$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: OZWYgF4fu5+TNWeSmtjJTBMe0FqCLxSnv16W/bEI75w= Subject key identifier: EA:A8:82:A7:6B:C8:71:43:86:69:17:DD:BA:A4:D2:94:34:82:7E:57 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09F4 Signing time: Thu 16 Apr 2026 19:46:08 +0000 Manifest this update: Thu 16 Apr 2026 19:46:07 +0000 Manifest next update: Thu 23 Apr 2026 19:46:07 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: 6qFOgApVkAlYX1Y54/zylKr5kSiQcILJWaFHd3DbfGg=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2558 (0x9fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Apr 16 19:46:07 2026 GMT Not After : Apr 23 19:46:07 2026 GMT Subject: CN=69e13c7f-8cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:79:d6:04:d7:d9:f0:21:66:6a:57:fa:7c:a1: c3:83:0f:a3:38:90:95:4a:68:2c:cf:1c:82:93:42: a2:7f:9a:e0:21:03:93:1e:7d:ba:f2:d6:8e:ec:aa: 34:62:2e:8e:66:d8:65:63:36:e4:57:51:28:59:1b: f4:4a:ea:00:ef:7d:35:44:0f:94:d4:5d:89:82:da: 51:03:d9:7d:64:4b:cd:f6:dd:f0:36:e2:49:eb:11: 11:63:09:3c:cc:2a:49:7a:51:2d:61:44:27:0d:76: ea:be:ff:bb:72:25:95:82:c9:23:06:e0:b6:07:91: d9:56:17:80:b8:db:e3:c3:5f:99:98:9b:a1:2a:b2: ab:ab:b8:91:f8:e2:26:db:32:2e:1d:dd:b3:1d:cd: 93:2e:13:5f:44:53:7f:48:fc:4b:e6:25:49:39:0d: d6:34:d7:c4:72:4d:6c:a8:b3:45:63:bd:42:f0:f9: 79:89:80:62:ea:4f:6d:31:c8:08:9f:57:5a:f0:86: 48:6d:85:a6:f4:b1:65:0d:53:d2:6c:30:f5:51:c6: 34:92:a0:5b:8e:5f:36:18:a5:78:68:91:53:c9:7e: 38:bf:12:72:09:dc:e5:2b:04:bf:05:56:84:09:19: d3:d3:f6:d6:68:7a:61:82:33:54:da:0d:d8:7b:dc: b9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A8:82:A7:6B:C8:71:43:86:69:17:DD:BA:A4:D2:94:34:82:7E:57 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b0:04:56:27:70:76:92:c1:b8:a5:25:2f:f6:e1:2f:42:0e: 5d:58:93:60:86:b1:39:b2:7d:ce:52:91:ca:0f:c8:45:a4:a6: 40:3c:a7:db:a6:08:80:c9:5a:7b:37:c4:a4:72:37:ea:e5:b0: cf:fd:76:1f:88:e0:7c:a6:0f:85:fe:4e:6d:7b:84:f6:89:bc: 4f:ef:1f:68:1d:49:87:b5:be:ba:2c:0e:68:ff:63:db:3c:bd: 41:7a:21:bd:55:7c:a3:b5:40:1f:64:76:05:a5:ba:99:32:45: 78:25:a4:08:b9:a2:7a:d6:2f:0f:6d:d1:7d:cf:ad:a5:52:ee: 1a:a9:34:38:56:b6:fa:58:19:47:40:80:7e:cb:3f:cf:0b:06: 87:d1:dd:53:50:6c:57:96:f6:b2:d2:7e:b0:f5:0b:b8:92:89: ec:f8:1b:12:94:cd:22:6f:62:4e:96:a8:30:86:cb:8e:58:76: 1e:30:ad:27:ac:72:b0:cb:c6:af:c2:aa:c8:70:24:de:a1:a6: 51:87:98:99:7b:f3:cb:e7:ff:f8:4a:53:13:08:81:3f:a2:60: 35:eb:1b:af:10:09:3b:70:85:c1:23:f4:42:3c:d9:50:fb:ad: 64:44:9a:31:af:b7:03:83:aa:38:a7:76:dc:2e:bf:0d:35:d5: 5b:6a:03:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwNDE2MTk0NjA3WhcNMjYwNDIzMTk0NjA3WjAYMRYwFAYD VQQDEw02OWUxM2M3Zi04Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonnWBNfZ8CFmalf6fKHDgw+jOJCVSmgszxyCk0Kif5rgIQOTHn268taO7Ko0 Yi6OZthlYzbkV1EoWRv0SuoA7301RA+U1F2JgtpRA9l9ZEvN9t3wNuJJ6xERYwk8 zCpJelEtYUQnDXbqvv+7ciWVgskjBuC2B5HZVheAuNvjw1+ZmJuhKrKrq7iR+OIm 2zIuHd2zHc2TLhNfRFN/SPxL5iVJOQ3WNNfEck1sqLNFY71C8Pl5iYBi6k9tMcgI n1da8IZIbYWm9LFlDVPSbDD1UcY0kqBbjl82GKV4aJFTyX44vxJyCdzlKwS/BVaE CRnT0/bWaHphgjNU2g3Ye9y5swIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqogqdr yHFDhmkX3bqk0pQ0gn5XMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkbAEVidwdpLBuKUlL/bhL0IOXViTYIaxObJ9zlKRyg/IRaSmQDyn26YIgMla ezfEpHI36uWwz/12H4jgfKYPhf5ObXuE9om8T+8faB1Jh7W+uiwOaP9j2zy9QXoh vVV8o7VAH2R2BaW6mTJFeCWkCLmietYvD23Rfc+tpVLuGqk0OFa2+lgZR0CAfss/ zwsGh9HdU1BsV5b2stJ+sPULuJKJ7PgbEpTNIm9iTpaoMIbLjlh2HjCtJ6xysMvG r8KqyHAk3qGmUYeYmXvzy+f/+EpTEwiBP6JgNesbrxAJO3CFwSP0QjzZUPutZESa Ma+3A4OqOKd23C6/DTXVW2oD4w== -----END CERTIFICATE-----Generated at Fri Apr 17 23:37:03 2026 by rpki-client