$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: 5dXJUcwGif9ZdBw/SCKd7e8U1NtV+UNCBZ8eZJInQeA= Subject key identifier: 8D:EC:23:1A:7C:A2:ED:E8:5D:79:D3:A7:4C:E4:04:80:58:E8:4F:16 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0A20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 0A16 Signing time: Mon 22 Jun 2026 19:48:48 +0000 Manifest this update: Mon 22 Jun 2026 19:48:48 +0000 Manifest next update: Mon 29 Jun 2026 19:48:48 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: lrbU5oAy6Y10iQ7NAqSI43g6J036po3t5xXZOQlj4g4=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 19:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2592 (0xa20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Jun 22 19:48:48 2026 GMT Not After : Jun 29 19:48:48 2026 GMT Subject: CN=6a3991a0-a078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:f6:8e:a7:df:47:f1:10:cb:74:f7:96:bc: bc:21:41:11:67:6e:cf:a7:f6:4e:d9:6c:ef:35:fe: 5b:83:3f:11:e6:cc:98:08:8c:ca:b7:f0:f8:3a:26: 8a:e9:2e:af:4d:40:4f:1d:90:e6:c3:a4:6b:b5:9d: 16:c6:d7:36:f3:d8:df:68:38:b6:7f:77:f4:4a:e3: b3:47:39:c0:1b:e1:2d:ee:8d:04:62:e6:b1:26:20: 58:de:d3:d3:7e:cc:7c:20:43:a7:02:40:e6:2b:5d: 4c:03:64:52:c2:cd:5e:b5:15:f4:f1:e3:d0:06:04: 28:fe:6d:59:1b:5c:b9:6c:65:2d:da:b6:1c:e3:4a: 33:08:2a:e0:ac:7e:42:3c:7c:7e:81:74:5e:69:4d: f0:c6:0c:93:60:ff:49:bd:df:2c:64:2f:0d:b8:ae: 64:cb:4a:c4:4e:69:59:f6:d5:43:7f:e5:06:a7:d0: 24:12:36:45:74:02:f9:36:8c:ff:cb:26:26:fa:26: 8c:06:94:99:76:24:2e:30:90:0e:6a:8f:af:72:51: 85:c1:ac:a8:22:76:75:ab:59:19:fa:76:18:01:5c: 0b:55:a2:95:16:88:97:d1:ad:c4:40:19:5b:c9:24: 45:d5:db:46:8f:67:a8:0f:3d:98:08:55:5f:62:23: 6d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EC:23:1A:7C:A2:ED:E8:5D:79:D3:A7:4C:E4:04:80:58:E8:4F:16 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:70:74:6c:3a:da:bf:1f:c6:4c:b1:8f:05:fe:fb:54:36:f8: e5:fd:b3:ab:8f:a6:04:38:0a:ec:68:bc:e4:72:c1:f6:1b:6f: 1e:df:5a:6f:df:e5:4d:f1:27:cc:30:d3:c8:3e:42:fb:8a:8b: 5c:b0:17:9d:ad:7c:88:25:6b:72:64:d5:0a:2e:ed:09:6c:3f: fc:68:96:4e:f0:d0:c4:f6:b1:2f:b2:03:46:67:06:00:9c:4a: 61:6c:91:db:25:48:d3:ba:bc:8b:48:ed:55:e0:75:09:8d:46: 70:de:69:ec:b7:4a:da:fe:40:a1:88:7a:c1:a9:ef:38:20:5b: 27:fc:6f:2e:9d:12:b6:cd:9a:e5:ed:d8:f2:58:c8:25:13:68: 1f:7b:19:84:00:2c:d3:90:ab:a9:6d:3d:3b:bf:6d:50:97:91: de:9d:0d:02:96:ef:a0:0d:1a:4b:fe:0d:e9:8e:4a:b0:d2:95: 3e:63:b7:38:ef:a4:54:31:9b:84:a4:c2:bf:5f:f0:58:14:dc: f3:d9:92:bd:68:d8:74:1d:e5:70:61:36:82:4a:57:02:7f:ed: fe:5c:1b:45:73:b7:73:bf:b1:fe:3d:89:86:f1:cb:43:b1:7e: c8:ba:2f:4b:ab:a9:97:11:f2:e9:bc:d5:0b:b4:ec:13:10:67: 9d:7a:01:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwNjIyMTk0ODQ4WhcNMjYwNjI5MTk0ODQ4WjAYMRYwFAYD VQQDEw02YTM5OTFhMC1hMDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvv2jqffR/EQy3T3lry8IUERZ27Pp/ZO2WzvNf5bgz8R5syYCIzKt/D4OiaK 6S6vTUBPHZDmw6RrtZ0Wxtc289jfaDi2f3f0SuOzRznAG+Et7o0EYuaxJiBY3tPT fsx8IEOnAkDmK11MA2RSws1etRX08ePQBgQo/m1ZG1y5bGUt2rYc40ozCCrgrH5C PHx+gXReaU3wxgyTYP9Jvd8sZC8NuK5ky0rETmlZ9tVDf+UGp9AkEjZFdAL5Noz/ yyYm+iaMBpSZdiQuMJAOao+vclGFwayoInZ1q1kZ+nYYAVwLVaKVFoiX0a3EQBlb ySRF1dtGj2eoDz2YCFVfYiNtdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3sIxp8 ou3oXXnTp0zkBIBY6E8WMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGnB0bDravx/GTLGPBf77VDb45f2zq4+mBDgK7Gi85HLB9htvHt9ab9/lTfEn zDDTyD5C+4qLXLAXna18iCVrcmTVCi7tCWw//GiWTvDQxPaxL7IDRmcGAJxKYWyR 2yVI07q8i0jtVeB1CY1GcN5p7LdK2v5AoYh6wanvOCBbJ/xvLp0Sts2a5e3Y8ljI JRNoH3sZhAAs05CrqW09O79tUJeR3p0NApbvoA0aS/4N6Y5KsNKVPmO3OO+kVDGb hKTCv1/wWBTc89mSvWjYdB3lcGE2gkpXAn/t/lwbRXO3c7+x/j2JhvHLQ7F+yLov S6uplxHy6bzVC7TsExBnnXoB4g== -----END CERTIFICATE-----Generated at Wed Jun 24 11:27:07 2026 by rpki-client