$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: CUjncF/vaM83DCkaILx17/RDi9Q14s9chaxTLwH0GOc= Subject key identifier: 03:77:64:B6:68:74:56:29:73:79:DA:39:E5:12:33:18:41:08:05:07 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 09F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 09E3 Signing time: Sun 26 Apr 2026 19:48:15 +0000 Manifest this update: Sun 26 Apr 2026 19:48:14 +0000 Manifest next update: Sun 03 May 2026 19:48:14 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: W8Q5QaTkG0M78GZTlaFn9BQ9lBerR+5vjlGpNJUVa+A=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6M5Mg9C116unCx1h9rVUgS55hFW2He6mLEZ0NRGWeB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 19:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Apr 26 19:48:14 2026 GMT Not After : May 3 19:48:14 2026 GMT Subject: CN=69ee6bff-97a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1d:7b:5f:2d:1f:08:8b:7b:1a:39:14:30:f7: 31:22:c2:88:4f:17:33:65:0b:5d:93:3a:08:45:08: 6f:75:2a:81:68:f9:e2:d0:3f:22:b6:a2:0e:8e:07: 9b:ae:da:13:3d:38:53:d0:07:72:40:6c:41:90:bf: 55:6f:93:59:4e:b4:0b:f0:57:68:50:e4:19:fd:bd: 2e:24:4b:0d:1e:f6:60:2f:d7:1f:b5:d1:43:91:23: 53:9e:7f:9a:33:ba:87:f2:cc:5c:2a:0e:35:93:2c: 5c:a7:97:15:f4:47:13:33:6a:a6:2a:b5:a5:f4:aa: 4a:75:1c:a2:b1:bd:8d:ba:ad:f2:56:e9:e3:71:22: fb:2d:12:64:9f:88:61:66:9f:64:d6:c6:f9:f9:e1: 27:42:ec:05:45:1b:3d:87:e8:a9:cb:d3:0b:1e:18: 4b:65:62:a4:14:c1:89:dd:96:34:05:3c:e3:4f:d8: 56:71:49:69:8f:66:8d:9e:c5:2f:26:43:86:e2:f1: 90:1e:a4:89:b0:da:3d:c6:23:75:90:cb:0e:f4:36: c8:96:5e:08:89:c7:3d:a8:11:36:22:0d:8d:dc:07: ba:52:d7:c3:20:cf:76:65:1d:aa:0a:59:f5:6b:d9: 16:e6:de:35:d4:a5:92:9e:1f:27:56:80:f2:90:1e: 6b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:77:64:B6:68:74:56:29:73:79:DA:39:E5:12:33:18:41:08:05:07 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:22:e7:7f:c2:a9:0a:2a:b6:ae:b7:c4:55:4e:47:f9:d8:17: 42:6c:d3:33:20:e4:b7:e4:79:10:09:94:0b:1a:c4:e7:12:5d: d5:0a:dc:52:ee:42:00:ff:70:57:fe:45:67:9c:ea:d5:ac:a8: c6:35:62:71:e0:fe:1a:4b:64:de:65:54:b1:42:b8:f6:d1:73: 3b:bd:23:cd:e9:e3:8b:d8:6b:c2:f1:62:eb:3f:70:5f:2d:6f: 85:19:2a:1d:62:3a:29:95:8e:52:50:ee:69:e6:03:52:0a:c5: b2:5e:b0:bc:82:9c:ae:df:b5:02:8d:cb:13:fa:82:ae:a4:5f: dd:83:c2:2d:26:1b:64:5b:99:d7:62:42:ac:54:bc:9c:cf:56: f2:99:3c:2f:91:a0:a1:2a:95:2e:da:37:d3:4a:1b:39:72:00: 41:49:30:c0:e3:ab:53:11:8b:30:39:1b:3e:c1:61:7a:fa:25: 7f:74:76:58:a0:8d:17:28:41:30:e2:6f:67:d0:97:41:b3:c6: 28:13:dc:77:d5:21:1f:79:62:30:6b:46:e5:5b:eb:94:52:6f: e3:58:24:49:72:98:ab:73:56:0f:42:80:51:e6:74:da:7a:bf: b1:5a:4d:9c:5b:69:67:6f:e1:5c:9a:ac:c1:0e:b7:7e:88:76: e8:58:36:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjYwNDI2MTk0ODE0WhcNMjYwNTAzMTk0ODE0WjAYMRYwFAYD VQQDEw02OWVlNmJmZi05N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtx17Xy0fCIt7GjkUMPcxIsKITxczZQtdkzoIRQhvdSqBaPni0D8itqIOjgeb rtoTPThT0AdyQGxBkL9Vb5NZTrQL8FdoUOQZ/b0uJEsNHvZgL9cftdFDkSNTnn+a M7qH8sxcKg41kyxcp5cV9EcTM2qmKrWl9KpKdRyisb2Nuq3yVunjcSL7LRJkn4hh Zp9k1sb5+eEnQuwFRRs9h+ipy9MLHhhLZWKkFMGJ3ZY0BTzjT9hWcUlpj2aNnsUv JkOG4vGQHqSJsNo9xiN1kMsO9DbIll4Iicc9qBE2Ig2N3Ae6UtfDIM92ZR2qCln1 a9kW5t411KWSnh8nVoDykB5rSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAN3ZLZo dFYpc3naOeUSMxhBCAUHMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbyLnf8KpCiq2rrfEVU5H+dgXQmzTMyDkt+R5EAmUCxrE5xJd1QrcUu5CAP9w V/5FZ5zq1ayoxjViceD+Gktk3mVUsUK49tFzO70jzenji9hrwvFi6z9wXy1vhRkq HWI6KZWOUlDuaeYDUgrFsl6wvIKcrt+1Ao3LE/qCrqRf3YPCLSYbZFuZ12JCrFS8 nM9W8pk8L5GgoSqVLto300obOXIAQUkwwOOrUxGLMDkbPsFhevolf3R2WKCNFyhB MOJvZ9CXQbPGKBPcd9UhH3liMGtG5VvrlFJv41gkSXKYq3NWD0KAUeZ02nq/sVpN nFtpZ2/hXJqswQ63foh26Fg2QA== -----END CERTIFICATE-----Generated at Mon Apr 27 20:12:29 2026 by rpki-client