$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: v1Ni1xtrMqln99nWDsQYhpAvhQx2hO+MHdSGGcIK+S0= Subject key identifier: 9A:EC:B9:59:63:71:9C:05:7D:90:E3:1E:4E:1C:23:C5:5E:20:B8:CE Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 0A03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 09F1 Signing time: Mon 08 Sep 2025 19:54:44 +0000 Manifest this update: Mon 08 Sep 2025 19:54:44 +0000 Manifest next update: Mon 15 Sep 2025 19:54:44 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: KJs37zPTiqzrGVRBQO5QBZPv87/r/UwDToBhRXn3NCY=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: bxum+WOpJCc/rrq4Z1XLEVCWKFHxlT2LUexLiRBlPmM=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: zWd+mcCk9l+jHD4vYbrupaGOty0zdeubNycUNDATtLs=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: nXu3TrhqWzeQhIAXd22b9k7kj49e1Ni4pYpn1PtXrj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:54:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Sep 8 19:54:44 2025 GMT Not After : Sep 15 19:54:44 2025 GMT Subject: CN=68bf3484-59f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2a:e9:3d:b4:cb:9a:db:4f:06:0a:52:57:98: d5:83:a3:ed:43:e3:01:14:5b:31:b3:e5:ae:87:a6: bc:0e:41:fc:cb:e4:34:3a:ae:a7:c6:44:4d:ae:40: 72:1d:a9:b8:c0:af:8c:86:b4:6c:2f:92:4d:b0:18: a3:30:16:27:e3:58:11:e1:13:f6:98:7f:4d:18:bf: 13:94:2e:68:2f:96:9f:3a:47:5d:18:f9:21:92:66: e6:ca:ab:37:7a:74:2f:14:bb:61:bc:b0:24:30:77: da:e2:f1:10:2e:fc:a4:74:43:c6:0a:be:6b:7d:50: 5b:25:a5:f7:1e:37:01:4c:2f:50:bc:dd:aa:33:96: c5:89:4a:9f:4b:15:52:e2:9f:ef:d8:4e:9a:17:19: 71:bf:5a:6d:f0:62:90:c8:5b:66:4c:4c:bc:58:a3: 87:d5:18:ca:59:1f:72:af:4d:03:9a:0e:19:38:be: f2:83:13:fb:78:85:84:4d:29:8e:35:a7:99:75:49: b1:5f:a5:b2:de:06:d5:8f:5d:ce:36:10:14:c4:46: c4:a5:39:82:cf:3e:11:3d:08:5d:31:6c:14:8e:d0: 21:1f:60:bf:06:a2:97:98:30:0d:fa:68:d6:e6:af: 05:15:a9:c0:71:2c:36:e8:cc:0c:14:ee:3f:38:c3: c1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:EC:B9:59:63:71:9C:05:7D:90:E3:1E:4E:1C:23:C5:5E:20:B8:CE X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:27:b5:b3:bc:fc:6c:3d:61:11:d0:5e:17:27:2d:10:72:6f: 47:4a:2d:57:48:4e:55:63:3f:19:af:9a:7d:ed:d5:9d:48:84: bf:ad:85:6e:52:71:03:11:18:e8:f5:87:b7:04:41:72:d1:8e: b3:bf:b3:b8:57:21:28:7a:5a:2b:e3:4b:bb:2c:a9:9f:ee:1b: f5:e1:ce:cb:34:bd:9e:d7:b7:3e:6b:0d:29:42:5a:94:eb:86: 88:83:1f:13:19:3c:25:47:e7:f6:11:be:7c:3a:d2:bf:e5:02: 7c:85:38:12:d0:b3:47:7f:53:40:f2:f6:bb:99:fd:77:36:3a: 75:7c:15:c9:ba:8e:0c:8a:da:b1:7f:2d:01:c5:2e:1b:4c:20: 89:4b:b4:7d:9b:6e:e0:3e:6c:ae:78:42:38:79:74:e8:e4:73: d9:28:f6:02:a2:81:55:6f:ae:2b:67:4f:02:46:f9:0e:06:ba: 22:b6:53:a9:ee:18:22:fd:b1:6d:97:98:17:24:bc:53:63:5d: c9:19:3a:3d:db:9e:b7:6e:af:87:5f:52:45:24:c3:91:cf:56: 29:60:bb:f3:b1:8c:5a:8a:82:42:2d:ec:a5:63:3b:91:32:dd: 11:a1:04:7f:83:ae:ee:be:6a:41:dd:66:d0:83:01:50:7a:6a: e3:7d:71:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjUwOTA4MTk1NDQ0WhcNMjUwOTE1MTk1NDQ0WjAYMRYwFAYD VQQDEw02OGJmMzQ4NC01OWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6yrpPbTLmttPBgpSV5jVg6PtQ+MBFFsxs+Wuh6a8DkH8y+Q0Oq6nxkRNrkBy Ham4wK+MhrRsL5JNsBijMBYn41gR4RP2mH9NGL8TlC5oL5afOkddGPkhkmbmyqs3 enQvFLthvLAkMHfa4vEQLvykdEPGCr5rfVBbJaX3HjcBTC9QvN2qM5bFiUqfSxVS 4p/v2E6aFxlxv1pt8GKQyFtmTEy8WKOH1RjKWR9yr00Dmg4ZOL7ygxP7eIWETSmO NaeZdUmxX6Wy3gbVj13ONhAUxEbEpTmCzz4RPQhdMWwUjtAhH2C/BqKXmDAN+mjW 5q8FFanAcSw26MwMFO4/OMPBwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrsuVlj cZwFfZDjHk4cI8VeILjOMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKJ7WzvPxsPWER0F4XJy0Qcm9HSi1XSE5VYz8Zr5p97dWdSIS/rYVu UnEDERjo9Ye3BEFy0Y6zv7O4VyEoelor40u7LKmf7hv14c7LNL2e17c+aw0pQlqU 64aIgx8TGTwlR+f2Eb58OtK/5QJ8hTgS0LNHf1NA8va7mf13Njp1fBXJuo4Mitqx fy0BxS4bTCCJS7R9m27gPmyueEI4eXTo5HPZKPYCooFVb64rZ08CRvkOBroitlOp 7hgi/bFtl5gXJLxTY13JGTo92563bq+HX1JFJMORz1YpYLvzsYxaioJCLeylYzuR Mt0RoQR/g67uvmpB3WbQgwFQemrjfXHJ -----END CERTIFICATE-----Generated at Tue Sep 9 08:03:01 2025 by rpki-client