$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: LjaRyrU7kp1yyNcYVarbvz9zyIXYWZ6Ug/t8hx8S2J0= Subject key identifier: C6:E9:31:C7:CC:37:9B:22:21:F4:F0:0A:69:A8:BE:DF:65:6D:53:A3 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 042D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0425 Signing time: Wed 09 Apr 2025 00:05:54 +0000 Manifest this update: Wed 09 Apr 2025 00:05:53 +0000 Manifest next update: Wed 16 Apr 2025 00:05:53 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: MT7Uzn0Dpash4GnDfOE58VI7x443nry4wVbh+YDR/ZI=) 2: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: GJE94mU6Sr8CoGwsF6tCrZgMYHj9w/NGptO5MRYqwuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814 Validity Not Before: Apr 9 00:05:53 2025 GMT Not After : Apr 16 00:05:53 2025 GMT Subject: CN=67f5b9e1-c95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:04:03:67:a4:00:4f:77:f1:94:8b:49:db: 9c:36:92:1b:98:5d:54:ad:71:1a:bb:47:5a:b2:e8: 42:ad:7b:6a:24:59:0e:5e:20:9c:52:7c:5a:12:01: 26:70:83:e3:98:be:7e:64:ff:21:18:12:53:9e:f2: 74:d9:69:d9:9f:5c:f6:9a:3d:aa:e7:2d:fb:22:43: 55:d3:24:d9:f0:2a:58:a3:bd:48:85:87:c8:5b:b6: 99:42:6e:24:38:9c:c2:d2:b8:5d:dc:69:69:37:6c: 3c:15:ed:33:f6:f7:77:52:cb:81:c2:ed:e9:b8:39: 67:f6:17:5c:25:a3:62:3c:f9:eb:7c:09:ae:82:6a: 60:85:e8:79:5d:a9:39:14:e0:9e:74:52:1e:05:7c: 11:5d:09:a1:f1:40:1a:94:d7:ee:4e:e6:46:dc:cd: 33:b8:5b:9d:42:35:a5:2d:e8:ea:fe:d3:3f:d2:99: bd:bd:b1:67:aa:c6:c2:fb:39:70:a9:11:15:d0:00: 59:b8:10:15:41:6f:2f:2f:61:57:94:f6:25:c8:5e: a3:a4:eb:2b:94:f8:d9:80:bb:73:a6:27:c4:b1:e7: ff:d6:48:c0:be:47:c3:5a:b6:dd:98:3e:13:4c:de: fe:f6:46:3a:b5:c9:a7:1b:a1:4a:9a:85:7b:c3:0a: d8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E9:31:C7:CC:37:9B:22:21:F4:F0:0A:69:A8:BE:DF:65:6D:53:A3 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:be:2e:bb:ab:cb:ef:4a:88:28:dd:49:bc:d9:dc:0c:75:af: cd:7d:ea:14:a3:d5:99:a6:81:1e:f0:f9:0b:b3:5f:f4:ac:44: 62:0f:7f:90:b2:db:35:15:64:18:92:a2:46:4a:db:5b:80:9c: ef:ed:1f:6d:76:03:e0:0a:5c:d7:74:16:7b:59:47:fb:f3:0a: 86:a4:d9:62:8b:c5:dc:a6:fc:f6:7c:cf:9d:19:44:06:a5:a9: 57:a8:6b:e2:27:f5:09:b9:34:59:ad:bb:86:74:a5:e9:93:de: 16:33:6b:e1:13:85:8a:7c:b3:67:2f:2a:19:65:43:c6:99:a7: c6:7d:dd:45:0e:5a:cf:a5:b0:54:04:b0:b9:89:7b:cc:7c:dd: 35:b9:ff:5a:3d:24:29:76:f3:06:72:89:9a:7a:8e:ea:70:2f: 1d:de:3b:e7:a7:c5:46:67:c0:7c:3e:49:6f:96:a7:b6:4d:aa: 1c:c9:81:5f:0d:3e:02:ad:5d:46:55:85:06:8c:cd:c5:fa:d7: 3a:8d:3a:f5:3a:46:6b:27:ad:5d:4b:0d:36:17:da:2c:df:f4: 85:a6:94:a9:8a:bf:6d:9d:46:04:10:37:67:e7:94:d0:e9:fa: b8:ed:a4:1f:0a:2f:f8:79:f8:d0:3a:21:cd:5c:90:f5:e6:0a: e2:e4:90:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNDA5MDAwNTUzWhcNMjUwNDE2MDAwNTUzWjAYMRYwFAYD VQQDEw02N2Y1YjllMS1jOTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPsEA2ekAE938ZSLSducNpIbmF1UrXEau0dasuhCrXtqJFkOXiCcUnxaEgEm cIPjmL5+ZP8hGBJTnvJ02WnZn1z2mj2q5y37IkNV0yTZ8CpYo71IhYfIW7aZQm4k OJzC0rhd3GlpN2w8Fe0z9vd3UsuBwu3puDln9hdcJaNiPPnrfAmugmpgheh5Xak5 FOCedFIeBXwRXQmh8UAalNfuTuZG3M0zuFudQjWlLejq/tM/0pm9vbFnqsbC+zlw qREV0ABZuBAVQW8vL2FXlPYlyF6jpOsrlPjZgLtzpifEsef/1kjAvkfDWrbdmD4T TN7+9kY6tcmnG6FKmoV7wwrYSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbpMcfM N5siIfTwCmmovt9lbVOjMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdvi67q8vvSogo3Um82dwMda/NfeoUo9WZpoEe8PkLs1/0rERiD3+Q sts1FWQYkqJGSttbgJzv7R9tdgPgClzXdBZ7WUf78wqGpNlii8Xcpvz2fM+dGUQG palXqGviJ/UJuTRZrbuGdKXpk94WM2vhE4WKfLNnLyoZZUPGmafGfd1FDlrPpbBU BLC5iXvMfN01uf9aPSQpdvMGcomaeo7qcC8d3jvnp8VGZ8B8Pklvlqe2TaocyYFf DT4CrV1GVYUGjM3F+tc6jTr1OkZrJ61dSw02F9os3/SFppSpir9tnUYEEDdn55TQ 6fq47aQfCi/4efjQOiHNXJD15gri5JCA -----END CERTIFICATE-----Generated at Fri Apr 11 07:26:35 2025 by rpki-client