$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: 8Is7JrvAoLGhC4wYkzBOeAP4TjJ2L5Mc4V147RdtTKU= Subject key identifier: 63:21:5B:D8:75:4C:29:F8:0A:E1:65:58:8F:2E:37:DE:8A:FB:0E:05 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0996 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0983 Signing time: Sun 26 Oct 2025 20:42:07 +0000 Manifest this update: Sun 26 Oct 2025 20:42:06 +0000 Manifest next update: Sun 02 Nov 2025 20:42:06 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: T3sY6wA8cE98ivryjts1d1i5gcGx8V0dcM5WfssKGmU=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6YMCbYV0HjEFxQW7Rqr8k/qQPvulelScO8qALM4FUVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2454 (0x996) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Oct 26 20:42:06 2025 GMT Not After : Nov 2 20:42:06 2025 GMT Subject: CN=68fe879f-1650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:a9:cf:69:9d:0a:84:84:54:df:a3:1e:fe: 96:e4:d5:71:96:d4:cd:08:26:9c:11:65:d1:03:c8: 94:f8:9c:f3:be:14:a0:77:59:0e:b9:c6:24:a8:1d: 4e:11:0f:9d:18:2a:31:14:75:1e:79:24:ff:ce:a1: fc:a5:c8:fa:88:af:7c:b4:de:a5:93:45:25:6b:aa: 42:f1:3d:ea:c7:d0:bb:bd:a9:81:e9:42:d7:b1:02: ff:d2:12:c7:78:ce:d9:9f:51:68:37:b7:05:aa:8e: 84:1e:69:13:90:48:5a:8f:2b:b1:4e:64:96:46:a3: 72:b9:d0:e3:3f:1c:d1:a8:47:4e:c4:f4:e1:4b:f2: 4f:70:3c:9b:92:a9:fc:3f:ad:2d:27:16:a4:ae:cf: 44:c0:b4:14:5d:3c:0e:dd:ee:6a:2f:97:7b:5b:b0: b5:7a:7b:e6:10:89:d1:a1:7d:f2:3b:01:b6:3a:08: bf:9a:60:d0:f4:b5:0d:5f:b5:77:ee:53:0c:a1:77: 00:11:1b:28:82:42:0f:4d:66:54:50:df:6d:75:28: 15:c2:ea:d9:39:e4:ae:6a:09:50:12:a5:87:4e:37: 26:e4:08:fc:df:58:31:c7:d3:3c:d9:a7:45:45:5b: 88:bf:18:ae:87:41:cf:11:00:6c:a3:15:76:24:52: 08:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:21:5B:D8:75:4C:29:F8:0A:E1:65:58:8F:2E:37:DE:8A:FB:0E:05 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:33:a7:f4:c2:a0:fb:65:75:0a:27:8a:20:0b:93:ea:a1:88: e7:b8:98:47:ef:01:55:0d:b3:c8:be:07:b4:a1:5a:41:2b:49: c5:ea:c4:a0:67:54:5c:7e:5a:28:c6:c2:ea:60:e2:a3:f1:e4: be:1c:83:11:41:7c:f5:3e:4e:6a:16:54:32:38:76:3b:1a:e0: 85:a2:bb:34:41:84:90:6c:98:8a:4c:87:15:c1:aa:b2:30:5a: 6e:46:fe:28:55:63:bb:6f:28:5d:68:54:58:66:7d:a5:2d:4c: 52:b4:6c:30:a3:ef:5c:00:e7:7c:c0:7f:fd:3e:0e:41:aa:24: 61:cc:77:fe:9e:9d:e1:cf:62:db:66:e8:2b:e4:9e:66:cd:0b: 54:11:c4:e3:41:d9:45:b1:2b:b9:4f:32:00:d9:f0:ad:eb:4f: 98:c9:36:08:2b:01:19:69:3a:a0:49:57:28:ad:24:ff:3a:93: 90:62:5a:a7:a1:5e:2d:6e:c1:df:9a:43:04:c2:03:50:88:4d: 71:8c:ff:38:4d:eb:5f:e2:3e:e3:d1:2b:41:1a:00:7f:e1:53: ca:64:8f:db:ad:fd:57:aa:35:64:af:9d:11:7c:4f:96:3a:ed: 21:eb:61:fe:cc:c3:5e:57:a4:95:a6:1f:ba:59:cf:8e:10:8c: 63:8b:7b:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUxMDI2MjA0MjA2WhcNMjUxMTAyMjA0MjA2WjAYMRYwFAYD VQQDEw02OGZlODc5Zi0xNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyWpz2mdCoSEVN+jHv6W5NVxltTNCCacEWXRA8iU+JzzvhSgd1kOucYkqB1O EQ+dGCoxFHUeeST/zqH8pcj6iK98tN6lk0Ula6pC8T3qx9C7vamB6ULXsQL/0hLH eM7Zn1FoN7cFqo6EHmkTkEhajyuxTmSWRqNyudDjPxzRqEdOxPThS/JPcDybkqn8 P60tJxakrs9EwLQUXTwO3e5qL5d7W7C1envmEInRoX3yOwG2Ogi/mmDQ9LUNX7V3 7lMMoXcAERsogkIPTWZUUN9tdSgVwurZOeSuaglQEqWHTjcm5Aj831gxx9M82adF RVuIvxiuh0HPEQBsoxV2JFIIGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMhW9h1 TCn4CuFlWI8uN96K+w4FMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1M6f0wqD7ZXUKJ4ogC5PqoYjnuJhH7wFVDbPIvge0oVpBK0nF6sSg Z1RcflooxsLqYOKj8eS+HIMRQXz1Pk5qFlQyOHY7GuCFors0QYSQbJiKTIcVwaqy MFpuRv4oVWO7byhdaFRYZn2lLUxStGwwo+9cAOd8wH/9Pg5BqiRhzHf+np3hz2Lb Zugr5J5mzQtUEcTjQdlFsSu5TzIA2fCt60+YyTYIKwEZaTqgSVcorST/OpOQYlqn oV4tbsHfmkMEwgNQiE1xjP84Tetf4j7j0StBGgB/4VPKZI/brf1XqjVkr50RfE+W Ou0h62H+zMNeV6SVph+6Wc+OEIxji3tU -----END CERTIFICATE-----Generated at Mon Oct 27 17:12:59 2025 by rpki-client