$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: d7CoeJuCcMyhk4Qm+9VZtwrWy3f9WdD1TyYpvs76NXE= Subject key identifier: D5:EB:BE:F2:1E:AD:B3:FB:B8:45:72:49:4B:71:39:D4:3A:C4:86:CF Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0442 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0438 Signing time: Sat 10 May 2025 23:54:46 +0000 Manifest this update: Sat 10 May 2025 23:54:46 +0000 Manifest next update: Sat 17 May 2025 23:54:46 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: I4JX0EATR028+oZGCIbkOb6cLCTdoYLzB+zQktua360=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: May 10 23:54:46 2025 GMT Not After : May 17 23:54:46 2025 GMT Subject: CN=681fe746-2099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:eb:a6:75:45:ed:91:ff:a9:b8:ce:cf:d5: 40:81:30:29:24:b6:ee:1a:7d:d0:d5:13:f6:37:9d: fa:aa:0b:f5:b6:df:3c:86:86:11:30:ef:95:30:fe: 47:a5:b4:61:e5:81:da:c8:f5:81:1b:59:a5:63:9b: 01:1a:e2:73:c0:02:b0:fb:c5:c0:10:07:e9:89:62: bb:3f:ad:ed:14:90:b7:c3:76:b2:e0:d8:fe:8c:0b: f2:56:44:29:f9:d5:88:20:58:0e:d8:00:2e:2a:8e: e7:0f:96:e7:47:54:56:9f:d3:14:60:2c:72:60:be: 53:da:8e:f5:c1:56:c0:b5:56:bb:96:ae:26:08:fb: 7a:be:81:ad:b2:97:7a:03:ab:c6:29:8a:45:49:33: e6:07:e9:37:44:e0:c5:86:2d:82:29:5f:96:b4:4d: fb:d6:14:30:6e:ff:1f:10:10:17:d2:d5:ba:e0:93: 22:c8:68:09:47:1b:bd:ac:b1:78:fc:47:87:bb:c5: ef:a9:b1:02:a9:20:2c:5b:58:1c:1f:c1:86:24:25: ad:9e:f2:6d:8a:ce:93:be:d2:20:e3:22:9c:1d:8d: 69:45:c1:c2:18:61:4e:d8:73:38:6a:6b:af:d9:4b: 0e:c9:a4:74:05:a8:b0:83:67:6c:14:cf:33:4c:75: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EB:BE:F2:1E:AD:B3:FB:B8:45:72:49:4B:71:39:D4:3A:C4:86:CF X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d2:2a:ed:db:9f:22:18:57:6e:4a:20:2f:e5:be:fb:f6:ee: a2:1e:17:c0:2a:56:a2:f9:6e:b3:9f:2b:26:89:91:41:60:65: 5d:b1:2a:56:73:a8:7c:fd:8d:55:b5:f1:8a:88:1b:b0:39:2e: 4b:8a:09:e1:e6:43:06:7d:7c:88:32:44:52:82:23:9d:24:27: fb:61:e7:23:7f:1e:86:1f:84:24:80:79:6e:ee:5c:2d:a7:e6: 86:c5:b9:c1:49:1a:cc:e6:04:7b:a5:03:42:8c:1d:b1:0e:98: 13:23:bc:99:88:71:a6:c9:c7:84:a3:fc:d4:7d:2e:b1:8f:bd: 28:8f:00:d7:66:9f:7f:ee:e5:a2:4f:a1:10:3f:19:3e:20:ab: 8c:21:8d:ae:27:40:fc:62:e5:36:f9:0b:39:42:d8:7a:90:c7: 05:c7:52:e5:59:ce:99:6d:f0:c3:0f:96:31:68:24:25:3b:02: cf:ec:71:92:1c:ca:11:4d:b8:89:d9:94:46:6f:06:3e:b1:57: ca:35:0e:8f:fb:3e:18:d0:6b:de:f9:b6:f9:cd:30:d2:62:ce: 60:2a:f5:d7:fb:76:b4:ac:5f:c4:0b:41:d1:fe:7f:f2:f4:2b: 5e:29:98:7d:1a:1c:98:49:e8:83:9e:28:cd:19:29:97:48:0d: bb:a1:bf:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNTEwMjM1NDQ2WhcNMjUwNTE3MjM1NDQ2WjAYMRYwFAYD VQQDEw02ODFmZTc0Ni0yMDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VrrpnVF7ZH/qbjOz9VAgTApJLbuGn3Q1RP2N536qgv1tt88hoYRMO+VMP5H pbRh5YHayPWBG1mlY5sBGuJzwAKw+8XAEAfpiWK7P63tFJC3w3ay4Nj+jAvyVkQp +dWIIFgO2AAuKo7nD5bnR1RWn9MUYCxyYL5T2o71wVbAtVa7lq4mCPt6voGtspd6 A6vGKYpFSTPmB+k3RODFhi2CKV+WtE371hQwbv8fEBAX0tW64JMiyGgJRxu9rLF4 /EeHu8XvqbECqSAsW1gcH8GGJCWtnvJtis6TvtIg4yKcHY1pRcHCGGFO2HM4amuv 2UsOyaR0Baiwg2dsFM8zTHX5gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXrvvIe rbP7uEVySUtxOdQ6xIbPMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ0irt258iGFduSiAv5b779u6iHhfAKlai+W6znysmiZFBYGVdsSpW c6h8/Y1VtfGKiBuwOS5Lignh5kMGfXyIMkRSgiOdJCf7Yecjfx6GH4QkgHlu7lwt p+aGxbnBSRrM5gR7pQNCjB2xDpgTI7yZiHGmyceEo/zUfS6xj70ojwDXZp9/7uWi T6EQPxk+IKuMIY2uJ0D8YuU2+Qs5Qth6kMcFx1LlWc6ZbfDDD5YxaCQlOwLP7HGS HMoRTbiJ2ZRGbwY+sVfKNQ6P+z4Y0Gve+bb5zTDSYs5gKvXX+3a0rF/EC0HR/n/y 9CteKZh9GhyYSeiDnijNGSmXSA27ob+L -----END CERTIFICATE-----Generated at Mon May 12 19:27:21 2025 by rpki-client