$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: B+60MWB/crNpGajtze0dEVpze6u5lV5jcAmRm29WCjk= Subject key identifier: 18:4A:7F:56:90:FC:CA:10:AB:1A:A5:2B:8F:DB:C7:64:25:4C:3D:34 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0991 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 097E Signing time: Sat 18 Oct 2025 21:11:28 +0000 Manifest this update: Sat 18 Oct 2025 21:11:27 +0000 Manifest next update: Sat 25 Oct 2025 21:11:27 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: 4yI1bCUzHaom4MWuQO5tq1ESZ0kmo9BFv51U9Z6P7yY=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6YMCbYV0HjEFxQW7Rqr8k/qQPvulelScO8qALM4FUVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2449 (0x991) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Oct 18 21:11:27 2025 GMT Not After : Oct 25 21:11:27 2025 GMT Subject: CN=68f40280-e299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2f:1e:6c:46:b1:ae:0c:b3:7a:0b:f9:6c:03: a6:22:71:e8:bb:d2:1f:54:aa:34:cc:da:42:99:43: f9:74:ad:4f:04:8b:f5:72:79:bd:31:45:a4:47:6d: 81:f4:34:b6:a4:1b:12:7d:7b:81:bb:2a:a9:d0:6b: 2f:b8:ac:db:47:f6:f4:cc:5c:3c:9c:46:54:6b:18: a1:19:c9:de:9b:b6:de:f6:df:60:24:45:0c:21:93: 04:78:05:c9:6f:6c:03:bb:d9:cf:22:1a:bc:b4:b6: bb:3a:90:69:82:5b:25:b1:a3:31:9a:5f:11:ad:8f: 25:2a:eb:fd:d6:15:59:5e:76:f4:74:63:94:61:e4: 4b:ae:28:2d:61:a9:14:7e:b7:4a:2b:39:7f:ca:17: 2e:5a:ae:53:c5:51:41:fd:ab:a4:79:c1:05:65:5f: 81:45:a9:d8:a9:aa:ff:2b:36:24:21:38:67:17:41: 70:73:2d:b9:4f:91:25:f8:59:dc:48:4c:ab:df:fa: f7:9b:a1:e3:bb:87:2d:be:bb:52:53:29:8e:c1:e3: d8:da:14:5e:e2:31:df:1d:a9:67:d0:e8:23:2c:4b: 4c:6b:4c:2e:e8:b8:58:b7:40:51:39:4d:18:3e:78: 52:19:7c:af:03:d4:7d:b3:0d:28:65:89:ff:d5:6e: ad:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4A:7F:56:90:FC:CA:10:AB:1A:A5:2B:8F:DB:C7:64:25:4C:3D:34 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:dc:38:d3:0c:69:bb:37:42:5b:03:2b:d9:41:cb:89:75:fb: ce:3f:3d:01:b5:a4:f6:bb:97:71:00:6e:7b:50:1f:21:6e:c4: 0f:12:b1:51:dc:fd:36:60:a9:ed:ab:42:9d:84:04:3b:13:0c: 55:5e:e5:9b:29:51:45:62:6d:95:4a:c2:85:7b:3c:1e:8f:e1: 14:f3:ff:42:9a:db:4e:ee:b9:8e:01:8a:29:32:56:52:11:49: 57:22:d6:41:c8:1f:77:1f:2e:94:6a:f0:10:e8:aa:25:1c:18: 55:a5:b1:e7:04:0d:f4:ef:38:d6:d1:77:e0:fd:c2:1e:d6:c5: e6:45:35:2d:82:b7:29:0e:35:a8:f9:f3:ed:6d:67:7a:49:e2: 8b:93:7a:21:67:d3:46:39:96:85:27:3d:34:f6:d7:e9:87:35: 17:85:60:07:51:c6:81:07:18:fb:3c:98:c9:c0:b7:84:27:a7: f7:9c:e9:3e:9c:39:3b:12:f4:e4:e9:1e:9a:f1:77:ca:cf:f2: 1e:6e:7b:a9:81:73:7f:1e:aa:48:da:b1:d7:32:f9:3e:09:56: 61:c7:c7:26:93:09:0b:ae:64:86:e9:0d:c8:f6:94:4f:5a:88: 0f:fc:86:be:fe:eb:bd:07:09:7c:46:ae:7c:4b:cb:15:75:7d: 65:19:e3:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUxMDE4MjExMTI3WhcNMjUxMDI1MjExMTI3WjAYMRYwFAYD VQQDEw02OGY0MDI4MC1lMjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S8ebEaxrgyzegv5bAOmInHou9IfVKo0zNpCmUP5dK1PBIv1cnm9MUWkR22B 9DS2pBsSfXuBuyqp0GsvuKzbR/b0zFw8nEZUaxihGcnem7be9t9gJEUMIZMEeAXJ b2wDu9nPIhq8tLa7OpBpglslsaMxml8RrY8lKuv91hVZXnb0dGOUYeRLrigtYakU frdKKzl/yhcuWq5TxVFB/aukecEFZV+BRanYqar/KzYkIThnF0Fwcy25T5El+Fnc SEyr3/r3m6Hju4ctvrtSUymOwePY2hRe4jHfHaln0OgjLEtMa0wu6LhYt0BROU0Y PnhSGXyvA9R9sw0oZYn/1W6tDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhKf1aQ /MoQqxqlK4/bx2QlTD00MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDY3DjTDGm7N0JbAyvZQcuJdfvOPz0BtaT2u5dxAG57UB8hbsQPErFR 3P02YKntq0KdhAQ7EwxVXuWbKVFFYm2VSsKFezwej+EU8/9CmttO7rmOAYopMlZS EUlXItZByB93Hy6UavAQ6KolHBhVpbHnBA307zjW0Xfg/cIe1sXmRTUtgrcpDjWo +fPtbWd6SeKLk3ohZ9NGOZaFJz009tfphzUXhWAHUcaBBxj7PJjJwLeEJ6f3nOk+ nDk7EvTk6R6a8XfKz/IebnupgXN/HqpI2rHXMvk+CVZhx8cmkwkLrmSG6Q3I9pRP WogP/Ia+/uu9Bwl8Rq58S8sVdX1lGePZ -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:41 2025 by rpki-client