$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: 0ZMMoh7+8+HOxSpEIPc4GYHUGwXeZsEdB5dgSQnL7U4= Subject key identifier: E3:F3:23:19:55:BD:BE:58:E6:78:A4:E9:5A:6F:4F:AB:FA:80:DE:CF Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 047E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0474 Signing time: Sun 07 Sep 2025 00:31:36 +0000 Manifest this update: Sun 07 Sep 2025 00:31:36 +0000 Manifest next update: Sun 14 Sep 2025 00:31:36 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: cFBFktCiZCsiQLbMgMAVGDjGb44E48nc1IOGQWuRseU=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1150 (0x47e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Sep 7 00:31:36 2025 GMT Not After : Sep 14 00:31:36 2025 GMT Subject: CN=68bcd268-bdcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9f:df:e8:6a:0c:6d:7c:12:9e:d8:83:29:40: 1d:95:5f:8e:9d:d0:8b:80:4d:16:20:73:01:06:12: c0:5c:d7:ff:3e:05:a4:b9:41:bd:e2:93:08:51:c8: fc:ba:84:44:0e:7d:6a:86:c6:4a:79:61:fa:02:a6: 3c:d0:14:e0:72:bf:c1:6a:55:9a:99:36:85:e4:4e: a5:4d:3f:90:d8:b6:e0:e8:14:05:78:70:59:f3:02: 37:6d:53:3a:ac:21:6e:29:47:87:8f:c6:69:4a:fd: 0b:41:fc:43:17:87:8a:5e:96:88:c5:d3:5f:39:b6: a5:1b:47:f2:b9:ab:85:4c:31:16:e3:81:55:30:16: a9:0c:16:20:2e:dd:34:5f:e4:63:a4:ef:74:27:ef: 84:aa:2d:0c:d7:46:bf:c8:61:67:5f:ab:a1:85:78: 56:f8:f8:c3:06:4e:84:f5:da:bd:f0:1b:94:b9:6c: 9f:32:9f:3e:b4:e8:42:c7:ac:e2:17:84:6e:ce:61: 33:f4:f5:0a:15:ec:fb:6f:18:c9:f3:4c:cd:7a:25: 86:17:18:0d:d7:4e:ba:3c:19:9b:75:4b:d9:18:f1: 62:a6:a5:cc:1b:54:0e:8a:e9:2e:14:d8:ac:75:b7: bc:29:c2:75:03:a8:3b:31:54:97:af:01:c2:03:47: da:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F3:23:19:55:BD:BE:58:E6:78:A4:E9:5A:6F:4F:AB:FA:80:DE:CF X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:8e:ff:6d:38:9d:3f:13:37:0a:eb:17:ba:67:d6:4b:a5:0d: 19:91:04:85:1f:bd:d7:53:1e:9b:3a:59:f8:a9:c5:d2:08:9f: c3:00:e8:76:2f:c3:52:8f:37:13:7a:50:99:53:65:25:5e:f0: c7:ef:95:97:c8:45:41:5b:37:50:d8:95:f3:bd:44:ca:ef:43: bd:07:78:a8:75:c3:98:37:47:11:4c:e8:08:f1:59:66:e1:a6: bc:05:c7:fd:85:c6:bb:b5:81:80:7e:8e:be:85:09:48:62:ae: 0d:6a:fe:78:bb:3e:e6:15:03:07:10:6f:99:04:a3:df:37:69: 93:88:12:bb:97:69:30:d2:40:1e:f5:67:66:0e:0d:16:49:15: 74:37:2a:c4:a7:65:46:fb:ad:c0:33:b2:2f:be:6e:33:72:db: b0:c9:c6:20:59:83:b6:7d:e2:52:df:3a:f1:04:e5:bd:c0:99: ec:a7:a2:99:4e:d9:a2:95:86:ab:0d:fa:2e:85:5a:01:fa:24: 84:9e:45:e2:91:58:5b:24:ea:1a:57:12:ba:47:0d:f5:6f:9d: 19:cc:b5:95:87:a2:e5:0d:d3:13:92:fe:06:c9:83:80:ed:59: 6d:c9:13:1b:f7:cc:87:17:af:46:11:91:e9:70:8b:36:4b:76: 2a:8f:2a:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwOTA3MDAzMTM2WhcNMjUwOTE0MDAzMTM2WjAYMRYwFAYD VQQDEw02OGJjZDI2OC1iZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5/f6GoMbXwSntiDKUAdlV+OndCLgE0WIHMBBhLAXNf/PgWkuUG94pMIUcj8 uoREDn1qhsZKeWH6AqY80BTgcr/BalWamTaF5E6lTT+Q2Lbg6BQFeHBZ8wI3bVM6 rCFuKUeHj8ZpSv0LQfxDF4eKXpaIxdNfObalG0fyuauFTDEW44FVMBapDBYgLt00 X+RjpO90J++Eqi0M10a/yGFnX6uhhXhW+PjDBk6E9dq98BuUuWyfMp8+tOhCx6zi F4RuzmEz9PUKFez7bxjJ80zNeiWGFxgN1066PBmbdUvZGPFipqXMG1QOiukuFNis dbe8KcJ1A6g7MVSXrwHCA0faAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPzIxlV vb5Y5nik6VpvT6v6gN7PMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFjv9tOJ0/EzcK6xe6Z9ZLpQ0ZkQSFH73XUx6bOln4qcXSCJ/DAOh2 L8NSjzcTelCZU2UlXvDH75WXyEVBWzdQ2JXzvUTK70O9B3iodcOYN0cRTOgI8Vlm 4aa8Bcf9hca7tYGAfo6+hQlIYq4Nav54uz7mFQMHEG+ZBKPfN2mTiBK7l2kw0kAe 9WdmDg0WSRV0NyrEp2VG+63AM7Ivvm4zctuwycYgWYO2feJS3zrxBOW9wJnsp6KZ TtmilYarDfouhVoB+iSEnkXikVhbJOoaVxK6Rw31b50ZzLWVh6LlDdMTkv4GyYOA 7VltyRMb98yHF69GEZHpcIs2S3YqjyoF -----END CERTIFICATE-----Generated at Mon Sep 8 01:55:06 2025 by rpki-client