$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: w0Q9ATQvGTwS4YGiEGkcEfS14C+1tBzJRsHhyRWyO04= Subject key identifier: D1:3D:EA:97:96:A6:69:82:E2:37:22:2D:1B:76:58:6C:07:D1:CB:E9 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04D4 Signing time: Sun 01 Mar 2026 22:45:04 +0000 Manifest this update: Sun 01 Mar 2026 22:45:03 +0000 Manifest next update: Sun 08 Mar 2026 22:45:03 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 7S7bX1LszKAWP85mA4zzWbHTHPK2XO23/kG5qk5cqls=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1245 (0x4dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Mar 1 22:45:03 2026 GMT Not After : Mar 8 22:45:03 2026 GMT Subject: CN=69a4c170-a248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0e:cf:6b:ea:fd:9c:44:ae:35:d6:ea:21:18: 67:8c:d4:b1:72:37:ac:91:71:08:26:3c:43:90:98: 6a:89:4f:37:9a:91:72:f4:ed:03:d1:d7:8b:42:9d: dd:df:52:86:d7:7f:e6:c4:f8:19:2f:f7:c4:15:5e: 91:40:eb:fb:72:27:da:10:70:54:c1:9d:7e:d4:55: 35:01:1b:cf:33:e0:e6:83:92:74:ba:7f:70:ba:40: d8:f5:01:42:d1:e8:a1:f4:b7:d8:a7:21:71:04:b0: 93:51:60:9e:18:9c:59:8d:4c:26:cb:8c:e7:dd:d8: 69:8e:23:38:a3:52:28:fa:cc:6a:dc:57:c6:f4:83: 9d:e3:6d:62:84:8c:18:bf:dc:f4:16:a3:6b:47:44: 34:4b:97:25:cd:ab:34:c8:0c:c6:ed:51:42:36:45: 36:61:72:72:d6:71:71:f6:75:1a:f1:51:19:b2:41: 88:bc:d0:67:38:9f:7f:81:d8:b7:d5:33:d6:70:c9: 01:40:8f:db:1a:4b:ac:75:81:8f:7b:fa:39:03:14: 79:0f:95:a8:e2:b7:48:90:0e:52:39:65:0a:11:4e: ea:46:7f:92:22:5e:a7:bf:97:22:c6:63:da:21:57: bb:74:b6:a6:63:b6:14:27:14:71:c1:d9:36:e9:02: 82:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3D:EA:97:96:A6:69:82:E2:37:22:2D:1B:76:58:6C:07:D1:CB:E9 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:5c:31:38:ae:d1:f5:a3:72:0c:d4:ea:11:6a:19:05:73:49: ab:11:2c:a9:c2:ff:4e:35:69:9b:78:c3:eb:30:fa:f6:19:4c: 2f:99:ac:7f:75:0a:92:e1:6c:67:c5:f3:e2:3e:7f:ac:23:4b: 38:6b:dc:3d:22:6a:9f:82:c7:44:f1:c2:7d:94:99:f1:9c:fe: 12:1f:b7:fa:ba:3b:f2:1f:f8:78:2f:fa:72:96:08:2c:fa:90: c0:56:b9:b8:7b:06:3f:35:d0:59:57:d6:af:4f:06:d6:19:97: f0:5f:9a:ce:58:dc:95:fd:61:f4:67:ba:71:d8:fb:7c:31:0c: 3a:66:e4:2f:03:c9:37:b5:1b:dd:bd:d7:89:29:e2:62:ad:6e: cc:15:1a:a8:59:b2:98:a0:ae:5e:19:9e:17:60:6c:db:53:56: b5:c7:02:53:da:7e:5d:f8:91:74:88:4c:c6:2e:10:eb:f7:45: 4e:3e:fa:a4:a8:45:4a:5d:6b:2f:48:fa:06:ef:f6:2a:52:ca: fe:71:aa:d7:f8:5d:af:bb:27:d3:c8:a0:c3:42:79:6e:cf:2e: 4e:d6:4a:3d:3f:23:8f:7e:be:82:67:c0:63:ab:4e:da:d9:f3: 0e:b4:2f:ea:10:c9:1f:fa:b8:c8:57:67:64:67:e5:13:23:f2: af:53:76:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwMzAxMjI0NTAzWhcNMjYwMzA4MjI0NTAzWjAYMRYwFAYD VQQDEw02OWE0YzE3MC1hMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArA7Pa+r9nESuNdbqIRhnjNSxcjeskXEIJjxDkJhqiU83mpFy9O0D0deLQp3d 31KG13/mxPgZL/fEFV6RQOv7cifaEHBUwZ1+1FU1ARvPM+Dmg5J0un9wukDY9QFC 0eih9LfYpyFxBLCTUWCeGJxZjUwmy4zn3dhpjiM4o1Io+sxq3FfG9IOd421ihIwY v9z0FqNrR0Q0S5clzas0yAzG7VFCNkU2YXJy1nFx9nUa8VEZskGIvNBnOJ9/gdi3 1TPWcMkBQI/bGkusdYGPe/o5AxR5D5Wo4rdIkA5SOWUKEU7qRn+SIl6nv5cixmPa IVe7dLamY7YUJxRxwdk26QKCqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNE96peW pmmC4jciLRt2WGwH0cvpMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY1wxOK7R9aNyDNTqEWoZBXNJqxEsqcL/TjVpm3jD6zD69hlML5msf3UKkuFs Z8Xz4j5/rCNLOGvcPSJqn4LHRPHCfZSZ8Zz+Eh+3+ro78h/4eC/6cpYILPqQwFa5 uHsGPzXQWVfWr08G1hmX8F+azljclf1h9Ge6cdj7fDEMOmbkLwPJN7Ub3b3XiSni Yq1uzBUaqFmymKCuXhmeF2Bs21NWtccCU9p+XfiRdIhMxi4Q6/dFTj76pKhFSl1r L0j6Bu/2KlLK/nGq1/hdr7sn08igw0J5bs8uTtZKPT8jj36+gmfAY6tO2tnzDrQv 6hDJH/q4yFdnZGflEyPyr1N24A== -----END CERTIFICATE-----Generated at Mon Mar 2 16:50:07 2026 by rpki-client