$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: MIDgJ/EgsqoYWgK3CoiGev4KMR5VIuzpwq29xmmkICQ= Subject key identifier: 6A:A3:E6:7B:22:C2:CD:FC:28:85:38:8B:8F:CA:02:DE:86:FC:17:D5 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 048B Signing time: Sun 19 Oct 2025 01:54:18 +0000 Manifest this update: Sun 19 Oct 2025 01:54:17 +0000 Manifest next update: Sun 26 Oct 2025 01:54:17 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: CM95q9w81J+hLkDUs/IWYlCtr2JBxido3bgl0Mpo/1c=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: /fF1tdSaYFH2w1w+0HXHgYqEthaF4A0sGCD2uCBxpiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Oct 19 01:54:17 2025 GMT Not After : Oct 26 01:54:17 2025 GMT Subject: CN=68f444c9-4fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:92:c7:68:5c:a4:29:e3:02:12:d3:fc:53:02: 59:6e:5a:df:db:40:4f:fb:d5:5f:ad:d7:84:7c:69: ad:36:37:8e:f7:e6:39:13:e4:22:3f:b6:25:e8:e0: 79:21:2e:c3:69:bf:28:e9:5d:cd:76:ac:88:ed:c9: 12:c0:d4:62:80:6b:72:02:87:5a:7a:81:9c:91:0c: 58:8e:bd:dc:13:70:f5:cb:16:19:08:d5:a4:f4:1e: af:b6:7f:13:c2:37:5e:f6:19:a2:60:2a:39:6e:45: d9:21:34:79:9d:17:b1:20:c6:48:fb:13:53:17:11: a5:14:be:36:44:93:97:0c:37:cb:de:54:9e:22:fb: e6:a9:51:a9:71:82:14:6d:b1:24:b0:f8:e3:bb:ab: cf:d4:8c:be:08:86:4a:9c:18:41:46:72:6f:ee:d9: 39:77:55:c3:b6:d0:a0:5b:b4:1e:26:4a:fa:ff:2b: 1c:4a:59:7e:2b:19:d7:8f:18:9f:cc:8c:ab:23:3e: 06:78:d3:a6:c1:4f:83:00:3f:77:5b:88:d2:bb:96: 20:92:86:b2:ba:dd:f0:85:99:08:9e:44:46:ca:5e: 9d:43:7b:01:54:15:13:79:35:64:13:d9:11:40:3d: bb:a8:84:54:3f:d6:83:46:59:5d:54:e7:a5:b3:32: bc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A3:E6:7B:22:C2:CD:FC:28:85:38:8B:8F:CA:02:DE:86:FC:17:D5 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:60:20:1b:d9:1a:6d:18:50:af:83:fe:52:b2:f4:3f:e5:a2: fd:4d:14:e3:32:7c:ae:2f:ff:61:dc:8c:b2:ad:5e:3c:fa:3a: b7:07:a7:03:5f:da:3c:53:9b:f0:08:7a:0f:52:90:6b:2d:a3: 22:d6:8f:4c:7a:99:14:97:cf:9d:28:a8:3b:36:18:24:2a:83: 93:69:89:c5:25:8c:ce:49:e4:e0:b2:60:0d:55:55:5f:fa:d7: 8c:3e:6e:ff:f9:50:76:c8:14:e3:09:7c:e5:ad:24:9e:36:4e: 22:9d:c4:ea:a9:7f:30:fd:3c:e7:7e:a1:cf:46:40:5b:43:52: 39:ae:81:71:b9:e3:01:8c:2c:8a:e6:5a:6a:4f:6a:bf:f8:46: 7d:c8:45:0f:f0:51:54:b8:de:cb:fc:49:ea:94:e9:43:cd:6f: e8:a4:ce:0e:f6:b2:9c:8b:0e:d5:a7:5d:42:9e:c6:16:c9:b7: 8d:e7:93:47:d1:de:8a:fe:93:84:50:bb:f5:e3:e7:5d:43:7c: 85:fe:17:56:39:19:1e:52:2c:ed:18:49:ed:cf:ac:a9:3a:a0: 92:61:ce:a8:81:d3:73:49:20:df:1d:02:0b:cb:30:d2:a9:67: 18:cc:2a:3f:1f:e4:43:a2:dd:01:f6:fd:f7:46:95:d6:a7:e2: 93:e1:b0:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUxMDE5MDE1NDE3WhcNMjUxMDI2MDE1NDE3WjAYMRYwFAYD VQQDEw02OGY0NDRjOS00ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpLHaFykKeMCEtP8UwJZblrf20BP+9VfrdeEfGmtNjeO9+Y5E+QiP7Yl6OB5 IS7Dab8o6V3NdqyI7ckSwNRigGtyAodaeoGckQxYjr3cE3D1yxYZCNWk9B6vtn8T wjde9hmiYCo5bkXZITR5nRexIMZI+xNTFxGlFL42RJOXDDfL3lSeIvvmqVGpcYIU bbEksPjju6vP1Iy+CIZKnBhBRnJv7tk5d1XDttCgW7QeJkr6/yscSll+KxnXjxif zIyrIz4GeNOmwU+DAD93W4jSu5Ygkoayut3whZkInkRGyl6dQ3sBVBUTeTVkE9kR QD27qIRUP9aDRlldVOelszK8dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqj5nsi ws38KIU4i4/KAt6G/BfVMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJYCAb2RptGFCvg/5SsvQ/5aL9TRTjMnyuL/9h3IyyrV48+jq3B6cD X9o8U5vwCHoPUpBrLaMi1o9MepkUl8+dKKg7NhgkKoOTaYnFJYzOSeTgsmANVVVf +teMPm7/+VB2yBTjCXzlrSSeNk4incTqqX8w/TznfqHPRkBbQ1I5roFxueMBjCyK 5lpqT2q/+EZ9yEUP8FFUuN7L/EnqlOlDzW/opM4O9rKciw7Vp11CnsYWybeN55NH 0d6K/pOEULv14+ddQ3yF/hdWORkeUiztGEntz6ypOqCSYc6ogdNzSSDfHQILyzDS qWcYzCo/H+RDot0B9v33RpXWp+KT4bDF -----END CERTIFICATE-----Generated at Mon Oct 20 08:48:53 2025 by rpki-client