$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: MDdsJ8cXEvo+BG8E7ieetXxK3wW3JRkL/9IyNcyaFFI= Subject key identifier: C3:79:CD:03:06:B7:9F:0F:4D:BE:F0:05:74:C8:7F:2F:B9:CD:B1:42 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04E0 Signing time: Tue 24 Mar 2026 23:28:47 +0000 Manifest this update: Tue 24 Mar 2026 23:28:46 +0000 Manifest next update: Tue 31 Mar 2026 23:28:46 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 7JPxGq0ZAGdAIkAveld8w/il/bkTcoQHpM1lgZ7N4Bc=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Mar 24 23:28:46 2026 GMT Not After : Mar 31 23:28:46 2026 GMT Subject: CN=69c31e2e-e980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:63:b0:ff:d3:f1:6f:b8:f0:3a:13:cf:0b: dd:0f:b6:7e:44:c0:72:26:50:74:9f:ec:67:06:8b: 02:e8:35:1e:21:a3:0a:0d:3a:4b:d1:1b:a9:26:74: bc:2e:65:6f:c6:c2:61:90:04:8e:47:7e:97:31:7c: 79:11:38:48:75:5f:ac:c0:86:88:12:b9:a1:61:73: 3a:b9:1e:c5:ca:46:6e:34:f1:ec:c3:6c:03:57:07: 8c:c4:29:be:6b:b2:e1:ae:37:c8:6f:f5:b3:fe:8a: 91:db:04:ea:b2:43:94:63:17:03:18:53:cd:65:fa: e6:f6:c3:85:28:68:c9:48:64:f3:45:aa:42:a5:e9: fd:07:22:50:b6:ba:17:16:ac:76:20:03:d0:6c:d5: 8a:bc:d6:be:fc:a0:f7:5b:d2:d6:ed:80:26:56:ef: 84:df:1d:81:a5:eb:e9:9d:b2:ed:76:86:be:42:7a: 52:4d:4a:76:c6:30:70:c0:e2:95:34:40:41:fc:59: 1b:0a:bc:8a:53:29:1e:91:a8:8e:79:5d:b0:ad:38: e7:5d:12:f2:41:70:7c:74:8c:2f:38:45:17:a0:8e: a9:89:c0:c8:7e:d2:a8:27:da:f7:b6:89:61:ec:80: 96:9f:35:d0:92:f7:95:cd:54:04:b8:82:c4:0f:53: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:79:CD:03:06:B7:9F:0F:4D:BE:F0:05:74:C8:7F:2F:B9:CD:B1:42 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:96:be:94:cf:8d:c7:e6:03:f6:48:ea:f6:39:52:75:bf:28: 7c:d7:52:63:63:4e:e3:99:1b:a9:ee:4d:9b:e1:72:c1:63:5e: 41:2b:c1:50:53:1e:84:57:01:c7:9a:fa:27:d8:a7:cc:a4:30: 03:50:b3:e0:62:b1:c0:67:ce:4f:96:13:93:29:7d:ed:2e:0c: 3f:1c:ab:0e:c1:bb:8a:15:45:ca:d5:38:90:b0:35:88:84:5c: 44:a9:d5:58:f5:97:c3:eb:a5:f5:6a:eb:dd:44:da:2e:55:74: 2d:91:fb:b9:b3:ed:b4:54:95:7f:5f:77:77:cd:2a:f3:65:25: 49:30:da:16:7e:3b:8e:af:57:55:ae:98:bd:87:37:45:5a:be: b2:ed:3c:2c:27:7d:ab:93:7d:57:10:2f:1c:fb:82:b0:8d:ce: 95:15:7f:99:ce:d9:cb:06:88:f9:21:cc:fa:02:b1:5c:6e:cf: 61:c2:1c:8b:29:57:a2:dd:a5:49:62:29:80:f7:d7:75:c0:bd: 18:4f:3b:7d:54:6c:f8:a4:ea:68:59:27:81:7f:1b:d4:a4:cb: 07:74:57:6b:76:85:ed:9a:d4:4b:29:76:4d:64:67:ec:af:65: 56:c2:81:3f:65:d1:8a:f0:76:be:a5:1a:58:88:f2:55:2d:fc: ea:23:df:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwMzI0MjMyODQ2WhcNMjYwMzMxMjMyODQ2WjAYMRYwFAYD VQQDEw02OWMzMWUyZS1lOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EhjsP/T8W+48DoTzwvdD7Z+RMByJlB0n+xnBosC6DUeIaMKDTpL0RupJnS8 LmVvxsJhkASOR36XMXx5EThIdV+swIaIErmhYXM6uR7FykZuNPHsw2wDVweMxCm+ a7LhrjfIb/Wz/oqR2wTqskOUYxcDGFPNZfrm9sOFKGjJSGTzRapCpen9ByJQtroX Fqx2IAPQbNWKvNa+/KD3W9LW7YAmVu+E3x2BpevpnbLtdoa+QnpSTUp2xjBwwOKV NEBB/FkbCryKUykekaiOeV2wrTjnXRLyQXB8dIwvOEUXoI6picDIftKoJ9r3tolh 7ICWnzXQkveVzVQEuILED1PqfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMN5zQMG t58PTb7wBXTIfy+5zbFCMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaJa+lM+Nx+YD9kjq9jlSdb8ofNdSY2NO45kbqe5Nm+FywWNeQSvBUFMehFcB x5r6J9inzKQwA1Cz4GKxwGfOT5YTkyl97S4MPxyrDsG7ihVFytU4kLA1iIRcRKnV WPWXw+ul9Wrr3UTaLlV0LZH7ubPttFSVf193d80q82UlSTDaFn47jq9XVa6YvYc3 RVq+su08LCd9q5N9VxAvHPuCsI3OlRV/mc7ZywaI+SHM+gKxXG7PYcIciylXot2l SWIpgPfXdcC9GE87fVRs+KTqaFkngX8b1KTLB3RXa3aF7ZrUSyl2TWRn7K9lVsKB P2XRivB2vqUaWIjyVS386iPf0g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:50:45 2026 by rpki-client