$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: DnHup9rfWDd2JrWcxMBtaWTSXhuge2gjpURL0Bqw4R8= Subject key identifier: DE:6C:2D:D3:9B:32:D8:4D:62:43:D3:D4:8D:F4:C4:B4:98:DE:6F:27 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 09E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 09D2 Signing time: Tue 24 Mar 2026 19:42:43 +0000 Manifest this update: Tue 24 Mar 2026 19:42:43 +0000 Manifest next update: Tue 31 Mar 2026 19:42:43 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: Wo5iqo8ki4hxRHvQMvLWFu6K18TAnjp/NNEsblGmkcM=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6M5Mg9C116unCx1h9rVUgS55hFW2He6mLEZ0NRGWeB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2535 (0x9e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Mar 24 19:42:43 2026 GMT Not After : Mar 31 19:42:43 2026 GMT Subject: CN=69c2e933-5572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5b:59:82:0a:dd:4f:f8:0c:3b:60:37:4e:5c: 90:88:21:fd:86:66:14:cc:fd:61:bf:d8:bc:90:5e: 4c:f1:5f:f3:0f:cc:df:53:75:61:19:bd:53:55:4f: 8a:ad:c9:0e:33:d9:2c:2f:33:42:92:54:cb:f5:a9: 2f:16:c2:a7:28:8e:11:0c:75:00:87:bd:cb:e6:e5: df:7f:ee:b0:4a:79:28:95:36:04:85:70:fd:01:4a: 90:b3:56:19:7d:e4:0e:ff:40:d7:23:65:39:3e:0c: d1:82:2a:ab:08:57:18:dd:63:08:e8:8d:d3:c6:2f: 19:c6:b1:a7:1f:17:a3:f3:ca:a5:75:1a:ac:75:dc: 5e:66:bc:8a:d6:8b:d9:cf:9a:dd:8f:64:5f:da:39: 68:1f:95:6d:5f:ce:41:40:ac:62:8d:73:8f:a0:3d: a4:5a:a0:e8:4d:1e:98:74:08:6f:33:07:ec:2c:72: 7b:6e:33:77:a0:29:dc:9e:1f:60:c4:5d:64:de:26: 40:1f:80:c2:f8:12:29:9b:d0:9b:e6:02:14:71:f4: 15:44:53:3c:24:e9:d8:a9:94:4a:c5:39:d9:1d:be: 0e:f9:e8:24:06:ae:aa:7a:bc:5d:03:b0:bd:2a:77: d2:62:57:3e:ee:de:43:0a:0c:b6:b3:aa:b5:4e:7e: 69:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6C:2D:D3:9B:32:D8:4D:62:43:D3:D4:8D:F4:C4:B4:98:DE:6F:27 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:83:4e:45:b7:58:bb:e3:e5:4e:e2:4f:25:fa:12:ad:82:c0: 75:0d:bd:00:f4:85:72:81:22:c7:fb:03:d0:7c:6a:a8:32:28: 90:69:a0:e7:dc:38:b0:93:19:72:3a:28:55:b5:60:d3:f4:e0: 60:bc:31:de:ec:63:3a:8d:32:20:92:90:d0:1b:86:96:d1:20: 35:9b:4a:0d:59:f8:ab:d1:7e:99:e6:f0:90:9c:b1:80:df:a9: e2:f4:e0:5b:02:82:55:60:72:60:2f:0b:a6:4e:32:a5:79:6f: a7:9c:d6:3a:b5:96:74:99:5a:1c:d3:32:b2:57:35:27:5f:9f: 8a:53:26:3e:93:75:b4:42:71:7c:b7:97:8e:15:b6:26:04:71: 9d:bd:99:e2:49:d1:a9:3d:38:71:9f:12:41:b1:c6:d8:79:35: 3f:08:24:35:fa:af:69:8d:2c:d1:87:42:a6:9b:d8:70:de:5c: 97:7b:9c:ec:cf:47:b9:ad:12:49:95:3e:30:8d:9a:75:54:cb: 9a:53:c3:6a:2b:18:7d:c4:9e:ea:b5:59:f7:1c:22:2e:fb:dc: d2:bc:c6:09:5c:54:35:f9:a3:a3:6c:26:ee:68:0c:09:4a:c5: 6b:e2:da:19:f1:2e:78:66:e7:c2:3b:39:86:95:09:d3:67:07: 02:41:1e:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjYwMzI0MTk0MjQzWhcNMjYwMzMxMTk0MjQzWjAYMRYwFAYD VQQDEw02OWMyZTkzMy01NTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFtZggrdT/gMO2A3TlyQiCH9hmYUzP1hv9i8kF5M8V/zD8zfU3VhGb1TVU+K rckOM9ksLzNCklTL9akvFsKnKI4RDHUAh73L5uXff+6wSnkolTYEhXD9AUqQs1YZ feQO/0DXI2U5PgzRgiqrCFcY3WMI6I3Txi8ZxrGnHxej88qldRqsddxeZryK1ovZ z5rdj2Rf2jloH5VtX85BQKxijXOPoD2kWqDoTR6YdAhvMwfsLHJ7bjN3oCncnh9g xF1k3iZAH4DC+BIpm9Cb5gIUcfQVRFM8JOnYqZRKxTnZHb4O+egkBq6qerxdA7C9 KnfSYlc+7t5DCgy2s6q1Tn5pKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN5sLdOb MthNYkPT1I30xLSY3m8nMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtoNORbdYu+PlTuJPJfoSrYLAdQ29APSFcoEix/sD0HxqqDIokGmg59w4sJMZ cjooVbVg0/TgYLwx3uxjOo0yIJKQ0BuGltEgNZtKDVn4q9F+mebwkJyxgN+p4vTg WwKCVWByYC8Lpk4ypXlvp5zWOrWWdJlaHNMyslc1J1+filMmPpN1tEJxfLeXjhW2 JgRxnb2Z4knRqT04cZ8SQbHG2Hk1PwgkNfqvaY0s0YdCppvYcN5cl3uc7M9Hua0S SZU+MI2adVTLmlPDaisYfcSe6rVZ9xwiLvvc0rzGCVxUNfmjo2wm7mgMCUrFa+La GfEueGbnwjs5hpUJ02cHAkEesg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:16:27 2026 by rpki-client