$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: F1nq4HC5gEYuUBdF4M3JMRbIApBKhysbyNS/VyPygB8= Subject key identifier: 30:18:6B:BD:88:80:4F:35:18:E2:59:D5:7A:87:E6:80:0B:26:25:AE Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0999 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 0992 Signing time: Sat 18 Oct 2025 21:07:35 +0000 Manifest this update: Sat 18 Oct 2025 21:07:35 +0000 Manifest next update: Sat 25 Oct 2025 21:07:35 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: AeLMMvHtgf09BwYKAVY+H/q/2s1O09wkHxnPZ0q5p18=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: Z6vRCcxL1bmdrItPmj7qCyzvetl7oMIALv4P0w4CxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Oct 18 21:07:35 2025 GMT Not After : Oct 25 21:07:35 2025 GMT Subject: CN=68f40197-56e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:79:b8:b4:30:45:32:d7:53:72:80:8c:8a:31: 71:cb:35:d7:3c:8f:a2:4d:63:8f:2b:4e:b5:f6:96: f3:dd:5a:38:f4:cd:0f:43:18:40:0a:d1:a9:27:41: 1e:b3:09:02:f0:17:f3:ee:de:bd:e2:1e:35:f7:f2: c7:f7:fa:4d:d0:c6:f7:bd:9e:20:a7:7f:09:03:31: 8c:3f:3b:cb:d7:a3:4c:fd:85:c8:97:32:bf:43:b5: 5e:16:27:b4:4a:1d:54:df:f4:07:93:18:52:26:8f: 10:d9:e3:63:5c:6a:54:7e:17:d2:34:20:70:12:9d: 54:42:66:a3:75:7d:a5:8e:dd:04:68:f6:9d:cd:6e: 8a:04:d6:01:ee:16:b6:83:f2:a1:34:27:e9:b1:0e: b0:03:82:f0:ca:a8:99:ad:54:60:2a:03:e6:e8:fd: 02:80:9b:59:ef:ad:47:b6:df:3f:50:09:30:e6:5f: c6:c9:5b:9e:b8:77:eb:ac:3c:38:0d:a1:bd:4f:2a: 1a:bc:19:cf:30:b4:1a:2e:9b:b5:53:dc:f0:e8:e9: bc:09:7f:08:10:bb:a6:38:fb:49:a9:2c:42:20:66: 40:73:92:7e:fc:36:d5:11:e8:b9:b1:14:44:f3:2a: c4:bc:00:40:04:eb:17:6c:ad:03:25:22:80:8b:50: ad:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:18:6B:BD:88:80:4F:35:18:E2:59:D5:7A:87:E6:80:0B:26:25:AE X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:cc:15:68:61:cb:ee:ab:40:7c:6a:e9:f4:0a:33:3d:7f:18: 5c:9c:1a:a5:e9:e3:2c:44:dc:bd:1a:5d:c7:74:56:8c:ac:ed: 55:22:b9:7f:c1:4e:f5:c8:db:93:0e:31:db:23:a8:53:64:a0: 95:4d:62:5d:5b:c5:40:95:72:cb:fd:99:53:14:96:6b:95:b4: 17:c3:c3:fb:24:70:77:f5:d9:c4:69:3e:83:ad:f5:e2:71:4e: 28:49:a2:f2:c9:d7:d8:f5:ea:0d:68:bf:43:af:b6:cf:96:ab: 93:bb:4b:9e:50:5b:e4:6e:fc:e0:bc:00:51:b0:64:d0:ab:20: ec:a6:8f:80:c8:2c:50:d7:2b:bf:e0:44:93:cf:74:a3:33:3f: e8:b6:be:d7:c6:23:2a:c8:d9:03:69:9e:24:df:be:19:54:44: df:b0:7a:df:46:80:18:3a:81:f7:a9:39:b3:4b:17:5f:7b:0d: 31:37:fe:f5:8c:62:e9:55:e9:9c:2d:86:03:67:2a:02:3e:9d: 01:84:ba:4f:64:7a:d8:d9:e8:9d:61:c5:97:1e:20:7d:dd:09: 7b:dd:2a:2b:bf:74:94:8c:cb:8f:9d:8c:d0:05:61:e7:c0:3d: 52:b0:82:de:16:0b:68:d4:f4:84:9e:69:81:2b:02:f1:3e:f0: 31:69:f8:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjUxMDE4MjEwNzM1WhcNMjUxMDI1MjEwNzM1WjAYMRYwFAYD VQQDEw02OGY0MDE5Ny01NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Hm4tDBFMtdTcoCMijFxyzXXPI+iTWOPK0619pbz3Vo49M0PQxhACtGpJ0Ee swkC8Bfz7t694h419/LH9/pN0Mb3vZ4gp38JAzGMPzvL16NM/YXIlzK/Q7VeFie0 Sh1U3/QHkxhSJo8Q2eNjXGpUfhfSNCBwEp1UQmajdX2ljt0EaPadzW6KBNYB7ha2 g/KhNCfpsQ6wA4LwyqiZrVRgKgPm6P0CgJtZ761Htt8/UAkw5l/GyVueuHfrrDw4 DaG9TyoavBnPMLQaLpu1U9zw6Om8CX8IELumOPtJqSxCIGZAc5J+/DbVEei5sRRE 8yrEvABABOsXbK0DJSKAi1Ct/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAYa72I gE81GOJZ1XqH5oALJiWuMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6zBVoYcvuq0B8aun0CjM9fxhcnBql6eMsRNy9Gl3HdFaMrO1VIrl/ wU71yNuTDjHbI6hTZKCVTWJdW8VAlXLL/ZlTFJZrlbQXw8P7JHB39dnEaT6DrfXi cU4oSaLyydfY9eoNaL9Dr7bPlquTu0ueUFvkbvzgvABRsGTQqyDspo+AyCxQ1yu/ 4ESTz3SjMz/otr7XxiMqyNkDaZ4k374ZVETfsHrfRoAYOoH3qTmzSxdfew0xN/71 jGLpVemcLYYDZyoCPp0BhLpPZHrY2eidYcWXHiB93Ql73Sorv3SUjMuPnYzQBWHn wD1SsILeFgto1PSEnmmBKwLxPvAxafhP -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:15 2025 by rpki-client