$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: hD3kfkh1Fe+1pmoned0HAg258qMK1l2x0+GyliIlatk= Subject key identifier: C7:31:F6:6B:37:70:9A:76:45:72:BA:F5:2E:8D:FB:7C:E6:38:D4:C8 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 0509 Signing time: Fri 12 Jun 2026 23:42:30 +0000 Manifest this update: Fri 12 Jun 2026 23:42:29 +0000 Manifest next update: Fri 19 Jun 2026 23:42:29 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: a5IxaukJ4YtQi0KtqOEX6IVcsLbh1r/BJowPgs3jrk0=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 23:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Jun 12 23:42:29 2026 GMT Not After : Jun 19 23:42:29 2026 GMT Subject: CN=6a2c9966-9336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:29:96:ca:83:7f:ae:ed:c6:aa:d4:ef:9f:4c: e2:77:73:07:09:83:68:45:40:4f:b1:6e:77:ee:d4: a9:b8:fe:64:79:74:b7:01:40:51:92:87:b0:8b:1c: e6:37:71:ed:55:06:86:3d:2e:1b:00:82:fb:ce:9f: 69:d8:c6:77:6b:26:69:68:e9:2a:c2:9e:2d:83:4e: 69:fc:a2:02:29:23:a5:3a:94:99:dc:83:5b:6d:e6: 28:79:b8:0a:8d:d7:93:6b:9c:64:52:78:6c:b1:7b: 3e:0c:8b:a0:12:f5:a6:b1:4a:8f:74:8f:5a:46:d9: 97:7e:78:63:76:51:74:14:1b:25:a4:85:03:92:47: 51:75:a9:37:d2:48:ce:16:6a:35:87:1c:5e:90:fe: 70:4c:b7:b7:13:1c:23:45:5f:80:e7:35:92:d6:17: 89:c6:55:05:86:6b:31:bd:02:7c:30:14:c4:ba:99: ff:41:3c:33:7d:f1:9d:ab:1a:eb:ee:d0:d5:6d:d4: 22:2e:4c:fd:31:b7:2d:0a:82:da:43:5d:ee:49:db: 71:46:04:23:ef:ea:fc:b6:2a:99:67:d6:ed:3c:7b: 24:a5:a3:67:83:50:3f:1b:c2:07:5d:d0:cd:af:66: 7e:cc:f5:66:84:63:7f:30:df:d2:06:1f:8e:4d:a1: 6e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:31:F6:6B:37:70:9A:76:45:72:BA:F5:2E:8D:FB:7C:E6:38:D4:C8 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:fa:76:69:66:51:ea:19:dc:9a:3a:6a:fe:15:1c:06:25:8d: 23:27:42:b9:7f:49:b8:28:c3:5b:6b:70:dc:39:fc:e0:23:ba: df:de:62:89:96:59:b9:fb:1c:94:16:98:06:d8:37:dc:7f:2e: 8b:6f:58:42:91:54:56:16:36:47:0b:f1:b6:8a:7a:ec:14:9d: 1f:20:1c:86:eb:3b:9b:db:45:54:93:1b:21:fa:8f:ff:12:ad: 8b:1d:66:0a:1d:1d:f9:f1:f5:81:5b:19:1d:7d:85:8e:9f:c0: 0d:cf:a3:34:36:af:67:e4:0d:04:9f:d2:03:e7:ae:67:a1:d9: 81:05:26:ac:5d:8d:a5:06:0f:66:39:4e:4a:94:b9:fd:78:42: 5c:b2:22:b4:b3:07:fb:d7:89:ed:af:7a:b6:4e:d6:f8:a7:18: a6:d6:64:e7:56:b5:d5:49:6d:23:57:cf:2e:a2:df:4c:7e:39: 67:25:78:8c:61:87:bf:a0:d0:5b:77:46:0c:37:f4:45:8f:df: 25:e1:ec:b6:a7:73:c1:dd:8a:4a:73:41:22:65:53:db:91:06: 1d:a4:76:7e:ab:8f:47:f9:1b:ae:a7:d2:45:ab:20:c4:6d:b6: bc:e4:16:f4:e0:4b:53:68:c4:98:6a:fe:c8:cf:e5:e7:fb:35: 65:fd:26:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwNjEyMjM0MjI5WhcNMjYwNjE5MjM0MjI5WjAYMRYwFAYD VQQDEw02YTJjOTk2Ni05MzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlimWyoN/ru3GqtTvn0zid3MHCYNoRUBPsW537tSpuP5keXS3AUBRkoewixzm N3HtVQaGPS4bAIL7zp9p2MZ3ayZpaOkqwp4tg05p/KICKSOlOpSZ3INbbeYoebgK jdeTa5xkUnhssXs+DIugEvWmsUqPdI9aRtmXfnhjdlF0FBslpIUDkkdRdak30kjO Fmo1hxxekP5wTLe3ExwjRV+A5zWS1heJxlUFhmsxvQJ8MBTEupn/QTwzffGdqxrr 7tDVbdQiLkz9MbctCoLaQ13uSdtxRgQj7+r8tiqZZ9btPHskpaNng1A/G8IHXdDN r2Z+zPVmhGN/MN/SBh+OTaFuaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMcx9ms3 cJp2RXK69S6N+3zmONTIMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO/p2aWZR6hncmjpq/hUcBiWNIydCuX9JuCjDW2tw3Dn84CO6395iiZZZufsc lBaYBtg33H8ui29YQpFUVhY2Rwvxtop67BSdHyAchus7m9tFVJMbIfqP/xKtix1m Ch0d+fH1gVsZHX2Fjp/ADc+jNDavZ+QNBJ/SA+euZ6HZgQUmrF2NpQYPZjlOSpS5 /XhCXLIitLMH+9eJ7a96tk7W+KcYptZk51a11UltI1fPLqLfTH45ZyV4jGGHv6DQ W3dGDDf0RY/fJeHstqdzwd2KSnNBImVT25EGHaR2fquPR/kbrqfSRasgxG22vOQW 9OBLU2jEmGr+yM/l5/s1Zf0muQ== -----END CERTIFICATE-----Generated at Sun Jun 14 02:19:43 2026 by rpki-client