$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: XzJfDN5i3LMBQdwkPnBe3FAXkkOXxNJwFYYiV2xx8og= Subject key identifier: 0F:87:A9:77:9F:5F:3E:BE:2B:8D:A8:E6:DD:1D:BF:26:4E:72:6E:D9 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 048A Signing time: Thu 23 Oct 2025 01:17:15 +0000 Manifest this update: Thu 23 Oct 2025 01:17:15 +0000 Manifest next update: Thu 30 Oct 2025 01:17:15 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: zb+UNqsFEN+Lw50todnluAijtLTQFt0SNhwlnO0HvZo=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 01:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Oct 23 01:17:15 2025 GMT Not After : Oct 30 01:17:15 2025 GMT Subject: CN=68f9821b-b33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:44:6e:47:8e:1d:e6:1b:52:18:4f:86:7f:2f: da:2f:ce:17:78:49:bd:66:01:74:d9:74:b5:e0:c9: 6b:c0:4d:c9:fa:0c:ae:cf:13:eb:da:81:69:af:2b: 07:2d:6c:43:7b:8f:c2:20:c7:11:1f:9e:57:38:33: 7c:04:4b:83:81:d9:e2:c9:53:e9:0b:eb:3b:d9:6c: 7b:e4:47:c1:e3:20:96:0c:fa:8c:3a:f9:93:41:75: 56:7b:fa:a9:9c:b0:e5:2d:f6:09:b1:77:35:f2:34: 7d:fe:56:1d:40:dd:34:ae:4e:6b:ba:74:1f:2b:0a: b2:19:25:bd:fb:d2:d2:20:5b:22:a3:18:25:00:62: bc:f0:e6:b0:e8:f6:70:ed:62:7f:aa:73:b4:77:87: 56:84:b0:80:1a:8b:c2:54:96:be:2f:b9:8d:37:6b: e7:19:3d:08:f5:df:0e:a0:25:ac:7b:dc:ed:a3:3b: d3:2a:20:6b:2d:34:0d:f0:36:24:19:2d:56:c9:4f: e7:05:ef:a4:ba:6f:c9:11:98:a7:5c:11:3f:65:d0: 99:e0:35:a6:05:99:d2:19:51:df:4c:a6:90:a4:f9: 9a:62:07:c5:56:b2:50:48:28:2e:07:c0:be:b1:ef: 97:a5:77:e4:ff:bf:47:6d:d8:26:ec:37:45:8a:ac: d2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:87:A9:77:9F:5F:3E:BE:2B:8D:A8:E6:DD:1D:BF:26:4E:72:6E:D9 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:2d:ac:d2:46:c1:8e:5a:f9:88:cc:72:ec:a3:07:20:64:67: dc:b8:18:67:e0:8e:e0:13:c3:0f:e3:10:d9:f2:a5:46:8c:4a: 71:79:d2:fb:ff:68:4b:68:58:a9:77:bd:0d:c6:45:ec:da:5b: 94:d8:bf:8a:5f:50:e3:15:5f:82:74:76:aa:35:be:02:e3:26: 6b:70:f2:41:dd:e0:8e:d7:2e:2b:c4:f4:44:64:1c:8a:c4:01: 53:29:ad:66:14:58:3b:09:56:c0:f4:ec:85:51:60:7b:3d:8a: e2:15:6b:5b:53:db:32:2b:ca:e1:ff:56:fb:81:9e:ca:3c:6d: 28:1f:e4:38:52:15:9d:e2:e1:60:e9:9f:0c:8f:71:95:b5:55: 02:5c:75:4c:7c:57:c9:a8:c1:f3:b0:5f:25:b5:53:88:d7:14: 3b:99:db:1c:15:89:12:a6:df:de:d1:c7:c8:ac:96:de:73:3b: 8a:d8:59:8f:3c:a0:5f:86:fe:0e:a0:6e:f6:fe:19:0d:b7:fd: 44:1a:ba:b3:34:e1:79:5d:4b:d8:04:ab:2f:66:61:50:54:95: f4:df:65:ec:62:f7:7e:e7:c6:74:d3:89:6b:3c:d4:96:6b:e1: 3f:84:e9:38:8c:99:0e:87:ee:2f:98:bc:59:bd:a0:c5:68:20: 20:10:d7:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUxMDIzMDExNzE1WhcNMjUxMDMwMDExNzE1WjAYMRYwFAYD VQQDEw02OGY5ODIxYi1iMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskRuR44d5htSGE+Gfy/aL84XeEm9ZgF02XS14MlrwE3J+gyuzxPr2oFprysH LWxDe4/CIMcRH55XODN8BEuDgdniyVPpC+s72Wx75EfB4yCWDPqMOvmTQXVWe/qp nLDlLfYJsXc18jR9/lYdQN00rk5runQfKwqyGSW9+9LSIFsioxglAGK88Oaw6PZw 7WJ/qnO0d4dWhLCAGovCVJa+L7mNN2vnGT0I9d8OoCWse9ztozvTKiBrLTQN8DYk GS1WyU/nBe+kum/JEZinXBE/ZdCZ4DWmBZnSGVHfTKaQpPmaYgfFVrJQSCguB8C+ se+XpXfk/79Hbdgm7DdFiqzSEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+HqXef Xz6+K42o5t0dvyZOcm7ZMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8LazSRsGOWvmIzHLsowcgZGfcuBhn4I7gE8MP4xDZ8qVGjEpxedL7 /2hLaFipd70NxkXs2luU2L+KX1DjFV+CdHaqNb4C4yZrcPJB3eCO1y4rxPREZByK xAFTKa1mFFg7CVbA9OyFUWB7PYriFWtbU9syK8rh/1b7gZ7KPG0oH+Q4UhWd4uFg 6Z8Mj3GVtVUCXHVMfFfJqMHzsF8ltVOI1xQ7mdscFYkSpt/e0cfIrJbeczuK2FmP PKBfhv4OoG72/hkNt/1EGrqzNOF5XUvYBKsvZmFQVJX032XsYvd+58Z004lrPNSW a+E/hOk4jJkOh+4vmLxZvaDFaCAgENdo -----END CERTIFICATE-----Generated at Thu Oct 23 10:15:11 2025 by rpki-client