$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: 4v/9OuEhsLbI3DTJ7HeFsksIw5aNS9qHtp0Dq9hjNsY= Subject key identifier: 0A:70:34:67:DB:12:39:09:49:34:C4:AE:E6:17:08:3F:66:EC:44:CF Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04FD Signing time: Wed 20 May 2026 23:47:04 +0000 Manifest this update: Wed 20 May 2026 23:47:04 +0000 Manifest next update: Wed 27 May 2026 23:47:04 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 55dwftPbIEBcyEPKDEL+BkVuCcXGGaBIFsd1Qjn4H3k=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: May 20 23:47:04 2026 GMT Not After : May 27 23:47:04 2026 GMT Subject: CN=6a0e47f8-33b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b0:59:90:56:ed:a8:28:dc:67:4a:ae:a8:cd: 85:85:97:8f:d1:ef:19:e5:7d:b7:c3:0c:94:f2:51: 59:24:1a:c3:ef:e9:39:7b:e5:7e:a6:2c:a0:dd:a6: f2:3c:cc:02:22:5c:2a:28:98:0e:fb:aa:12:38:fc: 1b:c1:66:2a:80:65:54:4e:4f:0b:f2:26:d9:26:fd: 31:55:06:36:ff:39:8a:79:02:d1:19:b0:d9:67:27: a8:a0:00:b4:8a:89:79:42:89:53:1e:8c:1b:7a:13: 47:39:c9:f5:e2:07:27:b0:9e:d2:55:08:ce:a0:c9: a9:fd:3f:ac:e1:15:57:24:e2:da:7e:68:a6:7b:b9: 18:a8:d8:41:24:f0:92:b5:0e:6b:1c:88:9c:ca:d6: ee:71:10:43:9f:66:ac:06:e3:86:10:5e:f0:48:2b: c0:d6:56:b4:90:49:f5:a4:1b:16:4b:aa:09:c3:b8: 70:d4:98:e6:43:2d:15:be:9a:3a:e6:c3:a7:08:15: 55:37:b4:ab:f0:5f:82:92:0d:db:2f:d2:d1:9d:ce: 21:a0:0d:b0:5d:d8:04:40:da:84:01:15:1d:0a:39: 44:2e:b8:82:b8:91:13:91:f5:9c:ff:0e:19:15:88: 91:64:9e:b6:27:2b:20:e2:fc:b5:2c:24:af:d9:2a: 2b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:70:34:67:DB:12:39:09:49:34:C4:AE:E6:17:08:3F:66:EC:44:CF X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:fe:05:36:ad:2a:40:3d:0c:3c:ed:a8:18:7c:f4:c5:5e:24: 7f:20:52:34:b9:2d:23:59:d4:40:79:79:02:ac:76:db:00:fd: 05:3f:1e:a7:3a:2c:5c:d9:09:32:d1:c3:23:51:5b:d6:26:3c: 39:ea:20:d8:a3:4e:9e:e2:8f:c0:41:02:b6:01:b2:52:dc:fd: 84:a5:df:27:c9:79:05:d3:e7:3d:48:4c:2b:64:de:36:26:72: 49:cd:0c:c8:03:3c:47:33:f2:e0:b8:87:64:e0:47:46:08:6b: f5:4f:90:9a:40:fd:cb:35:d2:18:fd:4b:51:fd:dd:9f:d0:c3: 0d:2e:06:cf:dc:c1:24:a5:b0:14:b1:7a:99:8a:d8:a4:bf:58: b7:fc:ee:77:e8:1a:a4:b9:ab:fb:5e:ce:80:04:a8:9f:7c:d7: b3:e3:51:17:6b:4a:3d:16:b1:ef:ce:2e:b4:b5:c2:cc:09:7a: 93:95:a8:c3:63:43:9e:b9:84:37:73:3d:3a:68:43:fd:a4:db: 94:cd:d7:e2:58:42:4e:46:a2:4b:83:64:dd:0b:2d:7c:ac:95: c6:c1:8f:10:51:0d:80:a3:3f:d9:e7:6f:cb:b8:5b:97:49:cb: ff:71:f9:7d:d7:ee:1e:d0:48:3f:b6:1d:89:2c:41:9f:48:15: 22:e5:05:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwNTIwMjM0NzA0WhcNMjYwNTI3MjM0NzA0WjAYMRYwFAYD VQQDEw02YTBlNDdmOC0zM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLBZkFbtqCjcZ0quqM2FhZeP0e8Z5X23wwyU8lFZJBrD7+k5e+V+piyg3aby PMwCIlwqKJgO+6oSOPwbwWYqgGVUTk8L8ibZJv0xVQY2/zmKeQLRGbDZZyeooAC0 iol5QolTHowbehNHOcn14gcnsJ7SVQjOoMmp/T+s4RVXJOLafmime7kYqNhBJPCS tQ5rHIicytbucRBDn2asBuOGEF7wSCvA1la0kEn1pBsWS6oJw7hw1JjmQy0Vvpo6 5sOnCBVVN7Sr8F+Ckg3bL9LRnc4hoA2wXdgEQNqEARUdCjlELriCuJETkfWc/w4Z FYiRZJ62Jysg4vy1LCSv2SornwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFApwNGfb EjkJSTTEruYXCD9m7ETPMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnf4FNq0qQD0MPO2oGHz0xV4kfyBSNLktI1nUQHl5Aqx22wD9BT8epzosXNkJ MtHDI1Fb1iY8Oeog2KNOnuKPwEECtgGyUtz9hKXfJ8l5BdPnPUhMK2TeNiZySc0M yAM8RzPy4LiHZOBHRghr9U+QmkD9yzXSGP1LUf3dn9DDDS4Gz9zBJKWwFLF6mYrY pL9Yt/zud+gapLmr+17OgASon3zXs+NRF2tKPRax784utLXCzAl6k5Wow2NDnrmE N3M9OmhD/aTblM3X4lhCTkaiS4Nk3QstfKyVxsGPEFENgKM/2edvy7hbl0nL/3H5 fdfuHtBIP7YdiSxBn0gVIuUFlA== -----END CERTIFICATE-----Generated at Thu May 21 09:39:24 2026 by rpki-client