d0: d3:ee:35:15:fb:34:f0:ad:de:a8:fc:28:5f:e9:3e: e9:27:a8:08:83:a8:ab:3b:ab:92:87:1a:dc:cb:ae: 64:7a:e9:e1:43:2f:94:fe:89:db:bc:b5:c0:49:36: 94:51:62:18:cc:6c:c5:79:d5:3a:34:35:21:1d:4e: 59:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:19:61:A4:AA:4D:82:6E:83:C5:F4:CD:C3:9F:FA:5F:89:09:3C:27 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:55:f9:09:68:a3:d7:ca:fa:be:fe:5d:c8:aa:24:f2:9d:ea: 9f:1c:b9:59:22:dc:33:ee:68:a9:fc:5e:e8:56:31:cc:45:b9: 72:c6:40:df:18:e4:3d:8a:2a:c3:de:77:91:39:2c:0f:f4:36: 03:b9:2f:d2:87:d3:a5:3f:28:2e:0b:4d:07:d5:6a:6a:04:37: ed:ba:7e:6a:5a:6e:64:c1:20:75:cc:06:6b:bb:7d:60:76:e9: 5e:11:f2:71:7c:03:14:2c:aa:d6:ff:24:11:4a:5a:fa:fc:69: 7b:dc:b0:7f:1c:aa:1e:4b:71:41:54:56:64:47:b8:51:20:45: da:bf:d3:df:f9:cd:bc:60:f7:11:55:43:e7:d3:6a:54:99:e3: 39:ed:ae:7b:50:e7:38:31:fb:fc:a1:6a:74:37:51:c2:81:e8: 4e:07:3e:6a:f5:63:14:3c:59:77:ef:1c:9d:15:b6:8d:44:6a: 75:df:d1:c4:a1:a1:ff:28:22:85:2d:63:9f:2f:c6:a1:0d:bb: d3:1c:a0:45:00:3c:7b:62:7f:40:15:8f:19:e6:f2:f0:43:61: bc:be:93:92:dd:54:8c:37:e9:31:4b:1b:2f:fd:33:43:34:4b: 35:c1:cd:9f:49:96:ed:40:6d:34:05:dc:17:b7:b3:c0:ed:8d: c5:e5:1a:23 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwMzAxMDcxNjE5WhcNMjYwMzA4MDcxNjE5WjAYMRYwFAYD VQQDEw02OWEzZTdjMy1hMzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrSVIANywebOIfPoZEVJjRAXkz9rhRPMrGVVuELM9QLZud5HF9DfCa5cTyC1 3Hv32GdtkTdjgaIh4vVYzaOEYplaSPKApYUbVjxZp3R61MWgLqyzjZxi5OGTf0ca gjEGqxo8yg+9jp5GdHNpgWMDOrCVqFjj5LyrltWsPf0+BaGDyUGc7HPCtC4Hquag 32UceOdU19xeAsV40u5HtslfM0ud/n0KBjK3+JNG9wr0vFgQddkaLs95g61uhw3u juwcgdDT7jUV+zTwrd6o/Chf6T7pJ6gIg6irO6uShxrcy65keunhQy+U/onbvLXA STaUUWIYzGzFedU6NDUhHU5Z6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAgZYaSq TYJug8X0zcOf+l+JCTwnMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj1X5CWij18r6vv5dyKok8p3qnxy5WSLcM+5oqfxe6FYxzEW5csZA3xjkPYoq w953kTksD/Q2A7kv0ofTpT8oLgtNB9VqagQ37bp+alpuZMEgdcwGa7t9YHbpXhHy cXwDFCyq1v8kEUpa+vxpe9ywfxyqHktxQVRWZEe4USBF2r/T3/nNvGD3EVVD59Nq VJnjOe2ue1DnODH7/KFqdDdRwoHoTgc+avVjFDxZd+8cnRW2jURqdd/RxKGh/ygi hS1jny/GoQ270xygRQA8e2J/QBWPGeby8ENhvL6Tkt1UjDfpMUsbL/0zQzRLNcHN n0mW7UBtNAXcF7ezwO2NxeUaIw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:18:29 2026 by rpki-client