$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: i2s3jc8my1LZUjJnl6CrkO9WCnNV5R0XNQKJjSXrke4= Subject key identifier: BE:51:C6:11:D1:2D:94:63:1B:73:C5:16:73:9C:F0:09:E6:A2:9B:50 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 046D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 0467 Signing time: Sat 09 Aug 2025 00:39:50 +0000 Manifest this update: Sat 09 Aug 2025 00:39:49 +0000 Manifest next update: Sat 16 Aug 2025 00:39:49 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: X19Ksg9aWfjh+GR78VF572NqmhqY37WRpP/Ktnd9u3k=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: /fF1tdSaYFH2w1w+0HXHgYqEthaF4A0sGCD2uCBxpiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1133 (0x46d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Aug 9 00:39:49 2025 GMT Not After : Aug 16 00:39:49 2025 GMT Subject: CN=689698d5-f99f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:16:54:e3:04:f4:36:d2:b1:2e:4a:a5:0c: 77:39:f6:b2:89:57:4a:e6:c3:ae:7a:19:1f:76:11: 33:e0:8e:ec:f2:b7:e0:dd:cd:9e:b4:ad:ff:29:97: a4:f6:32:ab:8e:a2:05:55:ef:6b:54:31:ab:24:39: c6:ec:44:52:5a:97:82:a1:4f:a7:b5:fa:07:f7:c5: 84:6f:d4:3a:fb:d7:be:43:ed:24:93:64:3c:dc:f9: 42:9f:95:c1:97:3e:4d:a5:9a:b6:85:72:42:5f:34: 9a:c5:fe:db:c4:35:db:20:a7:3a:0a:7b:71:ca:3b: 92:23:b6:e7:93:f1:76:74:0c:2d:a0:a9:45:f4:db: c7:4d:32:40:12:9c:f2:9f:67:80:c6:9c:dc:e8:40: b6:b7:77:30:e7:2b:0b:f1:61:03:c3:67:c9:ac:0f: 01:6d:6b:50:42:22:e0:57:bc:91:af:0f:48:5b:a9: c9:3a:f4:6b:63:49:1c:60:b7:46:1b:e3:da:ba:d5: c0:77:e9:c9:1f:e0:a4:de:92:fc:08:f0:10:4e:98: cc:0a:e0:d7:c2:93:4c:94:f2:00:79:17:55:3c:5c: 1f:42:cb:9b:5a:68:7f:92:53:e5:74:91:ed:ca:89: 2e:cf:b6:3d:52:56:03:e6:c8:37:00:52:03:6f:a4: aa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:51:C6:11:D1:2D:94:63:1B:73:C5:16:73:9C:F0:09:E6:A2:9B:50 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:31:2a:86:65:4f:4e:1a:5c:28:49:bd:8d:6f:9c:e2:e2:3b: c1:53:6d:ef:50:d5:c9:be:d7:46:d7:11:9e:cd:38:95:8e:04: fa:96:32:96:ad:6d:46:9e:a1:f1:6e:5e:40:d0:c3:77:73:d1: a5:ec:15:a1:c3:07:33:2c:8d:91:ce:2d:0c:fa:6e:84:87:32: 5a:2f:da:a0:4e:a3:11:e1:34:a7:71:d2:1c:56:1a:26:be:39: 1d:60:7f:c0:1e:85:a0:b0:90:ac:df:9f:29:bf:c3:e2:f2:f7: a4:a2:2c:6c:93:76:56:af:65:f0:ff:eb:e9:f4:03:1c:44:05: bb:b3:15:49:4e:13:8b:2b:68:f1:64:66:45:5d:69:61:ce:e6: 41:12:b9:ea:7d:77:30:10:b3:d5:41:0a:bb:16:db:3a:a1:ad: 4f:76:8b:9a:41:8b:d6:ed:9d:89:2f:30:06:41:47:f9:61:fb: 2a:dc:f3:9e:33:31:90:82:8d:5d:eb:a9:05:70:01:eb:bc:9a: 29:28:34:7f:83:b4:b2:a7:59:11:bf:14:15:f4:53:bb:4f:34: 7f:4f:41:fc:28:1c:f7:f2:d2:32:25:45:c0:6b:63:73:39:fb: b7:5e:ab:89:85:63:6e:fe:ad:8d:b6:18:41:6d:d9:86:c9:e9: 47:33:f5:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUwODA5MDAzOTQ5WhcNMjUwODE2MDAzOTQ5WjAYMRYwFAYD VQQDEw02ODk2OThkNS1mOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdUWVOME9DbSsS5KpQx3OfayiVdK5sOuehkfdhEz4I7s8rfg3c2etK3/KZek 9jKrjqIFVe9rVDGrJDnG7ERSWpeCoU+ntfoH98WEb9Q6+9e+Q+0kk2Q83PlCn5XB lz5NpZq2hXJCXzSaxf7bxDXbIKc6CntxyjuSI7bnk/F2dAwtoKlF9NvHTTJAEpzy n2eAxpzc6EC2t3cw5ysL8WEDw2fJrA8BbWtQQiLgV7yRrw9IW6nJOvRrY0kcYLdG G+PautXAd+nJH+Ck3pL8CPAQTpjMCuDXwpNMlPIAeRdVPFwfQsubWmh/klPldJHt yokuz7Y9UlYD5sg3AFIDb6Sq/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5RxhHR LZRjG3PFFnOc8AnmoptQMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeMSqGZU9OGlwoSb2Nb5zi4jvBU23vUNXJvtdG1xGezTiVjgT6ljKW rW1GnqHxbl5A0MN3c9Gl7BWhwwczLI2Rzi0M+m6EhzJaL9qgTqMR4TSncdIcVhom vjkdYH/AHoWgsJCs358pv8Pi8vekoixsk3ZWr2Xw/+vp9AMcRAW7sxVJThOLK2jx ZGZFXWlhzuZBErnqfXcwELPVQQq7Fts6oa1PdouaQYvW7Z2JLzAGQUf5Yfsq3POe MzGQgo1d66kFcAHrvJopKDR/g7Syp1kRvxQV9FO7TzR/T0H8KBz38tIyJUXAa2Nz Ofu3XquJhWNu/q2NthhBbdmGyelHM/US -----END CERTIFICATE-----Generated at Sat Aug 9 15:15:10 2025 by rpki-client