$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: mszp+RbyprUCB+MT4v4XvBgPjn/+ZQ3Lb2G6rUStX2s= Subject key identifier: CA:D4:45:C1:B3:E9:74:3D:4C:0F:4A:4E:D7:B0:7E:86:0B:FB:BA:DD Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 09C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 09AE Signing time: Mon 28 Apr 2025 20:27:01 +0000 Manifest this update: Mon 28 Apr 2025 20:27:01 +0000 Manifest next update: Mon 05 May 2025 20:27:01 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: 7woGR5EpHOdzM9TWZs0awAx833tFpicmsTzR5y0nUX4=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: bxum+WOpJCc/rrq4Z1XLEVCWKFHxlT2LUexLiRBlPmM=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: zWd+mcCk9l+jHD4vYbrupaGOty0zdeubNycUNDATtLs=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: nXu3TrhqWzeQhIAXd22b9k7kj49e1Ni4pYpn1PtXrj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Apr 28 20:27:01 2025 GMT Not After : May 5 20:27:01 2025 GMT Subject: CN=680fe495-4d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:b4:8b:91:c4:f9:ac:ae:d6:b7:c5:da:69: 4d:e6:93:e7:e7:76:56:11:23:74:b1:cb:43:d8:6f: a5:3f:7d:69:3e:4a:fd:28:48:d8:01:0c:c8:a5:6b: a0:c0:c3:14:a8:63:7f:5e:9e:91:0d:72:86:a2:0e: 6e:c1:92:e6:1f:51:34:a6:95:9d:18:ea:cd:a0:2c: b0:cb:d6:0c:c8:c7:88:6d:35:3f:32:71:95:7b:72: ed:38:70:54:5f:69:82:b0:c7:b7:7c:d4:10:0f:4d: 64:f5:6d:a4:df:66:2e:b5:69:b9:ed:35:97:ee:48: 6d:07:1c:38:d8:66:29:fb:d2:23:42:e5:b7:2c:d2: 8a:fa:67:f9:3e:d9:a6:bf:9d:5f:de:e8:8a:9c:5d: c6:20:0c:10:95:d2:7e:20:ab:1a:d8:83:fe:c1:e3: dc:85:1e:e3:95:1b:bf:63:9d:17:c1:7d:d4:f0:2a: 08:8b:8a:5c:e7:06:d0:97:a9:72:e2:59:5d:6d:81: b5:2a:95:93:e9:67:c9:9e:e6:9c:90:15:dd:6d:90: 56:ec:18:30:83:6b:0b:ed:ae:6c:6d:85:9b:0f:b2: 25:56:5c:c2:d7:32:4d:84:1f:6e:ed:ec:d8:42:c1: 78:93:1a:72:09:88:56:f0:1e:1c:1f:27:e9:ea:28: 47:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D4:45:C1:B3:E9:74:3D:4C:0F:4A:4E:D7:B0:7E:86:0B:FB:BA:DD X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:01:5f:cf:1d:fd:58:ff:1a:0f:dd:65:07:04:be:78:9c:0e: 0a:ea:3e:d2:cd:c0:6b:0d:f9:3c:4b:1b:39:2b:48:be:ca:dc: cd:75:ba:f8:9f:b2:8f:be:7e:cd:16:3f:6b:a6:aa:27:78:d6: 65:90:e2:eb:29:ce:eb:92:57:5a:cf:de:af:88:94:b9:f8:43: d6:04:e4:c4:56:d7:8c:08:60:18:0c:30:06:43:a2:08:f6:99: 98:37:f3:1f:5f:74:7f:46:79:23:7b:4b:ed:45:0e:29:35:61: 71:7f:c0:6e:dc:7e:a8:78:28:0c:8d:b2:f0:89:36:d7:9b:8d: f7:6a:31:ab:fc:9f:76:02:36:90:47:9b:25:34:d5:7c:c3:68: bf:7d:dc:85:38:9d:85:d1:2c:c3:fc:71:34:fa:8a:ea:e2:f1: b2:3b:6a:9c:8b:92:34:bc:38:0b:fe:8a:1e:60:2a:f1:f5:ff: 67:a8:2a:78:ee:4c:f6:64:31:ac:39:2d:a7:e0:5c:17:c8:5a: 9d:41:c0:63:a9:be:54:e3:93:54:a7:97:b4:75:d5:74:da:d7: fd:21:c1:1d:6f:fb:48:d0:c6:5a:c9:ce:ec:57:f9:b0:e2:a6: 87:08:2c:27:ca:04:fd:91:e0:93:90:08:9e:a7:d1:ef:d3:0c: ee:eb:fa:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjUwNDI4MjAyNzAxWhcNMjUwNTA1MjAyNzAxWjAYMRYwFAYD VQQDEw02ODBmZTQ5NS00ZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxG0i5HE+ayu1rfF2mlN5pPn53ZWESN0sctD2G+lP31pPkr9KEjYAQzIpWug wMMUqGN/Xp6RDXKGog5uwZLmH1E0ppWdGOrNoCywy9YMyMeIbTU/MnGVe3LtOHBU X2mCsMe3fNQQD01k9W2k32YutWm57TWX7khtBxw42GYp+9IjQuW3LNKK+mf5Ptmm v51f3uiKnF3GIAwQldJ+IKsa2IP+wePchR7jlRu/Y50XwX3U8CoIi4pc5wbQl6ly 4lldbYG1KpWT6WfJnuackBXdbZBW7Bgwg2sL7a5sbYWbD7IlVlzC1zJNhB9u7ezY QsF4kxpyCYhW8B4cHyfp6ihHJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrURcGz 6XQ9TA9KTtewfoYL+7rdMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPAV/PHf1Y/xoP3WUHBL54nA4K6j7SzcBrDfk8Sxs5K0i+ytzNdbr4 n7KPvn7NFj9rpqoneNZlkOLrKc7rkldaz96viJS5+EPWBOTEVteMCGAYDDAGQ6II 9pmYN/MfX3R/Rnkje0vtRQ4pNWFxf8Bu3H6oeCgMjbLwiTbXm433ajGr/J92AjaQ R5slNNV8w2i/fdyFOJ2F0SzD/HE0+orq4vGyO2qci5I0vDgL/ooeYCrx9f9nqCp4 7kz2ZDGsOS2n4FwXyFqdQcBjqb5U45NUp5e0ddV02tf9IcEdb/tI0MZayc7sV/mw 4qaHCCwnygT9keCTkAiep9Hv0wzu6/pg -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:40 2025 by rpki-client on console.sobornost.net