$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: Tr7RC50cOO2nlYwGmpvPKdApfehRkH6jiyNZ6ViqA80= Subject key identifier: CF:9F:D6:34:B0:8F:03:D6:4C:9B:5A:0D:F4:CA:18:A6:6A:F8:45:A7 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0441 Signing time: Sat 31 May 2025 00:30:26 +0000 Manifest this update: Sat 31 May 2025 00:30:26 +0000 Manifest next update: Sat 07 Jun 2025 00:30:26 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: N5YuTC3tJ4yelQgMfpb6wez3RLamg5Gi0ZH8NJJaqhY=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: May 31 00:30:26 2025 GMT Not After : Jun 7 00:30:26 2025 GMT Subject: CN=683a4da2-e23d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:58:a4:5f:a4:a7:43:05:dc:70:ea:68:3f:6b: 57:78:4d:31:65:17:e6:98:a8:c3:06:af:f9:5e:06: 00:fe:ae:e1:91:37:3b:b9:d2:57:98:42:5b:eb:5e: 96:cc:84:1f:ab:8d:81:cb:78:59:59:5c:2e:71:31: b3:58:47:9a:73:f7:9a:e5:fe:cd:ab:c1:53:c3:65: 3a:09:a2:20:b9:8c:6d:50:19:90:ef:ce:5e:fc:54: d8:36:c1:bd:1d:e0:51:0f:e4:b8:6f:de:ae:15:a4: f3:0d:07:56:cd:25:49:c5:b3:0d:ca:f2:7b:91:22: d1:91:3a:02:e1:8a:6c:a5:0f:25:ec:64:cb:b2:60: 66:d2:f4:23:99:e8:ad:08:f8:d4:28:dc:bc:f0:b1: b3:a5:0e:ce:11:cf:34:22:8a:ba:96:a9:bf:ab:f5: e7:db:ad:69:13:62:93:3f:f8:d2:53:0c:82:82:d2: 61:76:54:62:fb:49:e8:33:47:25:1d:cc:a0:6f:4e: 1b:14:7a:e9:f3:cd:09:6a:87:15:3b:3a:f9:cc:7b: 27:5f:c6:a2:05:64:14:09:f7:33:10:ab:1b:50:03: 04:53:92:c1:ec:62:38:04:7b:9e:3a:dc:54:a3:92: d5:ba:fe:02:54:e5:86:3e:96:db:c3:a0:99:cb:45: 3b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:9F:D6:34:B0:8F:03:D6:4C:9B:5A:0D:F4:CA:18:A6:6A:F8:45:A7 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f5:53:60:a3:75:f1:1e:6a:00:e9:df:b4:25:95:8c:91:64: 43:a4:87:ea:72:9b:92:1b:74:69:98:04:b4:40:37:93:81:9d: c9:74:af:c9:15:02:ca:a6:fa:77:99:65:e1:93:75:0c:28:4e: 1a:6a:b0:c8:1b:5b:7e:2c:41:30:0d:c2:a4:79:8c:b0:ee:02: 1d:cd:f4:79:b9:92:9e:1c:e6:12:33:16:f6:02:e2:36:20:e2: b2:ba:0b:10:aa:13:1f:2b:f0:1c:ff:b8:6d:b3:65:20:7a:85: 06:7f:98:11:7e:97:5a:be:43:ab:de:29:46:e5:54:61:c9:b2: 92:e4:5d:fe:cd:df:4e:da:98:94:1e:72:18:61:3f:7a:a3:58: 5d:29:3f:9f:e6:b5:33:fa:70:e7:dc:c9:19:50:76:a8:22:fc: 25:76:91:50:aa:aa:d7:85:c6:8f:81:9f:23:37:85:aa:de:83: e0:0a:98:47:6d:9d:b2:aa:44:c4:32:35:45:94:98:89:1e:a1: 89:10:d1:ce:28:17:98:30:86:da:a7:fc:8f:f0:58:bf:b8:37: 56:d5:42:5a:ed:c5:df:43:8a:91:4c:73:92:ff:24:3a:87:77: 04:dc:44:9f:90:ee:5e:77:56:08:51:74:cb:74:d9:92:76:93: fb:0b:4d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNTMxMDAzMDI2WhcNMjUwNjA3MDAzMDI2WjAYMRYwFAYD VQQDEw02ODNhNGRhMi1lMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVikX6SnQwXccOpoP2tXeE0xZRfmmKjDBq/5XgYA/q7hkTc7udJXmEJb616W zIQfq42By3hZWVwucTGzWEeac/ea5f7Nq8FTw2U6CaIguYxtUBmQ785e/FTYNsG9 HeBRD+S4b96uFaTzDQdWzSVJxbMNyvJ7kSLRkToC4YpspQ8l7GTLsmBm0vQjmeit CPjUKNy88LGzpQ7OEc80Ioq6lqm/q/Xn261pE2KTP/jSUwyCgtJhdlRi+0noM0cl Hcygb04bFHrp880JaocVOzr5zHsnX8aiBWQUCfczEKsbUAMEU5LB7GI4BHueOtxU o5LVuv4CVOWGPpbbw6CZy0U7GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+f1jSw jwPWTJtaDfTKGKZq+EWnMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa9VNgo3XxHmoA6d+0JZWMkWRDpIfqcpuSG3RpmAS0QDeTgZ3JdK/J FQLKpvp3mWXhk3UMKE4aarDIG1t+LEEwDcKkeYyw7gIdzfR5uZKeHOYSMxb2AuI2 IOKyugsQqhMfK/Ac/7hts2UgeoUGf5gRfpdavkOr3ilG5VRhybKS5F3+zd9O2piU HnIYYT96o1hdKT+f5rUz+nDn3MkZUHaoIvwldpFQqqrXhcaPgZ8jN4Wq3oPgCphH bZ2yqkTEMjVFlJiJHqGJENHOKBeYMIbap/yP8Fi/uDdW1UJa7cXfQ4qRTHOS/yQ6 h3cE3ESfkO5ed1YIUXTLdNmSdpP7C00M -----END CERTIFICATE-----Generated at Sat May 31 16:53:46 2025 by rpki-client