$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: Aa9WLz5E7wpEhLxHmsCqiYLbd18/L7aBudbSBsPQjzI= Subject key identifier: 4C:9B:E7:76:11:AB:78:14:39:5D:0A:11:0E:60:00:E9:BE:BC:79:02 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 046C Signing time: Sat 23 Aug 2025 00:23:58 +0000 Manifest this update: Sat 23 Aug 2025 00:23:58 +0000 Manifest next update: Sat 30 Aug 2025 00:23:58 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: 0ygGHWvRQExcEtx+HGcCyPFifNSvaHJBpImw91QvS5A=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Aug 23 00:23:58 2025 GMT Not After : Aug 30 00:23:58 2025 GMT Subject: CN=68a90a1e-ea39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:be:f4:b4:ac:fe:9e:59:7b:ed:9b:ae:f6:79: 28:36:5a:89:02:b7:76:dc:e1:ab:dc:b0:40:de:c3: bd:6a:bc:c3:c2:01:95:0d:a6:51:5d:a4:41:fd:b5: d4:6d:6b:c5:1c:76:24:9f:dc:3d:ea:b8:67:53:43: 71:f4:cd:22:9e:3a:7e:ea:46:5a:77:f2:cb:6f:61: 12:92:fc:0c:ef:9c:66:4a:18:d3:2d:73:30:b7:36: d9:6d:50:38:bd:fc:db:bf:8a:e6:2f:29:50:9c:7b: f6:c5:3a:f0:22:c3:2f:87:3f:15:18:4e:0a:95:75: 76:c3:71:56:2c:26:aa:f8:37:2d:f2:17:c2:94:43: 7d:3e:d3:66:f9:0c:3f:64:ec:5e:c6:22:72:8c:e3: 0a:09:13:24:72:12:64:07:12:7a:a1:ac:0c:80:be: 94:e8:cc:b2:62:9d:52:ce:80:c0:fa:36:9f:92:9d: 86:50:da:68:85:7b:96:6c:c1:47:68:dc:da:4d:7a: 36:b5:da:2b:35:72:f9:1b:0a:6f:58:9a:14:26:60: 12:b2:d9:b4:f7:21:66:ac:02:11:af:2f:05:96:1f: ee:35:90:66:2a:c7:36:d0:4b:76:61:5c:bf:d2:12: e5:c3:60:c5:36:ed:d5:58:db:c9:b6:83:73:7f:ec: 7b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9B:E7:76:11:AB:78:14:39:5D:0A:11:0E:60:00:E9:BE:BC:79:02 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3a:31:f6:8d:85:b4:13:ac:9f:3d:39:29:20:96:b9:c4:0e: ec:58:9c:15:93:03:5f:9a:62:79:ab:c0:06:69:30:35:b0:b2: 20:78:bd:77:aa:08:47:45:f9:b4:02:42:f1:4e:1b:f1:32:74: 2f:be:6c:56:f5:8d:9c:c1:5d:ac:8a:17:c1:ad:97:8e:ec:35: 8b:23:d2:9a:7e:da:2a:cf:c5:b6:9f:1f:0e:0e:fe:20:66:9f: 3b:f9:d7:7a:bf:45:c5:0a:8e:72:bf:6b:84:ad:8d:98:32:48: 34:2d:cf:2a:e6:da:59:82:2c:35:ef:f0:6d:af:c8:fc:72:49: 88:2a:a5:b3:e7:dd:83:6a:c3:20:6e:ae:34:87:8a:d9:20:b3: 9c:2b:08:59:82:37:d2:5d:0f:ce:b9:17:09:80:0f:03:b0:52: cc:3c:51:46:5a:ff:eb:d8:d7:01:d4:86:f2:0b:b8:93:e2:b6: 7b:5a:30:e0:43:b9:51:bf:01:47:e8:67:36:29:40:74:df:e4: d2:f9:80:23:00:ab:83:d2:d0:f2:4c:6d:35:38:59:2f:6d:5f: a3:b1:57:48:1c:3c:e9:f5:78:bd:40:55:4b:be:78:5d:f2:51: 07:19:ae:c8:cc:14:8a:a7:73:52:88:39:1f:03:50:13:79:d8: f7:d3:d9:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwODIzMDAyMzU4WhcNMjUwODMwMDAyMzU4WjAYMRYwFAYD VQQDEw02OGE5MGExZS1lYTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAob70tKz+nll77Zuu9nkoNlqJArd23OGr3LBA3sO9arzDwgGVDaZRXaRB/bXU bWvFHHYkn9w96rhnU0Nx9M0injp+6kZad/LLb2ESkvwM75xmShjTLXMwtzbZbVA4 vfzbv4rmLylQnHv2xTrwIsMvhz8VGE4KlXV2w3FWLCaq+Dct8hfClEN9PtNm+Qw/ ZOxexiJyjOMKCRMkchJkBxJ6oawMgL6U6MyyYp1SzoDA+jafkp2GUNpohXuWbMFH aNzaTXo2tdorNXL5GwpvWJoUJmASstm09yFmrAIRry8Flh/uNZBmKsc20Et2YVy/ 0hLlw2DFNu3VWNvJtoNzf+x7YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyb53YR q3gUOV0KEQ5gAOm+vHkCMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATOjH2jYW0E6yfPTkpIJa5xA7sWJwVkwNfmmJ5q8AGaTA1sLIgeL13 qghHRfm0AkLxThvxMnQvvmxW9Y2cwV2sihfBrZeO7DWLI9Kaftoqz8W2nx8ODv4g Zp87+dd6v0XFCo5yv2uErY2YMkg0Lc8q5tpZgiw17/Btr8j8ckmIKqWz592DasMg bq40h4rZILOcKwhZgjfSXQ/OuRcJgA8DsFLMPFFGWv/r2NcB1IbyC7iT4rZ7WjDg Q7lRvwFH6Gc2KUB03+TS+YAjAKuD0tDyTG01OFkvbV+jsVdIHDzp9Xi9QFVLvnhd 8lEHGa7IzBSKp3NSiDkfA1ATedj309kT -----END CERTIFICATE-----Generated at Sun Aug 24 03:04:40 2025 by rpki-client