$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: RoHgLrhaCIgRJidi3S6qu+cXGcsXM7Mgrtq1A/g6uTs= Subject key identifier: 60:C2:E8:99:14:BE:88:A1:A6:1D:46:6D:69:52:42:90:AF:BE:73:BA Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 0A78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 0A5D Signing time: Sat 28 Mar 2026 19:33:45 +0000 Manifest this update: Sat 28 Mar 2026 19:33:44 +0000 Manifest next update: Sat 04 Apr 2026 19:33:44 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: apSCw41AcTtf9mj5XGR3z66LmYbpqFcDmVDw1G/omHw=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: pGyuW5enksJ2G+9mcRO+cELx6+FB88OJUmeOOQetTPM=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: kdGWDUBBwv7cJ1dopKP4Pf5YTmUxxvJuv1IOgZRikQU=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: QmhFOsJakuRPvilxf18zot/c04GvDsCOSbSfIAJQQfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2680 (0xa78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Mar 28 19:33:44 2026 GMT Not After : Apr 4 19:33:44 2026 GMT Subject: CN=69c82d19-dc55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:27:70:a2:d4:07:de:dc:75:95:a6:f6:15:30: 77:41:2a:73:37:dd:64:97:55:9b:a9:63:b4:7d:e5: f2:33:10:c4:56:78:7d:8d:80:5a:1e:94:42:08:95: 1d:06:96:39:dc:25:a8:3d:3e:c4:94:f2:f7:b0:e3: d2:74:8b:1f:23:dd:b1:35:a0:90:66:ae:82:cc:bc: 62:01:8d:f4:a9:6b:4b:83:12:bb:c0:98:f8:38:51: e3:ea:84:f5:ae:32:18:e8:2c:17:f6:bd:5d:c6:49: f6:37:c9:9c:90:f5:cf:fc:0d:1d:f8:89:db:db:32: b2:a6:9c:39:74:ba:b7:fb:0e:39:11:82:41:a5:88: 4c:ce:9c:6d:6f:56:a3:e7:bd:71:e2:50:2e:92:5d: 1e:c7:3c:29:a9:d2:f2:c1:07:e6:d5:9a:29:ac:a4: 1a:c2:2a:47:33:ca:9c:d9:7b:21:9d:96:cd:fc:8f: e8:6e:a4:cd:eb:50:32:4d:52:71:b1:a9:0d:26:d2: bf:84:95:94:da:7b:66:6c:03:54:68:ab:96:58:13: b0:0b:c3:34:3a:84:a3:39:ac:48:4b:02:37:06:43: 60:fc:8c:aa:61:67:7a:18:2b:a4:5e:82:47:79:95: e4:8e:cc:26:71:af:72:a8:8b:62:1a:c5:69:d0:c5: fe:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C2:E8:99:14:BE:88:A1:A6:1D:46:6D:69:52:42:90:AF:BE:73:BA X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:7d:4a:75:8d:de:72:06:2f:5b:ed:d2:db:e1:c7:86:cc:a0: ee:c9:4c:a7:a9:e9:f7:14:c1:0f:b1:88:ef:c2:bf:f8:4f:13: 82:75:11:0c:34:0f:b7:ec:f7:05:8a:d5:e5:ba:71:fe:b1:63: bf:d1:9b:87:da:53:72:99:f0:e4:bc:82:f4:15:6c:8d:44:d1: 7c:92:40:9f:8c:7b:1c:45:e4:88:09:e7:b3:40:ae:e3:ee:ed: 2a:f4:06:f0:16:fd:be:b5:f7:5d:6f:ce:75:78:c2:ce:70:9a: bd:f4:b5:f8:82:fe:30:ba:b0:b4:3c:fb:f8:f4:d7:3e:dd:46: 94:2d:a8:24:ac:d2:4f:cd:93:b6:06:9e:bb:5e:f6:09:02:79: 45:ef:b1:fa:a3:51:48:a8:1d:f3:08:71:91:54:97:b3:0a:10: 51:32:5f:1d:25:53:8f:52:bf:d9:c3:54:28:2e:a9:d7:02:c5: 75:7d:54:eb:80:e3:4f:c7:53:44:6b:02:c3:19:fc:5d:a6:82: 71:46:72:a8:bc:96:95:d4:41:62:0f:ef:05:26:f7:f8:cd:27: 7e:72:13:12:b8:16:be:58:9d:b8:b6:c0:30:97:b1:c8:fd:65: dc:ba:f1:f5:ff:66:d5:4a:8f:7b:60:33:1a:f4:26:29:f5:f4: 60:2a:f5:22 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjYwMzI4MTkzMzQ0WhcNMjYwNDA0MTkzMzQ0WjAYMRYwFAYD VQQDEw02OWM4MmQxOS1kYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvidwotQH3tx1lab2FTB3QSpzN91kl1WbqWO0feXyMxDEVnh9jYBaHpRCCJUd BpY53CWoPT7ElPL3sOPSdIsfI92xNaCQZq6CzLxiAY30qWtLgxK7wJj4OFHj6oT1 rjIY6CwX9r1dxkn2N8mckPXP/A0d+Inb2zKyppw5dLq3+w45EYJBpYhMzpxtb1aj 571x4lAukl0exzwpqdLywQfm1ZoprKQawipHM8qc2XshnZbN/I/obqTN61AyTVJx sakNJtK/hJWU2ntmbANUaKuWWBOwC8M0OoSjOaxISwI3BkNg/IyqYWd6GCukXoJH eZXkjswmca9yqItiGsVp0MX+/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGDC6JkU voihph1GbWlSQpCvvnO6MB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiX1KdY3ecgYvW+3S2+HHhsyg7slMp6np9xTBD7GI78K/+E8TgnURDDQPt+z3 BYrV5bpx/rFjv9Gbh9pTcpnw5LyC9BVsjUTRfJJAn4x7HEXkiAnns0Cu4+7tKvQG 8Bb9vrX3XW/OdXjCznCavfS1+IL+MLqwtDz7+PTXPt1GlC2oJKzST82Ttgaeu172 CQJ5Re+x+qNRSKgd8whxkVSXswoQUTJfHSVTj1K/2cNUKC6p1wLFdX1U64DjT8dT RGsCwxn8XaaCcUZyqLyWldRBYg/vBSb3+M0nfnITErgWvliduLbAMJexyP1l3Lrx 9f9m1UqPe2AzGvQmKfX0YCr1Ig== -----END CERTIFICATE-----Generated at Sun Mar 29 20:48:25 2026 by rpki-client