$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: CrPNFmHflGW8SaPX+dHQswCnvMIZzEQ/mCTOmboi/nc= Subject key identifier: 12:59:2C:31:E4:F9:85:36:F7:63:25:78:B5:0D:2C:87:CD:11:33:75 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0A1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 0A11 Signing time: Fri 12 Jun 2026 19:49:26 +0000 Manifest this update: Fri 12 Jun 2026 19:49:25 +0000 Manifest next update: Fri 19 Jun 2026 19:49:25 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: 8yl6tIF7WWLIHrJLlYp1BhDkiD6ekhpgAFFrrnP9BbY=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: vExenB8r5VLDvagQcEg/ivOJqZUrJV0ln/r+0QlZHXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4, serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Jun 12 19:49:25 2026 GMT Not After : Jun 19 19:49:25 2026 GMT Subject: CN=6a2c62c6-81c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:19:dd:f2:28:27:cb:33:26:0f:4e:68:41:57: d5:a9:80:39:b4:88:24:93:eb:a8:27:80:03:df:e9: a9:70:7f:bf:e4:7c:41:0f:46:38:b7:ad:37:e8:80: 6f:8c:a3:36:cb:ea:77:74:68:d6:4c:c1:c8:38:6f: 27:2e:36:fe:88:c5:f4:94:06:18:16:60:cd:b5:70: d6:32:cb:75:05:e5:b7:92:ef:36:25:37:bb:a9:6b: 99:1a:39:a2:8e:7c:4b:d1:b7:f1:01:89:63:b8:5e: 53:8b:e4:29:eb:3a:2b:83:12:df:a9:52:2b:a0:69: 59:25:d6:a5:35:82:d0:e5:70:84:bf:7d:61:7b:d0: 14:30:68:10:25:f8:d1:d3:ac:11:93:30:64:14:49: 1e:9a:7b:86:db:76:e7:b9:4a:50:02:9f:d4:56:e0: 33:eb:9f:e3:3a:d7:9f:8f:c7:2f:41:22:dc:ae:c3: 0d:ee:28:74:6b:b7:25:fc:6a:32:91:84:f3:1c:ba: 95:c9:f8:21:11:50:f2:ef:6a:95:6e:dd:55:b5:a4: 72:ab:15:61:61:b6:ce:30:a0:48:f5:d4:a7:0f:fa: 36:cc:dd:09:04:b0:fa:98:e1:65:1c:5f:5d:b0:3d: 3f:88:a5:39:cd:dc:04:a9:85:6a:bf:3c:32:96:08: 08:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:59:2C:31:E4:F9:85:36:F7:63:25:78:B5:0D:2C:87:CD:11:33:75 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:41:77:13:9e:1f:43:2e:4c:c9:b8:84:4a:2d:e1:7c:51:5a: 68:9d:f7:fd:50:38:0b:d6:82:47:eb:9d:86:bd:c6:01:a8:8e: a7:83:e3:0d:b5:54:50:e4:53:3c:b5:76:cd:fe:d5:5c:ad:81: 28:b4:d7:92:8a:15:3b:38:2f:0d:87:2a:8b:48:9b:56:50:6f: 2d:b1:6b:2c:00:a6:04:52:d2:36:cc:d3:47:41:13:37:86:fd: ee:ec:6d:aa:71:22:0f:08:8c:4a:49:80:34:b6:51:c8:f8:bb: df:d6:30:87:d3:a6:7e:fb:7d:5d:25:5d:54:f6:9b:09:41:ee: 6f:68:ff:3f:56:e9:4d:e1:e5:3f:29:e6:2c:4c:8e:7e:58:63: c6:8f:19:40:eb:cd:85:d4:d6:e6:48:f8:72:9c:62:2f:4c:59: c3:a2:bb:7d:bd:9a:1f:9a:c5:1e:98:39:b6:4b:00:0e:7b:c3: 54:e3:6c:cc:0c:de:cc:04:e4:4d:d2:c5:ce:d6:06:61:0f:93: 67:ea:1a:d5:6e:fb:54:08:11:e9:b1:4f:6d:bf:0d:1e:82:23: 8d:35:e7:b9:12:eb:ad:9f:bb:e0:85:df:78:0a:46:26:a6:0a: ba:6c:c4:9e:c0:d1:19:01:59:ae:a5:a9:47:67:28:a3:5d:28: a6:cb:33:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjYwNjEyMTk0OTI1WhcNMjYwNjE5MTk0OTI1WjAYMRYwFAYD VQQDEw02YTJjNjJjNi04MWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxnd8ignyzMmD05oQVfVqYA5tIgkk+uoJ4AD3+mpcH+/5HxBD0Y4t6036IBv jKM2y+p3dGjWTMHIOG8nLjb+iMX0lAYYFmDNtXDWMst1BeW3ku82JTe7qWuZGjmi jnxL0bfxAYljuF5Ti+Qp6zorgxLfqVIroGlZJdalNYLQ5XCEv31he9AUMGgQJfjR 06wRkzBkFEkemnuG23bnuUpQAp/UVuAz65/jOtefj8cvQSLcrsMN7ih0a7cl/Goy kYTzHLqVyfghEVDy72qVbt1VtaRyqxVhYbbOMKBI9dSnD/o2zN0JBLD6mOFlHF9d sD0/iKU5zdwEqYVqvzwylggIXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJZLDHk +YU292MleLUNLIfNETN1MB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlkF3E54fQy5MybiESi3hfFFaaJ33/VA4C9aCR+udhr3GAaiOp4PjDbVUUORT PLV2zf7VXK2BKLTXkooVOzgvDYcqi0ibVlBvLbFrLACmBFLSNszTR0ETN4b97uxt qnEiDwiMSkmANLZRyPi739Ywh9Omfvt9XSVdVPabCUHub2j/P1bpTeHlPynmLEyO flhjxo8ZQOvNhdTW5kj4cpxiL0xZw6K7fb2aH5rFHpg5tksADnvDVONszAzezATk TdLFztYGYQ+TZ+oa1W77VAgR6bFPbb8NHoIjjTXnuRLrrZ+74IXfeApGJqYKumzE nsDRGQFZrqWpR2coo10opssz7w== -----END CERTIFICATE-----Generated at Sat Jun 13 20:11:55 2026 by rpki-client