$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: WWxqbf32tzrgklb0teFmfocFbksvGryXs/Ynz5PSrQ8= Subject key identifier: 1A:9F:66:53:3B:C9:A4:B8:3C:25:7E:39:F0:F9:28:85:B1:85:CE:17 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0957 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0945 Signing time: Wed 02 Jul 2025 20:29:48 +0000 Manifest this update: Wed 02 Jul 2025 20:29:47 +0000 Manifest next update: Wed 09 Jul 2025 20:29:47 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: WCU0erXLpJu5shIjXPiJxWKZhuinxrtps6ZufXc8NG4=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2391 (0x957) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Jul 2 20:29:47 2025 GMT Not After : Jul 9 20:29:47 2025 GMT Subject: CN=686596bc-6c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9e:9d:6b:49:b5:0b:2d:2b:3f:9b:00:2d:25: 4f:bc:96:33:1e:81:ca:9c:b1:7b:22:a0:be:61:34: d6:ce:08:3a:89:7e:89:8f:f3:74:b3:df:70:1d:3b: e2:4e:81:d7:d6:77:d6:d5:c7:bd:54:01:f2:0e:bd: 6d:1a:60:4c:76:4b:bb:c9:ec:70:e1:12:ce:c6:1f: 26:8a:c2:3b:2c:9a:42:86:b4:4f:0a:34:39:17:92: 62:42:1e:e2:ce:aa:36:9c:2a:1d:2d:27:96:7d:a6: 15:43:c4:44:f3:08:e2:ed:ca:26:7b:2b:91:2f:03: 93:0e:62:90:f4:3b:44:b0:6f:d0:24:d9:08:3f:b1: b3:3f:c3:11:98:3d:e5:ed:57:23:b1:95:a7:38:2a: b0:43:f8:70:e1:ad:83:20:06:a6:23:81:04:e7:9e: eb:ad:98:71:49:b0:d1:9a:12:32:96:60:de:28:1b: cc:17:c5:30:dc:0c:55:5e:aa:a4:78:b6:e6:0f:94: d6:17:2f:78:4e:64:f7:3d:34:a3:bf:df:f4:dd:4b: 48:ef:42:9b:d4:07:c9:8d:bd:28:35:71:96:fc:26: e4:98:30:c3:06:10:ca:85:a7:b6:a1:89:81:77:63: e5:d6:d7:24:33:d2:96:04:8a:ec:81:56:cb:7b:0a: 32:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9F:66:53:3B:C9:A4:B8:3C:25:7E:39:F0:F9:28:85:B1:85:CE:17 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:09:77:51:93:21:ef:c9:49:a0:4c:b0:6b:ce:65:56:c0:0e: ca:97:6f:9b:81:f3:0f:4f:f7:25:10:18:78:e0:b6:97:58:3c: a8:ba:6a:80:e4:61:25:73:40:d4:45:85:38:16:85:a3:16:52: a9:6b:89:1a:80:57:b9:9a:9d:ce:91:34:87:9a:91:9a:ac:9a: 4f:8a:79:55:e2:ab:12:de:38:5f:89:84:a7:8a:16:3a:29:fb: 12:2b:c9:46:7d:ff:08:75:9a:08:b5:59:97:00:cb:d4:50:1f: cd:6b:44:10:37:a9:bd:a5:fc:a5:5f:61:1c:09:93:79:00:eb: 4a:a4:68:a6:d0:22:c4:ee:1b:5b:59:f9:7b:e9:81:0d:46:5d: 24:42:62:bb:0c:cd:8d:9e:ec:92:7f:b5:16:01:00:74:27:0e: 05:ed:48:51:40:23:6a:37:3e:98:44:57:d7:73:f0:37:53:1d: 11:3f:13:64:8b:36:8a:5f:24:b2:40:90:06:98:6a:88:94:b5: 36:4d:80:8a:85:4f:e7:2d:19:da:7c:27:30:62:1a:ec:f3:78: 96:d7:49:d2:fb:43:3d:b2:da:3d:90:d5:44:b6:ee:f2:80:54: 2c:a4:d9:20:43:32:cf:e5:38:47:dd:3a:03:ea:7a:c9:0b:4e: d6:68:20:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwNzAyMjAyOTQ3WhcNMjUwNzA5MjAyOTQ3WjAYMRYwFAYD VQQDEw02ODY1OTZiYy02YzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p6da0m1Cy0rP5sALSVPvJYzHoHKnLF7IqC+YTTWzgg6iX6Jj/N0s99wHTvi ToHX1nfW1ce9VAHyDr1tGmBMdku7yexw4RLOxh8misI7LJpChrRPCjQ5F5JiQh7i zqo2nCodLSeWfaYVQ8RE8wji7comeyuRLwOTDmKQ9DtEsG/QJNkIP7GzP8MRmD3l 7VcjsZWnOCqwQ/hw4a2DIAamI4EE557rrZhxSbDRmhIylmDeKBvMF8Uw3AxVXqqk eLbmD5TWFy94TmT3PTSjv9/03UtI70Kb1AfJjb0oNXGW/CbkmDDDBhDKhae2oYmB d2Pl1tckM9KWBIrsgVbLewoyBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqfZlM7 yaS4PCV+OfD5KIWxhc4XMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQCXdRkyHvyUmgTLBrzmVWwA7Kl2+bgfMPT/clEBh44LaXWDyoumqA 5GElc0DURYU4FoWjFlKpa4kagFe5mp3OkTSHmpGarJpPinlV4qsS3jhfiYSnihY6 KfsSK8lGff8IdZoItVmXAMvUUB/Na0QQN6m9pfylX2EcCZN5AOtKpGim0CLE7htb Wfl76YENRl0kQmK7DM2NnuySf7UWAQB0Jw4F7UhRQCNqNz6YRFfXc/A3Ux0RPxNk izaKXySyQJAGmGqIlLU2TYCKhU/nLRnafCcwYhrs83iW10nS+0M9sto9kNVEtu7y gFQspNkgQzLP5ThH3ToD6nrJC07WaCC5 -----END CERTIFICATE-----Generated at Thu Jul 3 00:24:15 2025 by rpki-client