$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: otBcaLjnMg+A5Rtgq9XbYm/AP/JUbFeFOIBhCSUj70M= Subject key identifier: D4:B8:E5:4A:CD:1E:8A:47:4E:8E:F4:CD:22:0B:6D:9C:20:6E:41:5C Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09EE Signing time: Sat 04 Apr 2026 19:40:25 +0000 Manifest this update: Sat 04 Apr 2026 19:40:25 +0000 Manifest next update: Sat 11 Apr 2026 19:40:25 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: Quvw0w43tbWClNt+A1+IhsvgVDRC8pDjdhr/3ul1kQE=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Apr 4 19:40:25 2026 GMT Not After : Apr 11 19:40:25 2026 GMT Subject: CN=69d16929-62d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ec:f3:d5:38:95:eb:a6:54:98:54:72:51:3c: 29:b5:ed:6f:09:95:42:7d:5a:84:bb:1b:b0:6c:04: 0e:02:f2:b7:04:0f:d0:c5:42:1c:88:c5:4a:6b:d5: 9d:ed:7e:50:df:e1:be:55:b4:c3:02:3c:bc:22:e8: cf:6a:ca:7d:41:9c:57:59:54:e3:b7:b7:63:54:e1: 6f:98:9b:ad:78:37:97:75:42:9f:1f:5b:4f:9f:08: 61:19:d7:84:4d:15:2d:8f:a7:bc:ae:3c:34:ca:e8: de:fd:a4:11:d1:d2:7f:95:04:81:3c:ab:d6:9b:7c: 1e:6c:89:d2:cd:35:9c:49:e4:e3:b0:c0:46:bd:a6: f2:d9:72:8c:34:6e:4f:00:39:0b:23:85:b2:97:3f: 24:9a:77:75:00:4e:55:74:e7:66:ac:b2:b8:23:17: 37:12:16:26:03:41:4a:ff:f7:c4:f5:2f:16:08:ab: 34:09:67:21:4e:ff:f5:bb:bc:0e:8b:f7:0e:7f:7e: 26:b0:a2:99:a4:7b:6f:f7:5f:94:9c:e5:9a:82:fb: 9e:6d:d5:0d:a7:81:1c:0e:3c:3c:e6:6d:84:a0:fb: 59:4f:31:68:33:9f:59:5a:01:d9:2d:0c:6c:b5:bd: 3a:91:5f:00:d1:24:0a:24:9c:31:ef:ad:9f:6c:bb: eb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B8:E5:4A:CD:1E:8A:47:4E:8E:F4:CD:22:0B:6D:9C:20:6E:41:5C X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:bc:a6:c7:31:bb:5d:76:b4:9b:f1:f5:70:8b:ed:f8:26:91: d0:0d:23:ff:f6:a8:92:de:84:15:e6:42:9f:a2:83:fe:ce:17: 48:b2:da:cd:2b:59:b1:39:a4:00:20:0b:7e:7b:59:b4:5c:c9: f5:d7:e2:c2:c7:1a:ea:3e:71:08:74:9b:99:d4:eb:03:1b:41: 91:9d:30:48:de:d9:e9:9a:45:d8:a8:6d:88:75:8d:54:be:8a: 75:72:94:49:12:72:b1:9d:d7:83:8c:eb:0e:9f:ac:c2:d6:dc: 67:7f:33:b9:e2:24:cd:dd:bc:db:69:b2:c7:ff:fb:d9:a7:42: 71:07:aa:54:44:85:47:34:42:4b:84:50:8e:df:97:cc:ea:46: 86:2e:75:51:a6:7a:85:ee:c4:3a:7b:f0:8c:fe:3c:09:04:fb: 72:43:62:1b:f6:f1:7a:2a:5c:e3:d5:4c:c4:49:93:e4:f5:1d: 30:3b:5c:51:60:24:72:1f:e6:e1:a1:61:9c:39:2c:51:cd:ce: b4:86:15:a7:dd:5c:cd:cd:27:c1:85:7b:d4:ec:d1:b4:a0:c7: bb:3e:69:30:db:5e:ca:1d:65:c8:f8:73:33:51:07:76:83:aa: 5e:c2:f4:5c:55:66:34:4b:2b:12:a8:78:2a:32:49:30:11:c7: 89:67:51:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwNDA0MTk0MDI1WhcNMjYwNDExMTk0MDI1WjAYMRYwFAYD VQQDEw02OWQxNjkyOS02MmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuzz1TiV66ZUmFRyUTwpte1vCZVCfVqEuxuwbAQOAvK3BA/QxUIciMVKa9Wd 7X5Q3+G+VbTDAjy8IujPasp9QZxXWVTjt7djVOFvmJuteDeXdUKfH1tPnwhhGdeE TRUtj6e8rjw0yuje/aQR0dJ/lQSBPKvWm3webInSzTWcSeTjsMBGvaby2XKMNG5P ADkLI4Wylz8kmnd1AE5VdOdmrLK4Ixc3EhYmA0FK//fE9S8WCKs0CWchTv/1u7wO i/cOf34msKKZpHtv91+UnOWagvuebdUNp4EcDjw85m2EoPtZTzFoM59ZWgHZLQxs tb06kV8A0SQKJJwx762fbLvrLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNS45UrN HopHTo70zSILbZwgbkFcMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm7ymxzG7XXa0m/H1cIvt+CaR0A0j//aokt6EFeZCn6KD/s4XSLLazStZsTmk ACALfntZtFzJ9dfiwsca6j5xCHSbmdTrAxtBkZ0wSN7Z6ZpF2KhtiHWNVL6KdXKU SRJysZ3Xg4zrDp+swtbcZ38zueIkzd2822myx//72adCcQeqVESFRzRCS4RQjt+X zOpGhi51UaZ6he7EOnvwjP48CQT7ckNiG/bxeipc49VMxEmT5PUdMDtcUWAkch/m 4aFhnDksUc3OtIYVp91czc0nwYV71OzRtKDHuz5pMNteyh1lyPhzM1EHdoOqXsL0 XFVmNEsrEqh4KjJJMBHHiWdRVQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:56:13 2026 by rpki-client