$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: NftvhBI53wvX6+aBLWktbIwypnF1t13dWcaPUod0yJg= Subject key identifier: 5B:8F:E4:5F:7E:B9:5E:92:9C:3A:F4:47:9D:18:C0:18:63:92:1E:B0 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 094C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 093A Signing time: Tue 10 Jun 2025 20:10:44 +0000 Manifest this update: Tue 10 Jun 2025 20:10:44 +0000 Manifest next update: Tue 17 Jun 2025 20:10:44 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: X3TWIEI1tL+CBBkU2ig02BxkCsRWtWFz8wP+JG/l/84=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2380 (0x94c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Jun 10 20:10:44 2025 GMT Not After : Jun 17 20:10:44 2025 GMT Subject: CN=68489144-e9c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:2b:f2:b3:7f:89:3a:6c:8d:82:78:f9:09: 9c:be:12:13:c8:6a:c2:20:e0:db:7c:d1:20:83:23: 31:96:6e:f1:3b:32:a9:b8:52:a0:9e:83:97:f7:13: 69:08:d1:8f:cd:9c:49:19:cf:ac:47:7c:c5:e3:ba: c7:a1:b8:21:4a:c5:92:c0:77:1e:38:d1:bc:41:56: 98:03:04:dc:54:e9:df:21:fa:e5:56:a7:ec:d4:51: e1:57:10:39:ac:8b:78:49:44:ac:78:a2:39:f5:6d: ac:dd:c9:7a:3f:38:ac:62:ea:a9:6a:b4:db:0e:1f: 9e:02:a9:51:7e:b3:d2:30:34:a5:e4:d5:8c:f3:71: bf:d0:2f:9d:45:64:0f:2b:b5:db:4e:ae:8c:61:8f: 74:f8:6d:1e:57:29:08:94:96:77:a2:0e:d8:4e:97: 8b:79:b6:05:a5:04:52:e5:1f:f5:b0:ad:c0:98:5e: f2:a8:3d:af:11:2e:52:2c:38:11:b2:26:bd:b8:4d: 78:26:18:34:0d:72:0a:59:0a:4c:9f:fa:4a:95:21: 82:01:95:5c:0b:de:0b:96:b9:3c:db:c8:38:3e:d1: 63:01:65:ac:b4:1f:4e:55:d4:ef:13:d5:2a:2d:28: 7c:32:43:f1:5d:71:20:27:3c:5f:f6:fa:a9:23:bb: 74:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8F:E4:5F:7E:B9:5E:92:9C:3A:F4:47:9D:18:C0:18:63:92:1E:B0 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:f7:39:e2:ea:42:ba:16:45:55:c5:d9:da:6c:d4:ea:bd:81: 9e:19:6a:19:73:88:cc:35:63:df:a1:28:f9:ab:7c:a4:0f:f8: 27:39:45:04:f0:c7:83:06:6b:84:d3:e6:7d:f6:22:71:a1:a0: 14:11:e2:be:1b:ea:53:18:9e:31:df:f0:30:49:ea:29:d3:35: cc:6f:1d:6c:cc:4e:38:ba:b3:eb:a9:b1:70:c5:ff:93:54:1a: c4:55:5a:90:45:53:23:35:1a:6a:ed:32:bc:7f:54:db:a9:5f: f0:d4:c4:a1:07:22:8a:d4:e5:c4:0b:10:85:54:10:4d:87:c1: 60:19:7c:e8:b8:31:d3:4f:0c:a6:14:87:df:f2:c7:ed:4a:8c: c7:e1:82:78:4c:a6:fe:8d:e0:20:58:b5:9c:96:b1:f6:4b:49: 5a:7a:cb:15:76:a2:94:bb:72:e8:4d:bd:2f:d2:5a:ae:ed:ea: 47:be:88:ee:b2:2d:ea:40:4f:95:ce:50:5d:b7:a0:22:5d:2a: bc:48:90:a8:c6:44:da:52:10:e7:80:a1:77:86:18:23:1b:20: 80:26:db:52:55:ef:d3:6e:9c:3a:3b:e6:79:cf:9d:89:d5:08: 2b:45:07:30:23:72:8d:cd:9b:e7:52:f2:2f:64:5f:db:6a:56: f5:9e:07:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwNjEwMjAxMDQ0WhcNMjUwNjE3MjAxMDQ0WjAYMRYwFAYD VQQDEw02ODQ4OTE0NC1lOWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfIr8rN/iTpsjYJ4+QmcvhITyGrCIODbfNEggyMxlm7xOzKpuFKgnoOX9xNp CNGPzZxJGc+sR3zF47rHobghSsWSwHceONG8QVaYAwTcVOnfIfrlVqfs1FHhVxA5 rIt4SUSseKI59W2s3cl6PzisYuqparTbDh+eAqlRfrPSMDSl5NWM83G/0C+dRWQP K7XbTq6MYY90+G0eVykIlJZ3og7YTpeLebYFpQRS5R/1sK3AmF7yqD2vES5SLDgR sia9uE14Jhg0DXIKWQpMn/pKlSGCAZVcC94Llrk828g4PtFjAWWstB9OVdTvE9Uq LSh8MkPxXXEgJzxf9vqpI7t0lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuP5F9+ uV6SnDr0R50YwBhjkh6wMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA9zni6kK6FkVVxdnabNTqvYGeGWoZc4jMNWPfoSj5q3ykD/gnOUUE 8MeDBmuE0+Z99iJxoaAUEeK+G+pTGJ4x3/AwSeop0zXMbx1szE44urPrqbFwxf+T VBrEVVqQRVMjNRpq7TK8f1TbqV/w1MShByKK1OXECxCFVBBNh8FgGXzouDHTTwym FIff8sftSozH4YJ4TKb+jeAgWLWclrH2S0laessVdqKUu3LoTb0v0lqu7epHvoju si3qQE+VzlBdt6AiXSq8SJCoxkTaUhDngKF3hhgjGyCAJttSVe/Tbpw6O+Z5z52J 1QgrRQcwI3KNzZvnUvIvZF/balb1ngem -----END CERTIFICATE-----Generated at Thu Jun 12 19:19:11 2025 by rpki-client