$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: BXnHrByIv3KPfK9BYGN5zu+UCd2OkjRQoXVAitDL9wE= Subject key identifier: B9:02:19:21:25:75:34:7C:94:C7:C9:1C:71:93:DB:A1:5F:60:3A:AD Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 04E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 04DB Signing time: Tue 24 Mar 2026 23:30:36 +0000 Manifest this update: Tue 24 Mar 2026 23:30:36 +0000 Manifest next update: Tue 31 Mar 2026 23:30:36 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: 9XqSMiExwWuOa6xvQ7cKa0IK3rjdLplXE7WzB1HGxyU=) 2: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: f4gCpRS0r2/y5eBNPTgqtyjnYPjR3lsXVlQbnXKGMC0=) 3: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: FDpH8dS0OREyIzTLTNCmJQk67Jnkzas8jUdB0DHyoY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1255 (0x4e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Mar 24 23:30:36 2026 GMT Not After : Mar 31 23:30:36 2026 GMT Subject: CN=69c31e9c-22a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:eb:0a:a9:e9:fb:10:43:56:c6:4f:51:1f:ab: 8b:ff:42:41:ee:70:4d:bb:3d:79:10:5d:b8:a0:2f: f5:fd:4c:86:51:93:6d:db:98:e2:c2:df:55:a7:cd: 79:f5:1a:98:ba:6f:1c:44:85:5f:53:2c:45:ef:d8: 98:36:9e:9f:d6:af:74:e7:f8:84:77:ce:b5:a9:fd: 46:ea:4a:e9:0d:36:96:e8:73:a5:17:6c:fd:2f:96: 92:55:1c:cb:3f:54:0d:f4:80:fb:41:d0:26:c3:62: 3a:90:41:e2:1a:a2:4c:52:f6:14:fe:f2:3b:ef:e4: e2:ff:e4:3f:f5:65:8c:97:04:d8:c8:51:55:d1:4d: 46:7d:ee:9c:08:68:8d:09:d1:7b:5b:a5:fc:d6:d5: 29:8e:c3:16:0b:f3:05:bb:11:ae:73:5d:e6:c3:4c: c8:b3:08:ad:6f:51:30:d7:18:c2:41:8c:98:64:6c: 91:63:7a:76:ad:4e:91:01:dd:16:1e:76:11:02:d1: 17:e1:f7:cc:e6:12:8f:0e:30:7e:b6:04:f5:d2:cf: 39:fe:7e:24:4c:a1:6d:d8:e2:d0:14:af:1e:8f:c1: 17:56:f5:e7:bf:ad:1c:ef:36:d2:2a:08:fc:83:7e: 94:56:77:7b:6f:27:2a:27:98:1c:24:cf:79:db:d3: fe:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:02:19:21:25:75:34:7C:94:C7:C9:1C:71:93:DB:A1:5F:60:3A:AD X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:15:b5:24:e7:5a:ee:13:82:45:3b:96:34:4e:fc:dd:20:c8: ba:e4:ec:7d:13:84:8d:0b:d7:3b:4f:5a:de:ef:e9:d7:d8:33: 91:25:c9:99:cd:52:5e:31:bc:96:e6:69:24:29:00:81:2a:15: 26:09:33:80:fe:cd:4d:6d:1b:6e:de:84:f1:bd:52:cc:f1:d2: 27:85:a5:e3:b2:32:10:7c:93:e0:ff:a6:cb:4d:c8:38:db:32: 25:9a:d4:3d:d6:6a:93:67:e9:f4:f8:e4:70:c9:fe:9a:54:9b: 70:77:36:35:ab:37:ad:3f:e6:7f:29:24:d2:db:9b:e1:b7:57: 4d:df:d9:e0:2e:2f:da:76:f1:95:1e:1a:c9:51:52:72:a7:41: e9:30:86:9e:af:07:82:bd:f2:69:51:35:6d:2a:00:99:82:29: 84:e5:eb:35:f3:46:0f:db:c4:03:47:27:c4:94:6c:3f:4a:0a: 98:be:68:65:f5:1d:48:7e:d5:2c:1f:1c:da:b2:dd:b0:8d:3a: 44:ae:b5:ed:ac:a9:21:0b:3b:cd:70:1e:3a:a8:2d:a2:02:04: 31:6e:fc:c3:e0:fd:34:33:14:63:ba:19:5f:f7:2b:d6:8d:dc: 9c:ea:bc:3e:b3:d5:22:01:8c:50:37:5f:86:a8:6e:48:03:6e: d7:d3:2e:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjYwMzI0MjMzMDM2WhcNMjYwMzMxMjMzMDM2WjAYMRYwFAYD VQQDEw02OWMzMWU5Yy0yMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+sKqen7EENWxk9RH6uL/0JB7nBNuz15EF24oC/1/UyGUZNt25jiwt9Vp815 9RqYum8cRIVfUyxF79iYNp6f1q905/iEd861qf1G6krpDTaW6HOlF2z9L5aSVRzL P1QN9ID7QdAmw2I6kEHiGqJMUvYU/vI77+Ti/+Q/9WWMlwTYyFFV0U1Gfe6cCGiN CdF7W6X81tUpjsMWC/MFuxGuc13mw0zIswitb1Ew1xjCQYyYZGyRY3p2rU6RAd0W HnYRAtEX4ffM5hKPDjB+tgT10s85/n4kTKFt2OLQFK8ej8EXVvXnv60c7zbSKgj8 g36UVnd7bycqJ5gcJM9529P+OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLkCGSEl dTR8lMfJHHGT26FfYDqtMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2hW1JOda7hOCRTuWNE783SDIuuTsfROEjQvXO09a3u/p19gzkSXJmc1SXjG8 luZpJCkAgSoVJgkzgP7NTW0bbt6E8b1SzPHSJ4Wl47IyEHyT4P+my03IONsyJZrU PdZqk2fp9PjkcMn+mlSbcHc2Nas3rT/mfykk0tub4bdXTd/Z4C4v2nbxlR4ayVFS cqdB6TCGnq8Hgr3yaVE1bSoAmYIphOXrNfNGD9vEA0cnxJRsP0oKmL5oZfUdSH7V LB8c2rLdsI06RK617aypIQs7zXAeOqgtogIEMW78w+D9NDMUY7oZX/cr1o3cnOq8 PrPVIgGMUDdfhqhuSANu19MuZQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:17:35 2026 by rpki-client