$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft File: kROhaGm30B54nuCf4m5q-jfPPkc.mft (raw, json) Hash identifier: JElwDXjA/9PAW0U/AdC7bbvGvE97wLt+vRRakmcqqCo= Subject key identifier: D6:40:F1:AE:F5:B1:5B:62:C4:D9:89:97:83:2C:81:5A:52:70:5E:96 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 043B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft Manifest number: 0431 Signing time: Sun 27 Apr 2025 00:00:02 +0000 Manifest this update: Sun 27 Apr 2025 00:00:01 +0000 Manifest next update: Sun 04 May 2025 00:00:01 +0000 Files and hashes: 1: kROhaGm30B54nuCf4m5q-jfPPkc.crl (hash: Y3JFz1UAk6cbUljXVEoGxqW1lduSwPvoWKLU5GkBAaI=) 2: 8628E1BA210611F082BE7E10C4F9AE02.roa (hash: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE=) 3: 2F74D644ABC711EF9CD3CE81C4F9AE02.roa (hash: wmmIaxLCg5K0uFc5rnys8oy6i0z0O/e/VdhovEca3nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Apr 27 00:00:01 2025 GMT Not After : May 4 00:00:01 2025 GMT Subject: CN=680d7382-a1b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f6:75:38:2a:ed:7c:d1:de:f6:11:ff:63:8f: a7:53:1a:ac:0d:ef:86:e0:79:c3:aa:ae:11:30:d8: 7e:f4:d9:a4:74:06:c3:ee:d0:53:86:02:e8:e6:67: a1:8a:50:03:27:a3:56:89:a6:f2:1f:d0:ab:8b:bc: cd:1d:39:1c:91:bc:e0:f8:66:b0:cd:d7:9f:34:ee: 58:11:8a:5f:f9:47:d0:21:ff:4b:34:f5:2a:dc:10: 61:a0:cc:31:7c:37:9a:42:09:08:71:b2:d2:1e:db: 33:bc:2f:9f:5c:c0:3b:5d:0d:df:81:7e:de:db:f9: e8:e0:20:76:e8:cf:81:21:25:e7:6d:48:31:cc:1f: b8:4c:bf:65:df:c5:d8:1d:1d:f3:ba:c0:77:64:75: 83:e1:20:da:2c:f9:96:65:4b:df:f6:49:bc:fc:bc: b9:ae:22:25:40:9e:a7:3f:2c:6c:de:bf:08:ad:9c: 1b:9a:4c:71:ae:be:1d:d2:f5:a8:6c:a6:2e:94:a6: 9d:09:74:b2:e2:8f:fb:fa:1c:08:f5:ab:4a:d6:c6: 68:98:93:a8:1d:b6:05:d4:73:e1:f4:ae:80:94:fd: 90:c2:4a:4d:f3:13:45:f0:fa:7c:4f:ac:9e:6c:bc: 01:52:a2:99:5c:d3:c0:f7:8b:89:53:25:46:d9:3b: ac:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:40:F1:AE:F5:B1:5B:62:C4:D9:89:97:83:2C:81:5A:52:70:5E:96 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8a:7c:a0:ad:b7:d8:e4:3d:39:87:05:4d:05:49:c3:85:0c: ae:5b:09:14:05:3b:9c:eb:e8:d0:8c:4f:d0:72:40:73:00:5e: 80:4e:e8:b1:0c:8c:15:2f:b1:60:1a:b1:e4:d1:c3:78:c9:94: e8:d0:e7:3f:c8:de:9f:f4:86:e4:72:46:1b:7c:5b:48:ba:03: 2c:c4:11:b8:61:35:ea:6b:9e:f4:0a:12:0d:b6:fa:39:98:8d: 65:8e:6d:23:9d:36:19:a6:0f:45:80:23:1f:39:27:f2:77:ac: 85:7f:e6:78:90:b3:6f:13:a0:8f:e4:8b:29:39:c5:82:64:64: d9:96:78:e4:0c:4f:17:7c:0e:96:35:40:50:ea:d0:b4:57:a6: 69:5f:bc:51:54:b7:3b:c3:9f:7a:26:e2:11:96:a7:17:be:57: a7:0f:4b:6b:95:a2:e2:a0:31:2f:3f:ea:94:81:62:3a:6b:c4: b6:56:aa:7b:8f:76:bf:07:9e:ed:09:9c:f6:78:6b:c7:44:4b: e0:ee:56:70:85:f2:fa:44:ee:f1:55:5b:22:a9:c8:bc:17:dd: 86:ae:42:f4:91:91:34:a0:6e:29:c8:11:13:ff:05:b5:ec:17: f0:ad:86:8c:5e:34:9d:18:91:eb:bc:11:b0:48:74:b2:c3:a5: 38:d5:03:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNDI3MDAwMDAxWhcNMjUwNTA0MDAwMDAxWjAYMRYwFAYD VQQDEw02ODBkNzM4Mi1hMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/Z1OCrtfNHe9hH/Y4+nUxqsDe+G4HnDqq4RMNh+9NmkdAbD7tBThgLo5meh ilADJ6NWiabyH9Cri7zNHTkckbzg+GawzdefNO5YEYpf+UfQIf9LNPUq3BBhoMwx fDeaQgkIcbLSHtszvC+fXMA7XQ3fgX7e2/no4CB26M+BISXnbUgxzB+4TL9l38XY HR3zusB3ZHWD4SDaLPmWZUvf9km8/Ly5riIlQJ6nPyxs3r8IrZwbmkxxrr4d0vWo bKYulKadCXSy4o/7+hwI9atK1sZomJOoHbYF1HPh9K6AlP2QwkpN8xNF8Pp8T6ye bLwBUqKZXNPA94uJUyVG2Tus6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZA8a71 sVtixNmJl4MsgVpScF6WMB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzgxNC8yNTQyQjQyMjVENzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBC NTRudUNmNG01cS1qZlBQa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOinygrbfY5D05hwVNBUnDhQyuWwkUBTuc6+jQjE/QckBzAF6ATuix DIwVL7FgGrHk0cN4yZTo0Oc/yN6f9IbkckYbfFtIugMsxBG4YTXqa570ChINtvo5 mI1ljm0jnTYZpg9FgCMfOSfyd6yFf+Z4kLNvE6CP5IspOcWCZGTZlnjkDE8XfA6W NUBQ6tC0V6ZpX7xRVLc7w596JuIRlqcXvlenD0trlaLioDEvP+qUgWI6a8S2Vqp7 j3a/B57tCZz2eGvHREvg7lZwhfL6RO7xVVsiqci8F92GrkL0kZE0oG4pyBET/wW1 7BfwrYaMXjSdGJHrvBGwSHSyw6U41QO4 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:15 2025 by rpki-client on console.sobornost.net