$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: ObQJpInjOsDPxQIITcMIqNMHYELYPG/gsR5dpUCGIU4= Subject key identifier: 3F:63:CD:BE:40:F6:C7:17:72:40:A4:16:71:2B:B6:09:0C:CC:B3:96 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09E8 Signing time: Tue 24 Mar 2026 19:39:46 +0000 Manifest this update: Tue 24 Mar 2026 19:39:46 +0000 Manifest next update: Tue 31 Mar 2026 19:39:46 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: pDXV0kg9Vq3cu190mDrGWtZoVVJTEAFJRup5OaONL90=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Mar 24 19:39:46 2026 GMT Not After : Mar 31 19:39:46 2026 GMT Subject: CN=69c2e882-097b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:4a:e5:63:ee:81:22:57:03:00:0a:71:63:9d: 04:9b:a3:02:fb:d1:38:c7:a2:f7:e1:fa:6a:e6:36: 18:cc:26:0d:1d:52:2c:72:1e:ed:cc:96:21:4f:53: 88:6d:05:c3:9f:4b:42:b7:cd:2d:d0:e6:b9:95:ff: c9:f1:e1:17:6f:89:75:50:47:66:52:d5:42:38:25: 85:ee:32:27:da:d9:9c:0e:2e:fd:55:42:6e:72:ac: f7:c1:c4:22:82:5c:b5:80:a0:0f:ff:bc:70:76:b3: a3:fd:55:b2:61:59:23:70:b6:0b:21:48:b8:12:e7: 37:2c:92:d9:a4:29:3c:11:92:cc:31:df:fd:59:69: 57:41:f2:6a:96:21:2a:7b:1a:cb:9e:29:dc:4e:99: 83:cd:fe:78:bc:41:a3:24:c8:3c:2a:85:d5:6e:ae: a0:40:81:fb:5a:03:30:2a:cf:10:c7:dc:5c:81:20: fc:16:cc:aa:ea:fc:8e:a2:6a:64:39:a0:4e:27:b7: 41:0b:b6:78:f4:4e:0f:66:ce:eb:e9:8c:b5:01:b8: 27:e9:b0:e7:24:eb:2e:30:1e:2b:81:00:bf:0e:1e: 0e:c1:8f:6e:e4:e2:bd:0f:95:55:1a:fc:26:c0:4f: 16:eb:62:f7:1c:9a:65:4f:48:20:b3:82:f9:6f:85: 71:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:63:CD:BE:40:F6:C7:17:72:40:A4:16:71:2B:B6:09:0C:CC:B3:96 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8d:e7:dd:0e:08:97:5f:fc:39:0e:62:28:bd:16:0e:ae:d7: 75:c1:7c:ec:83:32:e4:a2:57:a3:fb:a1:b2:bf:f2:40:67:c9: 13:41:d1:1e:10:e0:b5:58:e1:f7:07:29:30:fa:34:07:94:51: 75:d1:c7:4c:fa:1e:8f:06:28:57:a4:c9:27:ee:8d:26:45:c2: 79:cd:bf:83:6d:72:1c:ed:59:3f:1f:09:80:b5:82:90:50:6e: 4a:25:2e:4c:8d:a1:5b:34:7b:21:94:70:3a:97:7d:90:76:3a: b2:2e:11:35:60:d0:06:6c:73:65:f3:e6:79:92:eb:80:83:a6: cd:c0:94:68:70:bc:b5:5c:af:cb:89:f6:88:0e:ab:8e:a4:c2: 67:36:cf:ff:ca:70:bd:35:5e:e2:49:5c:d1:0a:93:87:53:9f: 31:7f:6f:e1:9b:72:63:6e:b2:17:3a:5f:b7:b2:c2:d2:b1:33: 71:99:fb:a1:8a:71:ff:10:d3:94:da:90:55:10:63:89:02:06: f0:a8:dc:4e:11:80:35:9b:11:ae:ae:68:a8:20:e0:28:a1:10: 1b:e9:da:94:f3:2f:0f:5d:ab:cb:7d:92:10:d9:09:b1:8b:76: d0:b0:20:b5:c2:29:7b:1d:92:0c:4f:bb:13:64:01:bb:3d:d3: 45:67:0a:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwMzI0MTkzOTQ2WhcNMjYwMzMxMTkzOTQ2WjAYMRYwFAYD VQQDEw02OWMyZTg4Mi0wOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUrlY+6BIlcDAApxY50Em6MC+9E4x6L34fpq5jYYzCYNHVIsch7tzJYhT1OI bQXDn0tCt80t0Oa5lf/J8eEXb4l1UEdmUtVCOCWF7jIn2tmcDi79VUJucqz3wcQi gly1gKAP/7xwdrOj/VWyYVkjcLYLIUi4Euc3LJLZpCk8EZLMMd/9WWlXQfJqliEq exrLnincTpmDzf54vEGjJMg8KoXVbq6gQIH7WgMwKs8Qx9xcgSD8Fsyq6vyOompk OaBOJ7dBC7Z49E4PZs7r6Yy1Abgn6bDnJOsuMB4rgQC/Dh4OwY9u5OK9D5VVGvwm wE8W62L3HJplT0ggs4L5b4VxfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9jzb5A 9scXckCkFnErtgkMzLOWMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFo3n3Q4Il1/8OQ5iKL0WDq7XdcF87IMy5KJXo/uhsr/yQGfJE0HRHhDgtVjh 9wcpMPo0B5RRddHHTPoejwYoV6TJJ+6NJkXCec2/g21yHO1ZPx8JgLWCkFBuSiUu TI2hWzR7IZRwOpd9kHY6si4RNWDQBmxzZfPmeZLrgIOmzcCUaHC8tVyvy4n2iA6r jqTCZzbP/8pwvTVe4klc0QqTh1OfMX9v4ZtyY26yFzpft7LC0rEzcZn7oYpx/xDT lNqQVRBjiQIG8KjcThGANZsRrq5oqCDgKKEQG+nalPMvD12ry32SENkJsYt20LAg tcIpex2SDE+7E2QBuz3TRWcKlw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:42:30 2026 by rpki-client