$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: pNKOf+HvXOnh06J/TeVssXcWws2AZ7yqUsIYviI0EOo= Subject key identifier: 7A:73:FD:2E:E1:B9:03:6D:CC:86:C6:7E:20:9F:D8:14:A3:DF:A6:E6 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0972 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0960 Signing time: Sun 24 Aug 2025 20:12:23 +0000 Manifest this update: Sun 24 Aug 2025 20:12:23 +0000 Manifest next update: Sun 31 Aug 2025 20:12:23 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: 6sg1y2eKA+bQE+N9Dgd3yq7+7ryrREIXo1PwNdExtW0=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Aug 24 20:12:23 2025 GMT Not After : Aug 31 20:12:23 2025 GMT Subject: CN=68ab7227-79bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3c:10:26:6f:80:0f:6f:a1:fe:01:3c:ab:90: 68:c6:15:dd:a0:82:e9:b1:e5:d0:a5:a4:96:e0:5f: d4:23:3c:c8:4b:c5:b3:94:83:72:da:9e:5b:58:c8: 4a:3f:b8:34:8b:dc:32:72:ce:71:78:37:49:a2:36: b8:ca:8e:5a:74:71:37:c3:0c:f5:a6:a9:14:4f:9a: 8d:4a:c6:77:9b:15:30:0c:1f:73:2d:c0:95:d2:a4: e4:25:6b:7d:c4:8f:de:9c:01:44:d0:16:cc:8d:da: f0:5d:f8:1d:0d:62:1d:b4:7b:84:8b:67:13:24:36: 5c:e9:a4:b5:93:77:7e:34:e9:65:98:46:74:86:00: a1:3b:24:82:1b:2b:76:af:da:7c:4f:33:98:cf:d7: 3e:07:aa:69:50:4b:cb:ae:80:93:5b:1b:a4:d2:7e: c1:5a:68:b8:ab:f5:47:05:1f:ec:49:37:d3:2d:ab: c5:5a:64:db:6b:89:21:d0:a7:98:c1:f6:e0:ab:1d: 41:5b:cc:59:3e:e2:0c:46:5e:89:c3:5e:13:c2:05: 80:68:97:fd:2f:50:a2:d9:0f:39:48:96:55:0d:2d: 0b:6f:c7:9b:c1:da:90:28:4b:df:36:0f:bc:af:ae: 86:fd:8c:fa:68:ab:ee:48:5d:dc:b8:a3:3c:34:ed: a7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:73:FD:2E:E1:B9:03:6D:CC:86:C6:7E:20:9F:D8:14:A3:DF:A6:E6 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a3:02:d2:98:6b:cc:49:40:4f:eb:ec:c6:7d:10:1e:98:b3: 85:58:57:37:fc:3e:5a:4c:d4:1a:97:bd:bf:de:b8:df:66:ec: c3:18:ee:e3:49:61:39:f1:09:e6:13:df:39:ca:22:d8:48:66: 2c:4f:a5:3e:43:cb:a9:e4:14:44:fe:79:87:fe:36:53:37:16: ff:f7:1a:fa:1e:d5:d1:c9:3e:28:69:9e:9d:b3:25:9a:fc:13: 11:71:6e:05:c0:93:a7:6e:04:91:49:5f:e3:5d:56:59:20:4a: 6a:e4:4e:bb:4e:86:e8:2b:9c:19:f1:8d:e1:29:58:66:6f:84: d0:e5:1b:e2:4a:59:02:84:14:0d:87:ba:a8:d2:99:4f:8f:00: 8b:50:bd:4b:f4:2c:e6:da:e7:b7:35:70:b1:d1:cd:e2:ab:67: 75:5b:d7:66:ef:bc:54:d7:1e:5e:57:8f:1a:78:7b:4e:56:22: fb:f2:e0:42:be:a1:e9:a9:be:eb:42:a7:13:0a:bf:e6:14:a5: c9:53:2e:50:b0:cb:d9:89:49:2b:67:a4:5c:ba:23:82:8e:f1: 57:dc:84:36:0d:09:1a:62:d7:8a:9e:36:1b:34:5d:5f:2b:09: 92:92:fc:bf:c6:ea:52:6c:de:f3:8e:6c:ad:48:5d:e9:c8:5b: 54:74:64:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwODI0MjAxMjIzWhcNMjUwODMxMjAxMjIzWjAYMRYwFAYD VQQDEw02OGFiNzIyNy03OWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTwQJm+AD2+h/gE8q5BoxhXdoILpseXQpaSW4F/UIzzIS8WzlINy2p5bWMhK P7g0i9wycs5xeDdJoja4yo5adHE3wwz1pqkUT5qNSsZ3mxUwDB9zLcCV0qTkJWt9 xI/enAFE0BbMjdrwXfgdDWIdtHuEi2cTJDZc6aS1k3d+NOllmEZ0hgChOySCGyt2 r9p8TzOYz9c+B6ppUEvLroCTWxuk0n7BWmi4q/VHBR/sSTfTLavFWmTba4kh0KeY wfbgqx1BW8xZPuIMRl6Jw14TwgWAaJf9L1Ci2Q85SJZVDS0Lb8ebwdqQKEvfNg+8 r66G/Yz6aKvuSF3cuKM8NO2n1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpz/S7h uQNtzIbGfiCf2BSj36bmMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtowLSmGvMSUBP6+zGfRAemLOFWFc3/D5aTNQal72/3rjfZuzDGO7j SWE58QnmE985yiLYSGYsT6U+Q8up5BRE/nmH/jZTNxb/9xr6HtXRyT4oaZ6dsyWa /BMRcW4FwJOnbgSRSV/jXVZZIEpq5E67ToboK5wZ8Y3hKVhmb4TQ5RviSlkChBQN h7qo0plPjwCLUL1L9Czm2ue3NXCx0c3iq2d1W9dm77xU1x5eV48aeHtOViL78uBC vqHpqb7rQqcTCr/mFKXJUy5QsMvZiUkrZ6RcuiOCjvFX3IQ2DQkaYteKnjYbNF1f KwmSkvy/xupSbN7zjmytSF3pyFtUdGTJ -----END CERTIFICATE-----Generated at Sun Aug 24 21:52:16 2025 by rpki-client