$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: Az6o+jqPAswdsYghSL7r6IoEmxZys35gVx2r+fpKpkg= Subject key identifier: D6:EF:4D:63:ED:37:1F:BE:83:00:40:40:C0:3B:2F:C9:FB:5E:16:0C Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 0A1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 0A0D Signing time: Sun 02 Nov 2025 19:47:20 +0000 Manifest this update: Sun 02 Nov 2025 19:47:19 +0000 Manifest next update: Sun 09 Nov 2025 19:47:19 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: PglT8M+vaMfLrcbv+sezGXBro+1VwLOLd/uTnRRykhM=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: bxum+WOpJCc/rrq4Z1XLEVCWKFHxlT2LUexLiRBlPmM=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: zWd+mcCk9l+jHD4vYbrupaGOty0zdeubNycUNDATtLs=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: nXu3TrhqWzeQhIAXd22b9k7kj49e1Ni4pYpn1PtXrj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2591 (0xa1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Nov 2 19:47:19 2025 GMT Not After : Nov 9 19:47:19 2025 GMT Subject: CN=6907b548-f73c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e1:7b:04:8b:b7:26:0d:f3:3f:31:d1:f6:31: ca:2c:5e:7d:c9:d6:a9:32:15:05:85:a0:a2:c9:a8: d4:62:f1:2e:b5:7b:b7:74:25:3c:4b:66:d3:1a:94: 43:4e:20:ba:d1:76:92:e4:a7:a3:e3:84:d6:58:93: 42:ae:94:53:84:89:c3:f2:4a:a7:21:ac:30:a1:e7: de:c7:93:3e:3f:54:28:0d:0e:0d:37:14:41:a7:a5: a9:04:e8:0d:42:22:5e:d9:ff:4c:15:da:36:8d:49: a5:6a:98:35:f9:7a:47:88:18:c0:41:de:fc:12:b4: 95:10:c2:19:42:29:46:90:e4:ca:26:7e:c6:07:75: 0a:61:1c:61:69:a5:14:49:c2:b8:95:ca:21:53:70: b5:b4:a1:2d:a9:2e:14:25:74:a3:b1:41:da:10:ad: 47:c9:e2:95:ed:b1:6b:d4:05:25:b8:9e:a3:e6:4d: c4:a2:95:9f:84:d2:37:4a:51:81:15:10:50:12:0c: d8:70:b0:49:05:01:24:0b:1a:39:cb:ed:5c:71:4f: 40:55:29:83:8d:26:48:08:92:f1:a0:01:3b:7c:c1: f5:49:1e:0c:9b:72:c0:94:18:fb:0c:92:8e:66:85: 31:ec:bc:6f:49:0e:68:c9:6b:b2:14:0c:14:fd:39: 6b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EF:4D:63:ED:37:1F:BE:83:00:40:40:C0:3B:2F:C9:FB:5E:16:0C X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:15:2a:0b:21:fd:c6:c7:e7:38:38:6f:a2:7c:86:af:39:6f: f0:e5:90:8f:35:40:45:32:26:c4:3e:da:98:d4:bc:37:20:ad: 49:24:b6:2c:5d:d0:c8:81:dc:98:98:7c:5a:3c:57:3c:3b:ab: 27:cc:4d:61:ee:df:08:08:47:cd:05:68:9c:fc:1c:c3:db:3b: 0a:29:30:c0:2c:dd:f0:88:61:ef:ea:1f:af:b1:4b:d3:6b:b4: 70:c7:90:d3:23:8f:e9:8b:26:1c:95:6b:f0:39:0d:64:11:7d: ec:db:fd:20:d1:51:40:cb:f3:26:90:63:0c:21:de:4a:17:c9: d8:49:9b:a5:74:d4:e0:ec:6d:a7:26:a8:e8:3c:44:74:2e:e4: bc:2c:f5:d8:49:08:8a:d3:d2:dd:49:6f:1c:5f:57:73:36:d6: c4:f4:9f:f0:89:49:e1:50:95:4e:a8:34:78:3b:cf:f8:ce:82: a0:e6:e1:20:f5:d8:e2:3d:df:af:42:3a:6f:04:19:58:c8:06: b8:95:01:bc:19:84:28:3d:c8:11:38:6f:1d:8f:08:78:40:96: c5:67:a1:76:01:c4:f3:de:10:ff:1d:35:45:04:b9:e4:60:35: 4b:2d:0d:34:02:17:86:c4:a5:70:86:00:37:ef:95:65:a3:80: 3c:b5:a7:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjUxMTAyMTk0NzE5WhcNMjUxMTA5MTk0NzE5WjAYMRYwFAYD VQQDEw02OTA3YjU0OC1mNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eF7BIu3Jg3zPzHR9jHKLF59ydapMhUFhaCiyajUYvEutXu3dCU8S2bTGpRD TiC60XaS5Kej44TWWJNCrpRThInD8kqnIawwoefex5M+P1QoDQ4NNxRBp6WpBOgN QiJe2f9MFdo2jUmlapg1+XpHiBjAQd78ErSVEMIZQilGkOTKJn7GB3UKYRxhaaUU ScK4lcohU3C1tKEtqS4UJXSjsUHaEK1HyeKV7bFr1AUluJ6j5k3EopWfhNI3SlGB FRBQEgzYcLBJBQEkCxo5y+1ccU9AVSmDjSZICJLxoAE7fMH1SR4Mm3LAlBj7DJKO ZoUx7LxvSQ5oyWuyFAwU/TlrnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbvTWPt Nx++gwBAQMA7L8n7XhYMMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9FSoLIf3Gx+c4OG+ifIavOW/w5ZCPNUBFMibEPtqY1Lw3IK1JJLYs XdDIgdyYmHxaPFc8O6snzE1h7t8ICEfNBWic/BzD2zsKKTDALN3wiGHv6h+vsUvT a7Rwx5DTI4/piyYclWvwOQ1kEX3s2/0g0VFAy/MmkGMMId5KF8nYSZuldNTg7G2n JqjoPER0LuS8LPXYSQiK09LdSW8cX1dzNtbE9J/wiUnhUJVOqDR4O8/4zoKg5uEg 9djiPd+vQjpvBBlYyAa4lQG8GYQoPcgROG8djwh4QJbFZ6F2AcTz3hD/HTVFBLnk YDVLLQ00AheGxKVwhgA375Vlo4A8tacL -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:41 2025 by rpki-client