$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: Xg579msJy2JiX8MM7+Osv8WpWFVJLLIQpgdAN+casRc= Subject key identifier: 45:89:95:6A:CD:3C:AE:22:56:DA:D3:14:37:24:DD:5D:03:DC:5F:4D Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04E6 Signing time: Sat 04 Apr 2026 23:33:44 +0000 Manifest this update: Sat 04 Apr 2026 23:33:43 +0000 Manifest next update: Sat 11 Apr 2026 23:33:43 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 9VATrPCnvDfDanszmysgw3PQqVKC21bqClf3JN3HFVg=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Apr 4 23:33:43 2026 GMT Not After : Apr 11 23:33:43 2026 GMT Subject: CN=69d19fd8-faec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d6:e1:6e:d7:bf:95:30:7d:e5:09:96:52:14: 9f:16:70:c5:5d:24:16:7d:52:99:f7:dc:a5:c4:02: a7:64:15:32:62:b6:25:ef:f7:9e:49:f2:30:db:73: c8:13:0e:e1:15:a8:c7:aa:48:b2:84:7b:16:a7:4d: b9:af:87:ba:8c:10:be:15:8b:e7:1e:11:77:7c:4c: 26:64:e4:5f:cc:45:95:a4:06:c4:22:62:c8:ad:16: 40:a3:14:4d:b2:7b:0c:81:d4:9d:b1:ff:53:91:a7: d6:f7:e4:0f:fc:ad:3a:46:62:8f:7e:34:e7:bb:06: 37:e4:9b:9a:83:57:ed:58:89:bb:7c:48:34:1e:33: 6e:ae:77:f5:6e:57:5c:29:7d:f3:42:de:9b:31:b2: 8a:0a:e9:75:f0:e4:e9:27:c7:6b:59:1d:e1:c9:0f: 77:6c:94:6a:cf:43:e8:c1:57:04:f6:bd:02:2d:8b: 9f:33:ef:50:d6:06:cd:c3:0e:5e:b4:42:7c:c0:8e: 85:7b:5d:84:bd:81:c1:5c:ac:18:de:18:ef:37:9a: 22:bf:c4:93:2b:be:ec:d5:57:63:d1:2e:fe:f8:9f: 28:87:9f:1f:09:76:67:02:2b:5f:92:14:e4:aa:90: 8a:a1:7f:8f:56:4f:f7:48:75:cd:0f:2d:ad:5e:a1: b6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:89:95:6A:CD:3C:AE:22:56:DA:D3:14:37:24:DD:5D:03:DC:5F:4D X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:04:71:4c:aa:a7:ea:19:a5:2f:c4:c1:bc:3a:a5:b5:49:11: 3c:4b:97:92:fa:3a:bf:7a:6a:cf:00:e8:1d:bb:e9:37:9d:45: 60:31:85:d0:30:fc:ac:82:bd:7e:8e:6f:88:ce:19:c1:99:80: 25:09:eb:e9:c7:f4:a6:0e:42:37:79:a0:b0:05:75:ac:82:2f: 5c:30:f1:29:4c:b7:c1:30:9e:32:35:73:d9:eb:7d:15:ed:4c: fe:3b:0c:2c:36:23:cc:a6:da:0e:56:b1:52:c9:30:da:70:01: 97:bd:24:d2:45:52:0d:e1:f7:a2:fe:79:a1:fd:f3:0f:7d:1c: f8:e6:f7:cd:99:14:ae:89:9e:e9:dc:41:43:61:f2:6b:8c:62: e0:16:1f:4d:3a:0d:d6:03:c6:f7:e6:23:15:d9:89:1a:be:29: e7:fd:00:cd:aa:95:57:d0:89:0b:42:7f:15:d0:a5:34:a7:4d: 07:19:36:36:cf:34:28:92:e4:bd:62:67:2c:2d:1a:5b:8b:48: 74:28:6b:21:c7:5d:6d:13:a8:19:99:d6:b2:07:ca:aa:ab:b2: 31:84:b8:cf:a7:32:41:99:a0:0d:16:91:05:ed:77:71:40:71: 80:f6:99:ff:49:85:f5:0b:97:0f:6a:d8:a1:af:f1:10:fc:47: d7:9a:fc:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwNDA0MjMzMzQzWhcNMjYwNDExMjMzMzQzWjAYMRYwFAYD VQQDEw02OWQxOWZkOC1mYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdbhbte/lTB95QmWUhSfFnDFXSQWfVKZ99ylxAKnZBUyYrYl7/eeSfIw23PI Ew7hFajHqkiyhHsWp025r4e6jBC+FYvnHhF3fEwmZORfzEWVpAbEImLIrRZAoxRN snsMgdSdsf9TkafW9+QP/K06RmKPfjTnuwY35Juag1ftWIm7fEg0HjNurnf1bldc KX3zQt6bMbKKCul18OTpJ8drWR3hyQ93bJRqz0PowVcE9r0CLYufM+9Q1gbNww5e tEJ8wI6Fe12EvYHBXKwY3hjvN5oiv8STK77s1Vdj0S7++J8oh58fCXZnAitfkhTk qpCKoX+PVk/3SHXNDy2tXqG2AwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEWJlWrN PK4iVtrTFDck3V0D3F9NMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGwRxTKqn6hmlL8TBvDqltUkRPEuXkvo6v3pqzwDoHbvpN51FYDGF0DD8rIK9 fo5viM4ZwZmAJQnr6cf0pg5CN3mgsAV1rIIvXDDxKUy3wTCeMjVz2et9Fe1M/jsM LDYjzKbaDlaxUskw2nABl70k0kVSDeH3ov55of3zD30c+Ob3zZkUrome6dxBQ2Hy a4xi4BYfTToN1gPG9+YjFdmJGr4p5/0AzaqVV9CJC0J/FdClNKdNBxk2Ns80KJLk vWJnLC0aW4tIdChrIcddbROoGZnWsgfKqquyMYS4z6cyQZmgDRaRBe13cUBxgPaZ /0mF9QuXD2rYoa/xEPxH15r8FA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:33:13 2026 by rpki-client