$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: H6Mzha0lY/CxPGOnY7XRHjfUdv3YjMnkjnPplrMTfVQ= Subject key identifier: C5:5F:BF:1E:D9:6C:95:37:4B:10:36:A6:45:C0:FD:09:2A:9E:28:39 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 045A Signing time: Sat 19 Jul 2025 00:37:15 +0000 Manifest this update: Sat 19 Jul 2025 00:37:15 +0000 Manifest next update: Sat 26 Jul 2025 00:37:15 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: IFoAYQ8JCoKJoQNruYDCMYEcHAIH+5BmOKtaiXFmEYU=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:37:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Jul 19 00:37:15 2025 GMT Not After : Jul 26 00:37:15 2025 GMT Subject: CN=687ae8bb-0d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:bd:95:36:34:9d:c1:c5:10:4a:88:bb:c0: b0:a9:ea:b4:d1:a2:d3:78:a8:83:c1:b1:8a:09:40: 97:88:e7:2e:bb:f7:63:5b:08:41:62:5d:08:99:75: 68:7d:27:6a:e4:9b:be:24:e8:c6:6f:0b:9e:83:a4: ba:75:78:04:e0:97:0e:d1:ae:96:88:00:8a:0c:aa: 74:56:a1:ce:b1:bc:c8:72:25:e8:9e:d6:18:a2:03: f8:5d:03:ef:c5:2e:60:7f:47:b9:ba:8e:4b:c6:5d: 51:03:d3:98:dd:3a:a7:b4:f1:f6:24:22:70:29:7a: 08:96:eb:b0:16:3e:90:8e:9e:9e:c7:95:d8:6c:47: bc:9a:46:af:7e:ea:5d:3a:ed:30:39:c6:18:e0:96: 3d:0f:e0:d7:51:a0:d8:97:e9:09:67:48:e6:2a:20: c5:a9:a3:b7:62:6d:29:0d:a6:62:55:d3:fa:7c:84: 4c:1a:6d:e5:49:a6:0a:35:a2:1f:4c:b1:a2:aa:d0: 79:38:62:4b:1a:af:02:b3:14:b4:5d:78:9f:c2:0f: 84:88:57:5d:d7:80:67:65:24:f5:ed:01:da:a9:14: 8e:7c:70:46:84:b3:2e:9d:af:cf:37:36:b1:30:ab: 84:88:1c:cd:b1:3e:56:a1:49:8b:f4:c4:64:73:23: da:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:5F:BF:1E:D9:6C:95:37:4B:10:36:A6:45:C0:FD:09:2A:9E:28:39 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:06:f9:55:7c:d2:51:2a:40:ba:63:ef:d1:79:35:05:50:c5: bd:93:69:b9:82:34:ce:1c:1b:58:89:eb:17:cc:14:6d:b5:7b: 70:65:ef:78:6c:f0:20:fc:ed:57:c1:15:44:9e:d5:1f:23:ec: 3e:14:e8:af:0c:a1:d5:b9:2c:1d:e0:80:b5:8a:e4:fa:d7:77: b9:3b:a9:43:94:6a:34:ae:5f:41:03:fc:72:31:65:78:2b:b6: 31:e2:67:ab:07:8c:4a:18:ed:32:bd:26:c6:48:6d:b9:ec:f1: b9:63:72:91:c4:d4:34:59:39:11:c7:c0:ae:be:ba:a8:8e:01: c7:44:60:ed:c5:7e:fd:50:2a:a6:7b:fb:f7:16:7b:1f:bc:5b: d9:a6:45:ea:0a:62:22:21:44:4a:27:f0:ec:42:a9:f3:3d:bb: 93:2e:cf:cd:76:5c:67:e0:c1:3e:c1:2b:dc:78:65:35:10:5e: 35:45:6f:e3:22:3d:7c:19:4c:4a:34:fe:e1:cc:c1:73:26:6b: e4:4d:62:9b:89:25:79:14:d8:36:4f:d5:c0:74:60:ab:58:0b: b3:ec:3b:de:1f:54:3a:64:a3:02:f5:f5:bd:5e:05:ec:55:55: b7:95:ca:6b:80:03:64:c4:c0:9b:45:ea:f5:11:01:b3:4c:47: 00:84:55:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNzE5MDAzNzE1WhcNMjUwNzI2MDAzNzE1WjAYMRYwFAYD VQQDEw02ODdhZThiYi0wZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/+9lTY0ncHFEEqIu8Cwqeq00aLTeKiDwbGKCUCXiOcuu/djWwhBYl0ImXVo fSdq5Ju+JOjGbwueg6S6dXgE4JcO0a6WiACKDKp0VqHOsbzIciXontYYogP4XQPv xS5gf0e5uo5Lxl1RA9OY3TqntPH2JCJwKXoIluuwFj6Qjp6ex5XYbEe8mkavfupd Ou0wOcYY4JY9D+DXUaDYl+kJZ0jmKiDFqaO3Ym0pDaZiVdP6fIRMGm3lSaYKNaIf TLGiqtB5OGJLGq8CsxS0XXifwg+EiFdd14BnZST17QHaqRSOfHBGhLMuna/PNzax MKuEiBzNsT5WoUmL9MRkcyPa4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVfvx7Z bJU3SxA2pkXA/Qkqnig5MB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6BvlVfNJRKkC6Y+/ReTUFUMW9k2m5gjTOHBtYiesXzBRttXtwZe94 bPAg/O1XwRVEntUfI+w+FOivDKHVuSwd4IC1iuT613e5O6lDlGo0rl9BA/xyMWV4 K7Yx4merB4xKGO0yvSbGSG257PG5Y3KRxNQ0WTkRx8CuvrqojgHHRGDtxX79UCqm e/v3FnsfvFvZpkXqCmIiIURKJ/DsQqnzPbuTLs/Ndlxn4ME+wSvceGU1EF41RW/j Ij18GUxKNP7hzMFzJmvkTWKbiSV5FNg2T9XAdGCrWAuz7DveH1Q6ZKMC9fW9XgXs VVW3lcprgANkxMCbRer1EQGzTEcAhFWc -----END CERTIFICATE-----Generated at Sun Jul 20 16:29:22 2025 by rpki-client