
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft
File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json)
Hash identifier: c7iSKpksGftrAbFP37HK0iFtZZACsZotWbufht8mGhQ=
Subject key identifier: 5E:C5:64:97:94:F4:50:88:8E:F4:35:90:95:42:23:92:3F:60:77:AF
Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59
Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859
Certificate serial: 0AA9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft
Manifest number: 0A8E
Signing time: Thu 02 Jul 2026 19:44:39 +0000
Manifest this update: Thu 02 Jul 2026 19:44:39 +0000
Manifest next update: Thu 09 Jul 2026 19:44:39 +0000
Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: KLRs3abHAY6v4gQicB+T7h7SGdLOYtIeKx29+/eQkow=)
2: 55892E84839011EAB5B82263C4F9AE02.roa (hash: QmhFOsJakuRPvilxf18zot/c04GvDsCOSbSfIAJQQfc=)
3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: kdGWDUBBwv7cJ1dopKP4Pf5YTmUxxvJuv1IOgZRikQU=)
4: 6322249E033E11EDA7401850C4F9AE02.roa (hash: pGyuW5enksJ2G+9mcRO+cELx6+FB88OJUmeOOQetTPM=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl
rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 Jul 2026 19:44:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2729 (0xaa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859
Validity
Not Before: Jul 2 19:44:39 2026 GMT
Not After : Jul 9 19:44:39 2026 GMT
Subject: CN=6a46bfa7-c1ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f1:3c:07:e5:36:40:f6:03:dd:73:f4:45:06:
97:8f:91:e9:e6:78:62:ce:83:5c:78:47:f4:ae:a1:
bc:f5:6e:07:bb:04:d4:36:4c:b6:01:9d:b8:d2:b5:
c7:97:b6:fe:a6:97:23:3a:7d:6d:ce:3f:63:66:af:
8d:c6:23:f2:48:aa:b6:32:da:a1:b7:c9:98:04:ad:
f3:60:71:88:ac:70:a9:94:ca:cd:c8:25:e8:9f:f0:
16:a7:6d:d1:3b:f7:b8:dc:a9:71:30:b7:3a:72:97:
92:75:72:67:7c:ec:8c:4a:b6:1f:3f:f7:47:c4:07:
51:e3:ee:89:6d:b4:33:a9:8b:74:b6:a1:1e:a6:02:
7b:6a:79:a9:ed:d0:d1:e9:d4:28:36:81:6e:52:be:
14:7b:f5:31:23:e1:c8:b4:8c:bc:1c:c8:89:bc:c8:
b0:83:01:f6:52:0b:6b:02:6e:9f:c9:3a:8b:d7:6c:
5f:7f:53:28:98:8f:c0:85:fc:2c:15:43:93:07:92:
4d:44:db:9d:54:71:39:d0:af:40:0a:43:e0:49:09:
79:a4:ea:4d:1d:bc:ba:42:bb:e1:f7:57:82:28:c5:
7a:4a:aa:6a:ef:c4:dc:5b:81:23:6e:db:4c:55:d4:
5e:08:2e:eb:37:f2:59:bb:8a:94:7a:f5:e6:d1:42:
08:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C5:64:97:94:F4:50:88:8E:F4:35:90:95:42:23:92:3F:60:77:AF
X509v3 Authority Key Identifier:
keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8b:88:6f:e5:82:45:db:fe:7c:d0:4c:90:7f:ca:1f:74:5b:
e7:51:0e:76:57:c3:31:f6:7e:3c:0c:5e:e5:bd:3d:0b:27:24:
66:af:ca:29:1d:52:d9:54:49:e6:f5:45:2a:24:5d:fe:5c:7f:
b6:44:bf:00:75:38:72:16:1a:64:f1:06:fa:ea:6d:4e:5b:a5:
83:ed:e2:d6:b8:b8:4b:f0:d1:cb:a0:d5:b2:53:d4:20:6a:06:
5b:4f:72:e7:c7:3e:0b:85:da:d3:6e:c2:d5:6a:f7:9a:2a:23:
50:f7:07:13:02:ae:55:d8:b7:80:00:75:3a:8b:04:91:c6:05:
b1:7d:0f:18:2b:ad:b7:a0:dc:54:6f:7a:c0:83:76:71:da:a0:
d3:0c:18:53:e6:5a:a2:48:87:d7:be:a2:e9:09:e4:d3:6e:89:
60:f3:bd:37:09:12:64:e0:f5:44:1c:44:28:fd:06:ed:c9:6c:
bf:89:5d:bc:55:91:82:10:73:6f:1d:c0:63:34:4d:0f:15:c9:
5d:b5:44:9e:79:22:13:d2:c4:2d:98:ae:d8:a9:f8:53:7e:90:
09:92:80:47:0c:8f:10:27:2f:aa:98:c2:6e:4f:98:b6:a3:ec:
45:31:2e:fe:01:c6:83:f7:1f:9e:5b:b9:72:c1:d9:62:b4:c7:
af:97:b9:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 21:46:28 2026 by rpki-client