$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: p2o17DbcDdxao0nH6l78d9DIuGVl1y/XhNCTASmIwMI= Subject key identifier: 53:2D:BC:88:72:0C:C8:F8:4B:89:3E:32:6B:C3:A8:C2:8B:D3:B8:25 Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 09CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 09BD Signing time: Fri 30 May 2025 20:11:36 +0000 Manifest this update: Fri 30 May 2025 20:11:35 +0000 Manifest next update: Fri 06 Jun 2025 20:11:35 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: iwZMSBSVSgeEYQeBAbnC6PNncKkZ2A0XewwR2uCbSr4=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: bxum+WOpJCc/rrq4Z1XLEVCWKFHxlT2LUexLiRBlPmM=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: zWd+mcCk9l+jHD4vYbrupaGOty0zdeubNycUNDATtLs=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: nXu3TrhqWzeQhIAXd22b9k7kj49e1Ni4pYpn1PtXrj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2511 (0x9cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: May 30 20:11:35 2025 GMT Not After : Jun 6 20:11:35 2025 GMT Subject: CN=683a10f8-5b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:47:e2:5b:3d:ad:c2:67:d4:ee:c5:15:74:9f: 8a:05:80:5f:df:e0:6b:15:ca:e1:0b:6e:b8:10:ec: 70:65:98:4a:3b:5d:d6:e6:37:41:e1:7a:6a:14:34: f7:cf:1c:76:ce:11:f1:6a:9c:7d:c5:02:31:ce:72: 63:04:35:28:44:fd:f7:4a:fd:8b:a5:6c:92:87:2e: b9:16:03:73:da:a5:7c:36:f9:7b:19:e5:9f:55:aa: 7c:77:ff:b1:4b:05:75:21:ff:ad:c2:7e:ab:d4:7e: 4f:00:7b:11:89:71:b1:27:68:57:a2:8c:5b:a3:f7: b0:87:3c:ff:71:c9:dc:ee:15:41:4e:62:65:f9:67: e5:e0:ad:14:2e:59:0f:11:be:6d:12:aa:e0:a4:cc: 45:d6:98:5c:f3:06:a6:44:ec:20:1d:85:6d:32:3b: ab:87:01:e8:84:c6:7d:3d:0f:9b:aa:58:f7:60:96: 2f:8e:71:62:8e:85:2d:fb:85:c1:2f:f5:fe:1d:9b: 5a:76:ad:76:86:7b:7f:f6:83:20:31:06:10:80:7b: 67:80:0d:b9:c4:14:cd:b5:7e:66:d7:9b:60:a6:a7: c6:8d:ff:c3:55:92:57:fd:97:60:17:4e:af:c7:f4: 4a:eb:30:ee:69:39:43:7f:7c:14:35:13:e8:9e:8a: ab:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2D:BC:88:72:0C:C8:F8:4B:89:3E:32:6B:C3:A8:C2:8B:D3:B8:25 X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:5e:0c:81:68:ca:71:53:c6:f5:8a:42:d8:23:1b:4a:b6:98: db:64:a7:66:88:48:4b:83:b2:22:40:ab:48:83:f4:c7:04:92: 3e:8e:d8:dd:99:1d:e0:be:ec:d0:57:c2:ad:f1:d4:ea:dc:b2: d8:88:be:a2:fa:31:0e:d8:af:88:f5:69:27:5f:6d:21:3d:cb: de:b8:04:f5:5b:30:82:50:66:e9:71:90:8e:f7:20:f7:aa:43: fe:74:5b:fa:ea:1b:d3:69:44:d0:8f:99:34:c5:ee:89:67:bc: 58:77:b9:37:4c:94:aa:ec:6c:94:40:00:a2:f5:f4:f2:7b:22: f6:4f:8e:0a:ad:e9:31:03:8e:c2:a6:ed:28:36:71:59:41:80: 7f:86:b1:0c:62:fa:78:87:70:1f:d5:c4:90:20:d4:95:99:b2: dc:6f:ee:9a:2f:4f:be:8c:7a:99:e8:fd:2c:5e:35:55:40:f6: 2c:1c:6d:da:6b:e5:5f:ff:e3:36:f8:05:de:88:bd:16:47:73: db:d8:8f:2b:e9:e4:42:05:fb:07:05:80:10:38:c0:a8:f5:b0: 1d:05:f9:f4:cd:de:1a:94:ab:fd:b2:f2:eb:f8:30:2d:05:b1: 7a:74:ee:86:4b:a9:bf:62:2d:f7:39:71:a1:db:da:17:1e:c9: 59:ad:2a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjUwNTMwMjAxMTM1WhcNMjUwNjA2MjAxMTM1WjAYMRYwFAYD VQQDEw02ODNhMTBmOC01YjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0fiWz2twmfU7sUVdJ+KBYBf3+BrFcrhC264EOxwZZhKO13W5jdB4XpqFDT3 zxx2zhHxapx9xQIxznJjBDUoRP33Sv2LpWyShy65FgNz2qV8Nvl7GeWfVap8d/+x SwV1If+twn6r1H5PAHsRiXGxJ2hXooxbo/ewhzz/ccnc7hVBTmJl+Wfl4K0ULlkP Eb5tEqrgpMxF1phc8wamROwgHYVtMjurhwHohMZ9PQ+bqlj3YJYvjnFijoUt+4XB L/X+HZtadq12hnt/9oMgMQYQgHtngA25xBTNtX5m15tgpqfGjf/DVZJX/ZdgF06v x/RK6zDuaTlDf3wUNRPonoqrEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMtvIhy DMj4S4k+MmvDqMKL07glMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2XgyBaMpxU8b1ikLYIxtKtpjbZKdmiEhLg7IiQKtIg/THBJI+jtjd mR3gvuzQV8Kt8dTq3LLYiL6i+jEO2K+I9WknX20hPcveuAT1WzCCUGbpcZCO9yD3 qkP+dFv66hvTaUTQj5k0xe6JZ7xYd7k3TJSq7GyUQACi9fTyeyL2T44KrekxA47C pu0oNnFZQYB/hrEMYvp4h3Af1cSQINSVmbLcb+6aL0++jHqZ6P0sXjVVQPYsHG3a a+Vf/+M2+AXeiL0WR3Pb2I8r6eRCBfsHBYAQOMCo9bAdBfn0zd4alKv9svLr+DAt BbF6dO6GS6m/Yi33OXGh29oXHslZrSoD -----END CERTIFICATE-----Generated at Sat May 31 17:26:15 2025 by rpki-client