$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: sMkOMOV52hUK5aqQ6uH/cLtQXhpZRrJnWTkbiAyTXFo= Subject key identifier: 1F:07:B8:98:17:15:33:13:CB:13:1B:59:8A:23:CA:D6:71:11:67:55 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 045C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0452 Signing time: Thu 03 Jul 2025 00:35:34 +0000 Manifest this update: Thu 03 Jul 2025 00:35:34 +0000 Manifest next update: Thu 10 Jul 2025 00:35:34 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: 9GJiPtmcyfqfw94659aYe+6D0lLIzZAqOwlj0A76cHo=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Jul 3 00:35:34 2025 GMT Not After : Jul 10 00:35:34 2025 GMT Subject: CN=6865d056-2603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:79:0d:98:69:d5:2a:24:4e:77:6f:f6:25:1a: 7f:bf:1d:6b:56:7b:3b:5d:bf:9e:af:8c:a8:ec:20: e3:40:4c:30:b8:ed:b1:da:9e:8a:7b:6e:41:08:24: f9:ad:1d:62:2a:95:05:f3:bb:52:7f:4b:8e:01:46: c4:a0:e2:57:88:dd:a8:14:d0:65:3d:fa:65:39:84: c0:2e:1b:40:36:07:86:6a:6f:da:a6:ed:1e:25:64: a4:16:b5:9f:6b:7c:4b:fb:e2:c5:6b:6d:4b:cf:45: 40:c5:8a:4a:3a:f3:7c:23:7f:aa:19:eb:0e:01:98: b1:e2:45:d7:a9:6c:ea:de:81:a2:e2:a1:28:4a:13: 03:ad:8f:84:36:a0:a5:ce:09:8d:f6:ff:af:2b:40: 63:d0:ce:12:76:cc:da:88:a3:39:47:a8:64:3b:14: a0:6e:52:48:6c:0d:d8:31:cd:70:5e:bc:79:d8:28: 9f:2f:a3:e6:bf:9b:64:26:3e:34:7b:03:5c:c7:3d: 05:df:7d:07:ed:b3:c8:ee:ab:ce:c2:a1:4a:91:d1: 5e:0a:6c:ac:24:10:47:8b:ee:95:6d:21:4f:33:ab: ab:4e:1f:12:2f:82:24:61:a0:21:93:88:16:b1:07: f0:f0:f9:ef:92:e1:2f:6a:9c:81:35:b3:48:99:ef: 8e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:07:B8:98:17:15:33:13:CB:13:1B:59:8A:23:CA:D6:71:11:67:55 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:66:06:d4:76:1f:67:7b:6c:a9:58:17:54:eb:9a:5b:30:69: 21:ac:15:19:4b:a0:fd:82:6f:8a:2b:dd:e1:73:a4:ac:61:ff: 12:8c:a3:e7:0a:8d:00:8e:a5:f1:5c:24:3c:77:d7:6b:c0:f8: 6f:fd:2f:06:24:4c:6a:78:b2:67:1f:8b:80:21:2d:42:83:b4: c1:6f:8f:7e:3d:ca:91:78:88:a6:91:33:f8:06:16:44:7c:07: 28:35:89:ef:8f:a6:46:82:68:8f:85:9f:51:20:8b:31:00:ba: b4:aa:2b:11:a3:d0:5d:61:1f:58:21:46:1a:c2:0d:86:ba:9d: d5:79:88:2c:76:1a:6c:66:4a:2d:6c:3c:c2:83:e9:37:ee:81: c0:32:01:06:1a:8f:df:65:3f:8d:e5:7c:61:df:3b:f2:f1:80: 8a:2d:b5:01:f8:20:b6:ad:b8:16:99:92:4e:bb:76:bb:30:6b: e3:ba:29:31:11:37:64:c5:ee:39:a8:51:a1:27:50:83:9f:6e: 8d:57:ec:b1:7f:f8:c3:3c:82:ba:2c:df:d5:f4:1d:a6:9a:22: 64:6a:57:4a:15:65:26:e8:0d:33:56:1b:b4:a7:39:7a:52:95: 0a:eb:11:77:6d:69:8f:45:15:da:63:12:c2:e7:92:07:54:f3: e1:f7:2e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNzAzMDAzNTM0WhcNMjUwNzEwMDAzNTM0WjAYMRYwFAYD VQQDEw02ODY1ZDA1Ni0yNjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXkNmGnVKiROd2/2JRp/vx1rVns7Xb+er4yo7CDjQEwwuO2x2p6Ke25BCCT5 rR1iKpUF87tSf0uOAUbEoOJXiN2oFNBlPfplOYTALhtANgeGam/apu0eJWSkFrWf a3xL++LFa21Lz0VAxYpKOvN8I3+qGesOAZix4kXXqWzq3oGi4qEoShMDrY+ENqCl zgmN9v+vK0Bj0M4SdszaiKM5R6hkOxSgblJIbA3YMc1wXrx52CifL6Pmv5tkJj40 ewNcxz0F330H7bPI7qvOwqFKkdFeCmysJBBHi+6VbSFPM6urTh8SL4IkYaAhk4gW sQfw8PnvkuEvapyBNbNIme+OVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8HuJgX FTMTyxMbWYojytZxEWdVMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASZgbUdh9ne2ypWBdU65pbMGkhrBUZS6D9gm+KK93hc6SsYf8SjKPn Co0AjqXxXCQ8d9drwPhv/S8GJExqeLJnH4uAIS1Cg7TBb49+PcqReIimkTP4BhZE fAcoNYnvj6ZGgmiPhZ9RIIsxALq0qisRo9BdYR9YIUYawg2Gup3VeYgsdhpsZkot bDzCg+k37oHAMgEGGo/fZT+N5Xxh3zvy8YCKLbUB+CC2rbgWmZJOu3a7MGvjuikx ETdkxe45qFGhJ1CDn26NV+yxf/jDPIK6LN/V9B2mmiJkaldKFWUm6A0zVhu0pzl6 UpUK6xF3bWmPRRXaYxLC55IHVPPh9y5/ -----END CERTIFICATE-----Generated at Fri Jul 4 21:47:42 2025 by rpki-client