$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: q89K/V6SStVdRO7r8bAQtF+CI/WhsC+2XR3qYnz1/CA= Subject key identifier: 22:FA:E3:11:D6:88:2F:30:FF:8D:B0:12:3D:4F:44:3C:16:D4:09:D1 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 099B Signing time: Tue 04 Nov 2025 20:08:28 +0000 Manifest this update: Tue 04 Nov 2025 20:08:28 +0000 Manifest next update: Tue 11 Nov 2025 20:08:28 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: 4QmY8AE7LesCn2K8a43743hjoMVm35WpSNUU3VAcW7M=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: Z6vRCcxL1bmdrItPmj7qCyzvetl7oMIALv4P0w4CxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Nov 4 20:08:28 2025 GMT Not After : Nov 11 20:08:28 2025 GMT Subject: CN=690a5d3c-ba4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:04:12:8f:33:10:b5:d3:54:00:4a:e0:bc:99: e5:e2:8c:d2:d0:03:3e:cb:4c:90:1b:a0:f2:f4:57: 5e:fe:01:14:09:46:22:2b:99:87:db:a1:08:5f:6b: 66:d3:fc:f3:b3:03:f5:7c:f3:22:ab:8d:5e:fe:f7: cc:ef:32:2a:7c:cc:3c:40:a0:d1:e2:d0:bb:16:c0: 7b:92:63:aa:22:55:99:1a:b7:87:4a:65:26:38:03: d0:8d:28:b6:37:e1:de:0d:80:9f:4b:dc:83:0c:44: 43:4c:e3:8c:df:78:e8:4c:02:87:d1:4b:ba:ac:46: d1:51:68:60:e2:13:d3:b7:5c:c2:b5:e2:0e:42:d9: 42:00:9d:cc:27:2d:04:bd:e3:22:fd:68:44:10:80: 0e:3c:53:6f:ca:ae:f2:b7:59:ae:2f:93:36:4a:8d: 49:a0:4d:27:52:bd:a6:65:de:7b:06:e6:f6:0e:97: 9c:15:5e:cf:c2:ff:40:5f:7f:ea:8e:82:ba:ec:e6: 8d:12:f4:07:af:25:f9:e4:b1:2a:31:fc:82:63:12: 61:77:ee:55:93:27:5d:5a:57:da:49:1b:54:0d:0f: f6:4c:9e:be:03:55:51:9c:c7:89:7d:18:d7:f3:f0: 35:5e:a4:7d:4d:dc:f0:9d:cb:89:48:87:89:28:e5: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FA:E3:11:D6:88:2F:30:FF:8D:B0:12:3D:4F:44:3C:16:D4:09:D1 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b8:ee:42:96:81:1e:95:ad:fe:f0:da:47:78:66:7b:91:8e: d5:0d:aa:64:6b:58:6b:ce:f9:e7:e3:5a:55:2a:0e:57:8b:63: 1d:a7:ab:34:d7:51:36:84:9d:b9:91:dc:b8:17:d3:5f:66:b1: 4b:ba:de:16:ae:f2:bc:68:48:55:a5:98:70:87:74:64:70:8c: 70:65:ff:79:21:8e:70:45:1d:ac:f2:2a:cf:05:b7:5a:7d:ec: 27:fd:1c:89:3a:5c:52:0c:d4:b2:ca:1c:2f:9f:9c:d7:dc:41: c5:3e:92:58:11:5d:4e:21:9c:66:58:b2:4b:26:c3:a6:9a:cc: 59:77:18:d7:ce:ff:c2:4b:4d:96:de:ba:15:02:c5:b3:cc:fd: da:6d:23:66:b1:4e:ab:1d:8e:dd:f3:d5:c5:17:da:68:39:7f: 5d:5b:6a:66:f0:76:36:68:7a:6a:b7:13:cb:24:dc:d8:b4:11: 11:87:56:ab:30:11:45:dc:9d:01:0b:38:26:b8:fd:e1:a3:66: 6a:21:04:86:2f:6e:4d:87:58:5b:70:5b:58:0c:a9:11:a3:29: e7:26:58:7d:57:0a:0b:3a:1b:7c:53:72:7f:4b:f7:b7:12:9c: 32:32:fb:95:fe:7b:a2:fd:ba:01:f3:28:ab:06:b2:74:bd:91: a4:62:c9:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjUxMTA0MjAwODI4WhcNMjUxMTExMjAwODI4WjAYMRYwFAYD VQQDEw02OTBhNWQzYy1iYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wQSjzMQtdNUAErgvJnl4ozS0AM+y0yQG6Dy9Fde/gEUCUYiK5mH26EIX2tm 0/zzswP1fPMiq41e/vfM7zIqfMw8QKDR4tC7FsB7kmOqIlWZGreHSmUmOAPQjSi2 N+HeDYCfS9yDDERDTOOM33joTAKH0Uu6rEbRUWhg4hPTt1zCteIOQtlCAJ3MJy0E veMi/WhEEIAOPFNvyq7yt1muL5M2So1JoE0nUr2mZd57Bub2DpecFV7Pwv9AX3/q joK67OaNEvQHryX55LEqMfyCYxJhd+5VkyddWlfaSRtUDQ/2TJ6+A1VRnMeJfRjX 8/A1XqR9TdzwncuJSIeJKOUD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL64xHW iC8w/42wEj1PRDwW1AnRMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATuO5CloEela3+8NpHeGZ7kY7VDapka1hrzvnn41pVKg5Xi2Mdp6s0 11E2hJ25kdy4F9NfZrFLut4WrvK8aEhVpZhwh3RkcIxwZf95IY5wRR2s8irPBbda fewn/RyJOlxSDNSyyhwvn5zX3EHFPpJYEV1OIZxmWLJLJsOmmsxZdxjXzv/CS02W 3roVAsWzzP3abSNmsU6rHY7d89XFF9poOX9dW2pm8HY2aHpqtxPLJNzYtBERh1ar MBFF3J0BCzgmuP3ho2ZqIQSGL25Nh1hbcFtYDKkRoynnJlh9VwoLOht8U3J/S/e3 EpwyMvuV/nui/boB8yirBrJ0vZGkYsnr -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:03 2025 by rpki-client