$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: 5npLcHB2t17hiqi3Blw2/UL0QlaCSqxhCDpGWpve8SU= Subject key identifier: 0D:63:78:F2:62:17:5B:0F:95:97:72:31:3A:8F:E9:CA:2D:3C:D4:31 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 09E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 09DC Signing time: Mon 02 Mar 2026 00:41:12 +0000 Manifest this update: Mon 02 Mar 2026 00:41:10 +0000 Manifest next update: Mon 09 Mar 2026 00:41:10 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: zvBt+xGu2Cgm1QCULnICbs3ZVOk3V1qc7ZE7eDAcWxM=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2534 (0x9e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Mar 2 00:41:10 2026 GMT Not After : Mar 9 00:41:10 2026 GMT Subject: CN=69a4dca7-bb73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:1a:3b:20:f0:46:a6:c3:5e:12:03:61:9f: 84:1c:1e:a1:9e:ae:61:36:d5:af:60:55:30:c7:e6: 40:e1:d8:6b:44:69:25:3a:b5:f3:cf:eb:c6:c0:a9: 2f:66:9f:17:70:68:58:e7:7d:8a:46:98:1b:77:b1: 6f:c8:a6:50:d1:09:da:71:f8:1b:c1:43:1b:ce:ca: 73:d7:1d:49:05:f8:28:b0:a4:61:a7:e2:75:88:77: 4d:db:d7:ca:9c:b3:72:11:ca:5b:7d:a7:8a:61:53: 42:3f:46:0a:6f:46:26:25:22:d6:e8:bc:94:f7:d3: a6:79:c1:5e:9f:ee:05:7a:a0:da:42:ae:15:8a:06: d3:5a:bb:fc:a4:f9:6b:e4:e1:3e:7f:5e:8f:e6:d5: 50:65:b5:62:ec:2a:6e:da:aa:16:67:d5:bb:c4:71: 0d:ec:50:c2:c2:64:57:85:c7:79:07:e2:f1:26:37: 76:2b:6f:94:9f:35:fa:0d:2f:a4:ce:34:08:1d:27: 0a:70:0e:6f:04:1a:b4:a0:ed:bc:1f:d0:d3:fc:94: 0b:f3:5c:47:75:0a:e3:c1:68:e8:28:17:a5:00:e5: dd:aa:4b:0c:23:85:fd:9b:af:33:55:63:53:b9:8a: 35:66:b0:e0:b3:a6:e2:30:66:68:48:75:8a:b4:20: 9a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:63:78:F2:62:17:5B:0F:95:97:72:31:3A:8F:E9:CA:2D:3C:D4:31 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6d:ce:5f:ee:ed:29:02:ac:43:15:16:91:c8:d5:63:e3:1b: c2:c7:39:6a:06:70:0e:f5:34:6b:7f:4e:3a:35:32:0d:ae:74: ec:e5:0f:10:23:75:09:4d:e1:01:cb:95:b3:82:51:c2:12:05: 5e:57:d2:2c:90:1b:d8:5b:f6:7d:df:9c:a2:3c:a1:da:18:e7: ea:37:1d:b8:62:6b:a7:d7:e9:dd:9d:a4:4d:38:5f:3b:9b:4b: b9:76:88:81:a1:12:9f:11:b5:81:e3:45:19:56:97:08:4a:57: fb:e1:f0:73:0f:59:8e:7d:cb:4f:e5:02:00:cc:20:ce:01:cd: dc:aa:73:3d:5c:eb:2f:cb:cc:b2:49:85:b5:8e:ca:b0:2c:83: eb:5f:22:61:04:46:30:4b:d2:c1:f4:96:32:91:b5:ee:1e:c8: 91:c0:d6:b1:f2:fa:c4:f4:4f:13:89:7c:88:1d:ab:03:ff:1c: 1a:9f:61:d6:1d:8f:18:52:b1:78:c7:fc:f3:de:ef:58:50:d1: 21:0f:d8:e5:6f:60:eb:5f:ee:51:4c:ed:a8:b0:8c:33:d1:19: 4d:d8:04:c7:63:95:96:b4:a7:39:d0:55:b6:e9:5d:84:38:bc: a9:e7:1a:ab:e5:58:68:2c:f4:d0:da:9a:c5:a2:a6:03:49:37: 80:42:5f:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwMzAyMDA0MTEwWhcNMjYwMzA5MDA0MTEwWjAYMRYwFAYD VQQDEw02OWE0ZGNhNy1iYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu20aOyDwRqbDXhIDYZ+EHB6hnq5hNtWvYFUwx+ZA4dhrRGklOrXzz+vGwKkv Zp8XcGhY532KRpgbd7FvyKZQ0QnacfgbwUMbzspz1x1JBfgosKRhp+J1iHdN29fK nLNyEcpbfaeKYVNCP0YKb0YmJSLW6LyU99OmecFen+4FeqDaQq4VigbTWrv8pPlr 5OE+f16P5tVQZbVi7Cpu2qoWZ9W7xHEN7FDCwmRXhcd5B+LxJjd2K2+UnzX6DS+k zjQIHScKcA5vBBq0oO28H9DT/JQL81xHdQrjwWjoKBelAOXdqksMI4X9m68zVWNT uYo1ZrDgs6biMGZoSHWKtCCa7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA1jePJi F1sPlZdyMTqP6cotPNQxMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnm3OX+7tKQKsQxUWkcjVY+Mbwsc5agZwDvU0a39OOjUyDa507OUPECN1CU3h AcuVs4JRwhIFXlfSLJAb2Fv2fd+cojyh2hjn6jcduGJrp9fp3Z2kTThfO5tLuXaI gaESnxG1geNFGVaXCEpX++Hwcw9Zjn3LT+UCAMwgzgHN3KpzPVzrL8vMskmFtY7K sCyD618iYQRGMEvSwfSWMpG17h7IkcDWsfL6xPRPE4l8iB2rA/8cGp9h1h2PGFKx eMf8897vWFDRIQ/Y5W9g61/uUUztqLCMM9EZTdgEx2OVlrSnOdBVtuldhDi8qeca q+VYaCz00NqaxaKmA0k3gEJfPw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:40:30 2026 by rpki-client