$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft File: oRR-hHvP7urdnompeo2fM2ecp-I.mft (raw, json) Hash identifier: HmkGGenh6nPLaRpPBVqzWrwrGA5dpdmJ0XKlxtk9nrA= Subject key identifier: 16:A8:36:E6:6E:5B:B6:3C:15:D3:B2:28:BF:60:9F:EA:76:B5:A5:44 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft Manifest number: 0118 Signing time: Sun 19 Apr 2026 05:30:52 +0000 Manifest this update: Sun 19 Apr 2026 05:30:51 +0000 Manifest next update: Sun 26 Apr 2026 05:30:51 +0000 Files and hashes: 1: oRR-hHvP7urdnompeo2fM2ecp-I.crl (hash: 4wxO1ABEug4qoZ/DVf5D9qeCDUrF1BTQSLYqrXGZ1Wc=) 2: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (hash: Z+DrfE+gqHihIiYtOwJ20Al7Qo+Lrwz4FvqdoOjvXzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 04:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Apr 19 05:30:51 2026 GMT Not After : Apr 26 05:30:51 2026 GMT Subject: CN=69e4688c-9474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6e:cd:15:a6:0f:a1:60:4a:8d:fb:9b:ed:11: 7b:56:54:af:83:c6:1e:f2:cf:d0:7a:cd:57:f5:38: b9:af:ec:53:7a:7d:fc:1f:86:f4:0e:0c:20:c9:0f: 35:cc:56:5a:ee:d9:05:28:d9:fe:55:5c:31:4c:14: 5a:a7:7f:9d:23:f4:73:6e:09:d1:77:ec:f2:d9:00: c8:be:b8:1e:5c:f9:70:c3:e1:dc:34:4d:cc:5e:d5: 04:58:63:0c:fb:ec:1a:25:8a:f3:2e:5e:4b:31:ae: 24:34:01:84:70:82:9a:d3:3e:78:23:c3:68:58:ae: 49:10:60:db:0d:9b:98:7a:6f:5d:09:f2:ce:cc:11: 58:c2:0f:91:e9:73:22:88:85:39:58:8c:5c:8d:d1: 0f:09:af:79:cd:1f:c2:41:43:e6:52:4b:c3:08:cb: 00:bb:79:72:c7:87:20:b6:c9:41:84:16:39:e2:10: f0:e3:75:3b:62:e8:df:8e:05:7d:63:07:b6:fe:43: e4:1b:9e:8b:c5:37:6e:a4:c4:e4:d7:bd:4b:d4:69: ba:e2:b8:60:98:62:c5:f4:3a:1d:7d:41:e7:f6:28: 53:d8:bd:ea:58:21:e2:1f:bc:d3:9a:f1:40:61:79: 34:67:fb:95:a8:50:ac:1d:98:1e:95:e1:ad:20:59: 2d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A8:36:E6:6E:5B:B6:3C:15:D3:B2:28:BF:60:9F:EA:76:B5:A5:44 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:2c:c7:f7:5b:73:4e:ce:dd:a8:bf:3f:27:1f:b3:6f:db:d7: 0c:ba:e1:c7:14:0e:f3:1b:80:33:ff:e8:fe:05:b9:43:a8:c9: 69:9e:6d:46:59:c8:8c:2c:04:4a:78:88:48:45:4e:d2:ee:7d: 3f:8f:fc:8b:87:bc:5c:b8:9a:c8:24:31:7b:19:7b:d5:43:0b: bf:c0:ed:f3:5b:42:cb:ec:b6:53:e1:0b:de:40:aa:7d:1b:9c: eb:ef:77:1f:93:4b:e0:96:40:47:89:c2:b5:03:2b:2f:08:aa: c4:30:09:d9:6b:bc:fe:fb:80:b0:da:08:48:66:b1:5a:42:56: 55:56:2b:b9:5c:b6:52:56:26:61:ac:cb:25:1f:40:e1:0c:42: d9:4c:84:50:6b:12:d4:b2:9e:71:f6:65:dd:dd:0e:21:a4:90: 3f:86:a5:25:79:7b:95:da:11:46:08:ea:57:08:6d:c4:2f:f3: b5:6d:b5:7a:e3:36:ca:1b:21:af:f8:b3:21:ed:3c:b6:cf:6b: 03:df:e9:ff:31:25:58:b0:7a:ab:51:78:48:02:b8:6d:40:b8: 85:36:c1:a9:65:c6:38:b9:09:13:a5:c1:ee:58:22:ee:cf:fa: 18:b3:48:e1:dc:4e:07:4a:8c:b4:a6:c4:cd:20:d1:cd:a7:c3: 9c:81:51:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFEODAxMTAvBgNVBAUTKEExMTQ3RTg0N0JDRkVFRUFERDlFODlBOTdBOEQ5RjMz Njc5Q0E3RTIwHhcNMjYwNDE5MDUzMDUxWhcNMjYwNDI2MDUzMDUxWjAYMRYwFAYD VQQDEw02OWU0Njg4Yy05NDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG7NFaYPoWBKjfub7RF7VlSvg8Ye8s/Qes1X9Ti5r+xTen38H4b0DgwgyQ81 zFZa7tkFKNn+VVwxTBRap3+dI/RzbgnRd+zy2QDIvrgeXPlww+HcNE3MXtUEWGMM ++waJYrzLl5LMa4kNAGEcIKa0z54I8NoWK5JEGDbDZuYem9dCfLOzBFYwg+R6XMi iIU5WIxcjdEPCa95zR/CQUPmUkvDCMsAu3lyx4cgtslBhBY54hDw43U7YujfjgV9 Ywe2/kPkG56LxTdupMTk171L1Gm64rhgmGLF9DodfUHn9ihT2L3qWCHiH7zTmvFA YXk0Z/uVqFCsHZgeleGtIFktxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBaoNuZu W7Y8FdOyKL9gn+p2taVEMB8GA1UdIwQYMBaAFKEUfoR7z+7q3Z6JqXqNnzNnnKfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUQ4MC9EMjIzQzVBRTk0 QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1cmRub21wZW8yZk0yZWNw LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3AtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi9vUlItaEh2UDd1 cmRub21wZW8yZk0yZWNwLUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAICzH91tzTs7dqL8/Jx+zb9vXDLrhxxQO8xuAM//o/gW5Q6jJaZ5tRlnIjCwE SniISEVO0u59P4/8i4e8XLiayCQxexl71UMLv8Dt81tCy+y2U+EL3kCqfRuc6+93 H5NL4JZAR4nCtQMrLwiqxDAJ2Wu8/vuAsNoISGaxWkJWVVYruVy2UlYmYazLJR9A 4QxC2UyEUGsS1LKecfZl3d0OIaSQP4alJXl7ldoRRgjqVwhtxC/ztW21euM2yhsh r/izIe08ts9rA9/p/zElWLB6q1F4SAK4bUC4hTbBqWXGOLkJE6XB7lgi7s/6GLNI 4dxOB0qMtKbEzSDRzafDnIFR7w== -----END CERTIFICATE-----Generated at Sun Apr 19 10:15:03 2026 by rpki-client