$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: 2FQrFfI79QqaOJg8QRA1YviuyD+7Od4BTiX5p+fqCrs= Subject key identifier: C7:94:62:05:28:60:14:BD:18:BB:F4:56:7B:F8:26:3F:F1:4A:8E:20 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0493 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0489 Signing time: Sun 19 Oct 2025 01:56:34 +0000 Manifest this update: Sun 19 Oct 2025 01:56:34 +0000 Manifest next update: Sun 26 Oct 2025 01:56:34 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: 2hGw4LNYumqaBYYssscSpsPgQLp39g986IB4M+muSZQ=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Oct 19 01:56:34 2025 GMT Not After : Oct 26 01:56:34 2025 GMT Subject: CN=68f44552-7843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:16:18:63:4d:d4:b7:e1:10:6a:f0:52:e2: 36:7a:b0:09:53:5e:b7:2c:eb:08:7e:e6:4b:c3:7c: 22:af:43:1c:29:a1:47:29:e7:1d:4e:c4:98:0a:bf: b2:04:31:49:a3:29:c7:e0:c2:4f:8f:d3:48:d6:d9: 81:db:23:08:aa:10:79:a6:11:a1:2a:d7:2e:a5:3a: 4d:3d:b1:e3:8d:77:de:f7:a6:65:05:2d:db:7e:2d: 4d:b8:44:6a:d0:24:e6:28:73:a4:7f:3c:b3:1e:ca: ea:02:2b:bd:30:05:ad:28:2a:d9:e0:6c:87:e2:54: f9:7d:f8:17:e8:ab:12:b8:3d:2b:79:d9:3e:3e:42: 52:5e:3b:38:ba:6d:12:dd:ce:94:cd:4b:33:3a:16: ec:4b:1b:0e:68:13:5f:88:fe:f7:1c:f0:28:5f:70: 6b:c0:1b:3b:37:a2:e9:66:4a:89:2d:8d:69:59:d0: 32:55:fb:e9:ed:7e:bb:ed:ed:89:70:e6:df:56:85: de:6d:47:f5:58:27:d2:14:76:25:61:f7:85:5d:22: ba:36:19:5d:5e:e9:b3:26:ab:f1:61:b3:02:04:e1: ec:48:83:07:73:d3:e9:0e:c5:3a:20:8d:7a:aa:82: ed:d6:5f:08:99:df:b8:7d:24:9d:18:47:dd:58:95: ae:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:94:62:05:28:60:14:BD:18:BB:F4:56:7B:F8:26:3F:F1:4A:8E:20 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:72:bd:03:ab:d0:b3:62:43:15:48:1e:05:3c:ad:0b:b3:fb: b4:c9:5e:64:39:94:d5:fe:31:5e:1c:1f:33:c6:13:3d:98:57: ae:e9:ff:17:02:f8:23:7f:db:89:cf:09:0d:cd:f4:2b:57:10: 97:45:47:e2:bc:39:8f:8c:2e:78:aa:a7:11:bf:1a:cd:6e:34: a2:87:3c:f3:b5:bc:51:e7:50:07:b0:ae:e9:2e:23:71:46:d4: 6c:51:00:35:36:51:93:3e:a2:7a:4e:42:a8:51:b9:f4:f9:36: 2d:4c:78:70:b7:bc:42:90:6f:f2:b4:54:47:53:f4:5f:f2:06: 54:c2:74:f7:7b:90:88:22:e7:55:d0:53:8e:84:a9:11:78:76: 9a:2a:07:c3:e8:30:11:08:b4:35:fe:ec:74:82:14:e5:63:d1: 02:c0:63:f9:d9:fb:d3:ac:8d:47:ee:93:84:f2:8c:b6:84:fe: 13:2b:20:81:47:bd:12:ae:82:57:d0:e7:fe:9a:9a:70:65:09: 0e:b8:63:5b:a2:3f:19:73:40:3b:38:7b:1a:0f:61:cb:a1:18: 5d:eb:70:46:93:4a:22:e1:5d:07:b8:38:40:74:d1:53:02:44: 02:ce:b9:85:c4:e4:3f:02:88:a7:84:15:a7:77:c4:09:39:3d: fc:51:94:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUxMDE5MDE1NjM0WhcNMjUxMDI2MDE1NjM0WjAYMRYwFAYD VQQDEw02OGY0NDU1Mi03ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vwWGGNN1LfhEGrwUuI2erAJU163LOsIfuZLw3wir0McKaFHKecdTsSYCr+y BDFJoynH4MJPj9NI1tmB2yMIqhB5phGhKtcupTpNPbHjjXfe96ZlBS3bfi1NuERq 0CTmKHOkfzyzHsrqAiu9MAWtKCrZ4GyH4lT5ffgX6KsSuD0redk+PkJSXjs4um0S 3c6UzUszOhbsSxsOaBNfiP73HPAoX3BrwBs7N6LpZkqJLY1pWdAyVfvp7X677e2J cObfVoXebUf1WCfSFHYlYfeFXSK6NhldXumzJqvxYbMCBOHsSIMHc9PpDsU6II16 qoLt1l8Imd+4fSSdGEfdWJWujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeUYgUo YBS9GLv0Vnv4Jj/xSo4gMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfcr0Dq9CzYkMVSB4FPK0Ls/u0yV5kOZTV/jFeHB8zxhM9mFeu6f8X Avgjf9uJzwkNzfQrVxCXRUfivDmPjC54qqcRvxrNbjSihzzztbxR51AHsK7pLiNx RtRsUQA1NlGTPqJ6TkKoUbn0+TYtTHhwt7xCkG/ytFRHU/Rf8gZUwnT3e5CIIudV 0FOOhKkReHaaKgfD6DARCLQ1/ux0ghTlY9ECwGP52fvTrI1H7pOE8oy2hP4TKyCB R70SroJX0Of+mppwZQkOuGNboj8Zc0A7OHsaD2HLoRhd63BGk0oi4V0HuDhAdNFT AkQCzrmFxOQ/AoinhBWnd8QJOT38UZQm -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:05 2025 by rpki-client