$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: o+VYRvzMCtqtUTHOAEGd4AL6E2RHGCgQQ353rhkHlDc= Subject key identifier: 16:45:0C:3C:D1:45:99:75:3D:6B:D1:DE:26:81:5B:61:F3:AB:DE:DB Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 04FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 04EE Signing time: Sun 26 Apr 2026 23:43:48 +0000 Manifest this update: Sun 26 Apr 2026 23:43:48 +0000 Manifest next update: Sun 03 May 2026 23:43:48 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: Zb+XZy3l3t4CMurUiJEqPGstixBXLhQLmlRy0y0BPE8=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: 6GOb57PaiaApAF0iXlJZz9FHSsE1JEzbnMGnVso/Dyc=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: n3UNJ83TlZkHD6+TDV3hr4HHxdPAJoRzYmt6WvpCYj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 23:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1276 (0x4fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Apr 26 23:43:48 2026 GMT Not After : May 3 23:43:48 2026 GMT Subject: CN=69eea334-52fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:17:f7:b5:da:e2:46:f2:d7:f6:c8:7f:9c:93: 41:93:9b:61:b2:99:42:77:8a:96:81:3e:3e:9c:3a: d7:a7:8e:6c:89:70:ad:0e:90:de:2b:ec:94:a0:58: cc:4a:87:a3:98:0a:f3:02:4a:13:d6:f1:60:ab:bd: 5b:4d:df:65:e9:45:5f:37:9a:a5:4e:86:99:19:4c: 26:e6:77:13:d1:c4:2b:c8:26:e0:71:e9:33:23:b2: 25:31:6e:2c:42:9f:81:c6:4c:77:2f:44:66:53:48: 17:ec:b4:c3:c7:35:7a:f6:a8:24:d0:54:5a:30:7e: f6:8f:8c:40:7c:6b:a7:45:51:27:14:52:66:4b:7d: 2c:91:fb:a8:69:8d:3a:20:43:33:13:97:7a:9c:6a: f9:12:3e:f0:e4:22:06:8b:d4:de:31:b7:aa:c3:9a: c2:f0:00:c8:1b:0f:fa:e8:a9:a2:f3:0d:2c:00:78: 56:f9:94:7a:31:6c:9c:be:04:25:e2:8c:7f:2b:25: 65:a1:af:e2:60:92:f7:b0:07:9a:73:53:a5:1f:46: 16:63:e8:4a:38:a3:49:b1:43:48:ff:a0:5c:c7:d0: 98:76:48:67:23:42:13:40:ea:56:c7:57:db:09:c7: ea:2b:d7:36:74:75:e9:46:48:1a:f3:e1:da:8c:96: be:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:45:0C:3C:D1:45:99:75:3D:6B:D1:DE:26:81:5B:61:F3:AB:DE:DB X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:60:a6:67:ec:ee:a4:27:89:92:a9:f8:5c:29:58:a2:5b:df: b4:cb:d0:e7:6b:d9:d5:f8:60:f1:ef:33:21:4f:15:ff:90:d1: aa:26:be:98:dc:8b:0a:47:77:fb:d2:2d:89:1c:d6:5a:79:d9: c2:28:e2:e2:4c:b3:57:08:cc:77:ce:85:12:ca:c9:97:cd:a2: 2a:01:14:dd:c8:7e:c2:1a:03:5a:62:6c:9c:46:6c:24:c6:fc: e6:b6:4e:f2:65:a2:4d:c2:a8:53:df:0e:7e:75:4e:b5:10:10: 77:2d:0d:89:62:15:56:6e:57:2d:fa:33:4a:ed:0c:4d:be:d0: 8b:d2:79:2a:97:b0:25:cb:31:f6:2a:9e:76:ba:70:bb:94:52: 96:67:78:0f:07:19:3f:af:96:4f:8a:3d:45:55:f0:5c:c3:3b: 1d:59:a2:7a:20:55:2d:67:36:a8:79:f1:05:bc:d5:fd:e9:fc: 50:a7:6c:15:f2:aa:4e:a2:f5:f5:09:dc:46:36:aa:74:22:c7: f7:bb:22:f6:d9:67:8f:d1:47:ad:72:a9:c7:43:88:77:87:b0: 6d:62:6d:cf:82:84:e4:92:3c:74:12:8c:47:ca:fa:82:bd:0e: 9d:a8:31:b8:35:27:4f:99:5b:06:3d:a7:f7:61:09:2d:f8:60: 4c:5d:05:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjYwNDI2MjM0MzQ4WhcNMjYwNTAzMjM0MzQ4WjAYMRYwFAYD VQQDEw02OWVlYTMzNC01MmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRf3tdriRvLX9sh/nJNBk5thsplCd4qWgT4+nDrXp45siXCtDpDeK+yUoFjM SoejmArzAkoT1vFgq71bTd9l6UVfN5qlToaZGUwm5ncT0cQryCbgcekzI7IlMW4s Qp+Bxkx3L0RmU0gX7LTDxzV69qgk0FRaMH72j4xAfGunRVEnFFJmS30skfuoaY06 IEMzE5d6nGr5Ej7w5CIGi9TeMbeqw5rC8ADIGw/66Kmi8w0sAHhW+ZR6MWycvgQl 4ox/KyVloa/iYJL3sAeac1OlH0YWY+hKOKNJsUNI/6Bcx9CYdkhnI0ITQOpWx1fb CcfqK9c2dHXpRkga8+HajJa+IwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBZFDDzR RZl1PWvR3iaBW2Hzq97bMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbGCmZ+zupCeJkqn4XClYolvftMvQ52vZ1fhg8e8zIU8V/5DRqia+mNyLCkd3 +9ItiRzWWnnZwiji4kyzVwjMd86FEsrJl82iKgEU3ch+whoDWmJsnEZsJMb85rZO 8mWiTcKoU98OfnVOtRAQdy0NiWIVVm5XLfozSu0MTb7Qi9J5KpewJcsx9iqedrpw u5RSlmd4DwcZP6+WT4o9RVXwXMM7HVmieiBVLWc2qHnxBbzV/en8UKdsFfKqTqL1 9QncRjaqdCLH97si9tlnj9FHrXKpx0OId4ewbWJtz4KE5JI8dBKMR8r6gr0Onagx uDUnT5lbBj2n92EJLfhgTF0FFw== -----END CERTIFICATE-----Generated at Tue Apr 28 13:09:06 2026 by rpki-client