$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: Oc1NcozDdno1yClx8Cfp8YivSwjs1UiZYBbo5E7AshM= Subject key identifier: 09:D2:89:3B:61:90:13:49:72:41:62:6E:30:D9:E2:20:48:44:B0:89 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 04D5 Signing time: Thu 12 Mar 2026 23:25:16 +0000 Manifest this update: Thu 12 Mar 2026 23:25:15 +0000 Manifest next update: Thu 19 Mar 2026 23:25:15 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: 9XUYrxvOwJ6VCq/e5Omu28IFg0c+WDVEcLGm1trhiLI=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: FDpH8dS0OREyIzTLTNCmJQk67Jnkzas8jUdB0DHyoY8=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: f4gCpRS0r2/y5eBNPTgqtyjnYPjR3lsXVlQbnXKGMC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 23:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Mar 12 23:25:15 2026 GMT Not After : Mar 19 23:25:15 2026 GMT Subject: CN=69b34b5c-167f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e3:4b:e2:a9:a3:70:cf:48:e5:75:d4:3b:2b: 9d:d6:37:7e:b1:99:53:47:a2:81:54:99:b3:3f:85: bf:7e:3d:58:85:b8:36:51:18:57:a0:40:83:34:d9: af:e0:87:86:da:ea:07:3c:ff:65:7a:e7:f6:e2:16: e7:70:98:44:57:8d:6a:f4:72:b3:67:22:c8:29:d7: 28:9a:06:c5:68:91:49:ab:07:b9:d4:f2:5d:11:ce: 31:fd:1d:f2:d5:ef:37:44:85:cf:56:9b:96:c6:a2: 41:8b:9e:64:fd:c7:17:b5:38:eb:4a:1b:f8:84:a2: 9c:26:f5:bb:c4:32:9c:6a:a9:d8:27:60:ac:d4:76: ba:ac:bb:e1:7d:17:9e:bb:ee:74:72:bd:17:0e:87: 39:8b:36:37:6d:94:3c:0a:34:07:83:35:61:06:b8: 5a:3d:a9:c2:56:ce:d2:ba:39:4c:20:be:23:de:6c: dc:84:d1:4c:87:ce:f0:52:24:80:23:d5:a9:6d:57: 48:99:64:7a:aa:35:58:99:8c:02:4b:aa:9a:af:a5: 45:f0:08:d5:53:bf:73:83:91:5d:65:e3:fd:62:de: ed:8f:ca:3e:ae:f3:d9:13:1b:09:f5:fe:0e:07:0d: 7b:c6:a0:98:dc:10:b1:b5:56:d1:53:e7:87:09:d2: 55:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D2:89:3B:61:90:13:49:72:41:62:6E:30:D9:E2:20:48:44:B0:89 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:73:1c:4c:3e:bb:a5:33:ac:1d:22:0e:ad:53:0b:fe:d3:68: c6:21:d7:87:d0:f2:ff:98:76:24:cd:a5:9b:52:3b:03:35:de: dd:85:2c:7f:0c:45:18:17:7a:d1:1a:ca:2c:94:14:d6:bf:87: 0e:34:2a:4c:6d:89:61:bb:d3:c0:57:95:d4:e0:24:b5:db:56: 1a:05:30:4f:a1:02:4b:61:bf:03:d1:0c:e2:2f:86:22:7e:2f: 34:d9:6f:03:8f:da:24:01:98:58:65:6c:04:22:7b:39:32:84: 59:5a:6d:a6:f7:91:42:1c:0d:83:34:dd:07:32:dc:08:40:00: bc:67:28:6f:d5:96:50:df:e8:f4:0f:7d:50:8f:93:7d:86:ab: 48:42:b9:43:36:fa:dc:1b:51:df:06:2d:18:e7:09:b0:6e:b1: ae:88:2b:5a:08:34:ee:54:b2:1e:19:8a:d9:03:58:30:09:16: f0:90:57:1a:c7:79:71:d7:e9:fc:52:ea:26:eb:ba:0c:48:82: 98:8b:62:a5:f5:db:b6:2b:28:ec:8b:81:3d:90:3a:cf:c8:9e: 1d:30:0d:57:db:0b:df:28:5c:7b:c3:65:84:44:80:7b:e0:a8: b7:a5:1b:69:17:cc:10:5f:5e:e4:7f:06:6c:82:fb:9e:9c:51: de:ba:e4:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjYwMzEyMjMyNTE1WhcNMjYwMzE5MjMyNTE1WjAYMRYwFAYD VQQDEw02OWIzNGI1Yy0xNjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeNL4qmjcM9I5XXUOyud1jd+sZlTR6KBVJmzP4W/fj1Yhbg2URhXoECDNNmv 4IeG2uoHPP9leuf24hbncJhEV41q9HKzZyLIKdcomgbFaJFJqwe51PJdEc4x/R3y 1e83RIXPVpuWxqJBi55k/ccXtTjrShv4hKKcJvW7xDKcaqnYJ2Cs1Ha6rLvhfRee u+50cr0XDoc5izY3bZQ8CjQHgzVhBrhaPanCVs7SujlMIL4j3mzchNFMh87wUiSA I9WpbVdImWR6qjVYmYwCS6qar6VF8AjVU79zg5FdZeP9Yt7tj8o+rvPZExsJ9f4O Bw17xqCY3BCxtVbRU+eHCdJVuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAnSiTth kBNJckFibjDZ4iBIRLCJMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzHMcTD67pTOsHSIOrVML/tNoxiHXh9Dy/5h2JM2lm1I7AzXe3YUsfwxFGBd6 0RrKLJQU1r+HDjQqTG2JYbvTwFeV1OAktdtWGgUwT6ECS2G/A9EM4i+GIn4vNNlv A4/aJAGYWGVsBCJ7OTKEWVptpveRQhwNgzTdBzLcCEAAvGcob9WWUN/o9A99UI+T fYarSEK5Qzb63BtR3wYtGOcJsG6xrogrWgg07lSyHhmK2QNYMAkW8JBXGsd5cdfp /FLqJuu6DEiCmItipfXbtiso7IuBPZA6z8ieHTANV9sL3yhce8NlhESAe+Cot6Ub aRfMEF9e5H8GbIL7npxR3rrk1Q== -----END CERTIFICATE-----Generated at Sat Mar 14 07:36:11 2026 by rpki-client