$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: QKTqAyav2gZhVNwEd7FzHnijTWc8LhN2oWW9/K7ZIoM= Subject key identifier: 53:3E:53:14:57:56:E2:F1:B2:85:BC:3F:1A:A0:62:3A:DB:8B:4D:D0 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 04F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 04EC Signing time: Thu 16 Apr 2026 23:40:14 +0000 Manifest this update: Thu 16 Apr 2026 23:40:14 +0000 Manifest next update: Thu 23 Apr 2026 23:40:14 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 0G46a9trANAcVz795aITP973i7ICVUqegOlqVm/gYso=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: +QpDQgaKDgA4jgwCETbDA10J+dE7YQ9N+DpzerwOFaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Apr 16 23:40:14 2026 GMT Not After : Apr 23 23:40:14 2026 GMT Subject: CN=69e1735e-4b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5b:54:ae:1b:db:61:b7:8e:b5:93:42:5e:24: ae:c4:9f:f6:2d:20:d7:6c:41:fc:20:c9:d6:6a:d4: ad:e4:3a:35:d6:50:0f:d9:15:e6:82:6f:8e:d3:60: 62:be:19:74:f8:8b:5a:ff:1c:c7:88:03:6a:a8:5b: 5f:e8:4d:d1:c1:5e:11:76:fd:ca:fb:37:83:81:22: 31:94:50:cf:21:cd:ee:3e:ef:3c:1a:43:51:58:9e: 48:91:fb:4a:3e:84:6d:c6:f2:85:ef:c8:da:94:df: 2f:13:ae:3e:6e:10:40:8f:89:c0:9e:c5:ec:41:af: 88:33:62:f7:ce:04:82:a4:d4:64:c8:5f:53:d8:79: 2d:0d:9d:75:b3:be:c5:b1:35:5c:9a:8e:c6:2a:56: ec:34:29:b7:fc:93:64:d8:e4:91:d4:52:87:e5:22: 00:36:05:eb:c5:8a:47:e9:3d:a9:2f:93:fc:93:af: 94:d5:24:9e:d3:ed:46:4a:a1:fc:17:71:95:6c:11: 76:65:02:46:24:24:7d:fe:56:0c:64:ef:ca:03:fe: 5c:54:e3:a2:04:40:92:03:50:6d:e1:54:b9:4e:2f: ff:69:41:fb:a8:1b:0a:0d:3b:80:63:e2:c9:85:24: 0d:06:27:4e:5b:3f:bf:7d:ca:8c:ff:bf:5a:c5:8e: a7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3E:53:14:57:56:E2:F1:B2:85:BC:3F:1A:A0:62:3A:DB:8B:4D:D0 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:bf:f9:f4:f1:fa:67:2e:0c:0d:0c:1d:cf:25:4a:d0:40:19: 0b:65:1f:2e:84:29:9b:97:f0:e1:18:be:20:02:ca:5e:56:60: 29:96:3c:ac:fb:52:e0:c9:f4:f1:6c:c6:c6:6f:62:2a:36:a9: 8f:4b:d1:45:5f:2c:fe:f2:ae:4d:32:25:0b:8f:6a:8f:55:a4: 6e:52:8d:fa:f0:0b:5f:44:d9:63:10:3d:2a:96:51:2f:40:03: a1:6b:f6:72:30:a5:70:3b:0e:e1:74:7e:7e:94:8b:fb:32:0c: 5e:07:f1:e7:d0:5e:b9:43:85:d9:54:68:11:66:84:e4:d7:5f: 36:bf:fa:bf:c7:03:29:80:f5:3a:2c:ed:8e:47:83:f8:a2:12: 4d:02:53:0f:94:3a:e2:c6:7c:b2:bd:82:5c:07:25:d1:5d:2b: 59:09:07:13:e7:33:9b:89:d9:94:f9:b9:6e:53:59:84:a7:a1: 75:c3:4a:34:59:2b:96:25:a2:2e:f8:93:b4:af:76:6a:8b:71: c4:b6:43:18:c1:13:36:cc:0a:e9:40:35:22:f3:31:c8:96:1c: 30:0b:d1:38:43:6f:91:76:44:c5:1e:b2:42:1f:51:94:8f:57: e7:da:e4:0d:e8:b6:7c:cc:c1:c0:8e:26:57:30:97:05:90:cf: 3d:ce:c5:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjYwNDE2MjM0MDE0WhcNMjYwNDIzMjM0MDE0WjAYMRYwFAYD VQQDEw02OWUxNzM1ZS00YjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjltUrhvbYbeOtZNCXiSuxJ/2LSDXbEH8IMnWatSt5Do11lAP2RXmgm+O02Bi vhl0+Ita/xzHiANqqFtf6E3RwV4Rdv3K+zeDgSIxlFDPIc3uPu88GkNRWJ5IkftK PoRtxvKF78jalN8vE64+bhBAj4nAnsXsQa+IM2L3zgSCpNRkyF9T2HktDZ11s77F sTVcmo7GKlbsNCm3/JNk2OSR1FKH5SIANgXrxYpH6T2pL5P8k6+U1SSe0+1GSqH8 F3GVbBF2ZQJGJCR9/lYMZO/KA/5cVOOiBECSA1Bt4VS5Ti//aUH7qBsKDTuAY+LJ hSQNBidOWz+/fcqM/79axY6nUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFM+UxRX VuLxsoW8PxqgYjrbi03QMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArL/59PH6Zy4MDQwdzyVK0EAZC2UfLoQpm5fw4Ri+IALKXlZgKZY8rPtS4Mn0 8WzGxm9iKjapj0vRRV8s/vKuTTIlC49qj1WkblKN+vALX0TZYxA9KpZRL0ADoWv2 cjClcDsO4XR+fpSL+zIMXgfx59BeuUOF2VRoEWaE5NdfNr/6v8cDKYD1OiztjkeD +KISTQJTD5Q64sZ8sr2CXAcl0V0rWQkHE+czm4nZlPm5blNZhKehdcNKNFkrliWi LviTtK92aotxxLZDGMETNswK6UA1IvMxyJYcMAvROENvkXZExR6yQh9RlI9X59rk Dei2fMzBwI4mVzCXBZDPPc7FiQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:06:49 2026 by rpki-client