$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: KJXVtn29VqGg5JqOqpzg65KxjSsibmOAhfqkZHLt4v4= Subject key identifier: 11:15:6A:CA:55:98:03:70:F6:97:2C:4C:47:DE:85:CC:E5:0B:C3:75 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0971 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 095F Signing time: Fri 22 Aug 2025 20:19:21 +0000 Manifest this update: Fri 22 Aug 2025 20:19:21 +0000 Manifest next update: Fri 29 Aug 2025 20:19:21 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: OYRjLXKW/Ekzp3adzoU90kOXKNugKoCPe9DhRiNLWdk=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2417 (0x971) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Aug 22 20:19:21 2025 GMT Not After : Aug 29 20:19:21 2025 GMT Subject: CN=68a8d0c9-d25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:da:76:c2:d5:d5:b7:78:4b:21:d7:b8:27:58: 43:d9:81:39:66:3c:64:00:26:9e:c8:db:2f:ea:a0: b3:80:7c:da:6b:af:84:6c:65:b7:cb:dc:a5:8e:25: 8e:23:a5:95:af:02:1a:e4:ae:a1:28:e6:c0:22:01: 6f:d5:a8:48:b8:18:e4:14:be:80:31:6a:58:5e:c1: 5d:55:8d:d0:49:86:f5:c8:0e:fb:d9:5f:e5:d3:ac: 5d:c8:3a:46:45:b1:86:16:23:26:e7:2b:50:b6:34: f8:68:7d:ee:49:c2:a5:7d:6c:15:15:6a:a3:b9:ff: 6a:c4:0a:61:51:33:3e:ec:ec:d0:c2:42:e8:39:23: 56:64:1a:84:69:b0:d2:2a:ee:ee:e3:d9:0e:46:1f: d7:47:b5:a3:60:2d:1e:f0:9f:af:7c:39:a2:dc:00: 4a:da:ce:7b:06:ac:77:fd:7a:fc:07:fb:07:29:a6: 2f:21:2e:e8:d4:de:12:7e:e5:94:98:de:4b:8d:57: 01:87:3a:45:3b:e2:32:7c:3c:54:fc:67:15:e2:9a: 4c:5f:da:6b:f7:6b:0e:b9:22:32:87:86:d0:10:b5: b3:fd:06:84:05:a5:ca:44:28:db:f3:a0:f3:c8:ee: a6:6e:ec:5f:bb:47:51:71:11:d6:22:df:13:0b:ce: af:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:15:6A:CA:55:98:03:70:F6:97:2C:4C:47:DE:85:CC:E5:0B:C3:75 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:fd:dc:e8:1b:9d:20:c5:5c:83:77:96:e6:b7:9d:d6:d1:ca: 35:69:1a:79:76:08:8c:9f:e0:29:ad:97:f1:97:9f:bd:22:9b: 8d:07:d0:a9:2b:7e:3a:b8:ce:c8:fe:da:97:55:81:c8:3e:aa: 79:a0:67:5b:2f:c0:42:8b:54:51:11:62:cb:35:b8:cd:8b:3a: f2:c9:e0:85:dd:00:2a:8b:7c:ac:52:d4:ce:79:65:8d:dd:1b: a8:f3:d1:65:96:d6:75:28:4e:1f:9b:b7:1c:47:a4:c1:c7:dc: b7:e7:e7:6f:f4:02:21:09:5b:6c:35:32:97:a8:e8:5a:de:e7: b2:9f:d4:10:e5:a5:de:ae:4e:35:e3:0c:9d:92:5d:c1:d9:66: 78:57:bd:31:d1:91:68:57:43:17:9d:83:d8:c0:f4:fc:1b:24: 7e:2e:93:5d:8d:57:0e:6c:b0:f2:38:8f:24:66:d3:33:a5:b6: 70:b8:0c:13:3a:2f:a3:2d:ad:55:f1:6c:ac:ec:e5:3f:0f:0c: 34:12:3d:55:ef:71:3d:76:ec:46:bf:60:06:25:8b:18:79:78: ba:58:45:98:47:26:01:3a:ba:c3:28:c4:25:7a:c2:bb:01:9b: b1:56:aa:e7:bf:7e:bf:10:33:82:b3:4e:8a:4f:ca:4d:a6:6a: 55:3d:b0:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwODIyMjAxOTIxWhcNMjUwODI5MjAxOTIxWjAYMRYwFAYD VQQDEw02OGE4ZDBjOS1kMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Np2wtXVt3hLIde4J1hD2YE5ZjxkACaeyNsv6qCzgHzaa6+EbGW3y9yljiWO I6WVrwIa5K6hKObAIgFv1ahIuBjkFL6AMWpYXsFdVY3QSYb1yA772V/l06xdyDpG RbGGFiMm5ytQtjT4aH3uScKlfWwVFWqjuf9qxAphUTM+7OzQwkLoOSNWZBqEabDS Ku7u49kORh/XR7WjYC0e8J+vfDmi3ABK2s57Bqx3/Xr8B/sHKaYvIS7o1N4SfuWU mN5LjVcBhzpFO+IyfDxU/GcV4ppMX9pr92sOuSIyh4bQELWz/QaEBaXKRCjb86Dz yO6mbuxfu0dRcRHWIt8TC86vYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEVaspV mANw9pcsTEfehczlC8N1MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDW/dzoG50gxVyDd5bmt53W0co1aRp5dgiMn+AprZfxl5+9IpuNB9Cp K346uM7I/tqXVYHIPqp5oGdbL8BCi1RREWLLNbjNizryyeCF3QAqi3ysUtTOeWWN 3Ruo89FlltZ1KE4fm7ccR6TBx9y35+dv9AIhCVtsNTKXqOha3ueyn9QQ5aXerk41 4wydkl3B2WZ4V70x0ZFoV0MXnYPYwPT8GyR+LpNdjVcObLDyOI8kZtMzpbZwuAwT Oi+jLa1V8Wys7OU/Dww0Ej1V73E9duxGv2AGJYsYeXi6WEWYRyYBOrrDKMQlesK7 AZuxVqrnv36/EDOCs06KT8pNpmpVPbDf -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:20 2025 by rpki-client