$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: poAN0y7EGp3SJb+H5OC8NgoLWP0acLngFiFYfVbnbrQ= Subject key identifier: EB:95:9C:81:0F:5A:FB:18:5F:11:70:77:88:F1:5A:8A:88:53:A1:7E Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 09E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 09CC Signing time: Thu 12 Mar 2026 19:38:43 +0000 Manifest this update: Thu 12 Mar 2026 19:38:42 +0000 Manifest next update: Thu 19 Mar 2026 19:38:42 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: mS5U6ZU+w2XhA+evIGGR7AYOdHyJaGyPljta/M4Zp4E=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6M5Mg9C116unCx1h9rVUgS55hFW2He6mLEZ0NRGWeB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 19:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Mar 12 19:38:42 2026 GMT Not After : Mar 19 19:38:42 2026 GMT Subject: CN=69b31643-2a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3e:17:66:06:53:22:f2:cb:c8:8a:8b:b8:12: 58:a2:b5:e5:99:e5:7f:f1:71:aa:aa:f6:08:11:9f: a6:9e:c0:bf:98:17:a2:c3:f1:c9:ea:1a:19:3e:39: d8:ae:2e:98:ba:65:b9:2f:96:49:08:cc:f2:0e:7f: 0b:b9:17:24:52:cc:d8:a6:a6:40:3f:04:4d:7f:31: 9b:1b:32:fc:7f:33:82:59:03:35:ad:81:dc:f4:c3: b5:74:32:cf:51:96:75:0c:fe:73:21:45:91:59:75: a3:04:1f:21:27:cf:78:7f:8b:00:fe:86:19:b8:3d: 0a:58:c6:58:bd:31:97:0b:c4:2e:31:01:2e:1f:76: c9:79:65:f9:40:9f:41:98:68:15:82:c0:fa:1e:de: e3:47:d0:6a:03:56:8e:fc:a9:c4:6d:28:d7:8d:76: ae:d9:22:a1:b6:85:a3:19:c5:14:18:14:5f:6e:f3: 24:69:59:ef:39:6b:9b:a8:d8:cc:2a:08:a1:63:48: 50:4d:e9:82:45:36:81:8f:27:da:b2:42:61:55:4d: 1e:a8:d2:bf:9e:d9:73:bc:8e:d9:5b:e7:4b:d4:53: 95:bd:a1:99:3c:77:66:65:bb:fe:05:ac:87:26:1e: 9a:c2:59:d5:83:a3:84:55:c7:3e:0c:46:2a:22:0f: 05:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:95:9C:81:0F:5A:FB:18:5F:11:70:77:88:F1:5A:8A:88:53:A1:7E X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:53:f8:93:6d:e0:fa:92:f1:b0:c9:dd:72:22:fd:79:94:66: 7d:b9:a7:6a:02:eb:a4:13:ad:fd:0a:00:98:c1:3b:db:63:70: 92:53:06:37:80:85:12:89:35:54:7e:24:24:02:d5:d0:b3:01: 60:d7:be:db:ae:28:83:1c:a7:1a:33:07:a1:44:c5:37:8b:5f: f2:12:24:a6:33:59:f0:d6:16:20:ea:21:7a:6e:3b:a2:35:48: 79:4e:a2:15:b8:2e:e0:c4:9e:0a:cf:55:d4:22:9b:cb:39:1b: 97:17:d7:af:a8:9a:e5:57:cf:19:fe:f5:8e:05:d3:aa:43:82: fe:42:c8:0e:d4:45:90:e4:a5:f9:3d:83:1f:71:4c:c4:bf:e5: 7e:9d:82:c8:bd:36:6d:b9:94:fa:b3:c8:24:a7:cf:6d:5d:50: 4a:ed:26:32:95:2b:cb:20:9e:a3:46:17:13:bc:fc:88:15:c6: 78:12:56:55:b0:bd:72:33:0f:2e:b6:da:f7:2b:7e:f2:0b:84: e3:a2:b8:0f:f5:83:7e:5a:90:af:3e:a2:4f:0a:5f:8c:39:21: be:b0:7d:a4:b7:59:02:be:b1:97:8b:d2:6d:a5:d1:b8:6f:5c: 77:9f:0c:fd:29:68:40:1c:71:66:dd:99:1b:e6:44:24:d7:dd: b2:35:49:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjYwMzEyMTkzODQyWhcNMjYwMzE5MTkzODQyWjAYMRYwFAYD VQQDEw02OWIzMTY0My0yYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT4XZgZTIvLLyIqLuBJYorXlmeV/8XGqqvYIEZ+mnsC/mBeiw/HJ6hoZPjnY ri6YumW5L5ZJCMzyDn8LuRckUszYpqZAPwRNfzGbGzL8fzOCWQM1rYHc9MO1dDLP UZZ1DP5zIUWRWXWjBB8hJ894f4sA/oYZuD0KWMZYvTGXC8QuMQEuH3bJeWX5QJ9B mGgVgsD6Ht7jR9BqA1aO/KnEbSjXjXau2SKhtoWjGcUUGBRfbvMkaVnvOWubqNjM KgihY0hQTemCRTaBjyfaskJhVU0eqNK/ntlzvI7ZW+dL1FOVvaGZPHdmZbv+BayH Jh6awlnVg6OEVcc+DEYqIg8FfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOuVnIEP WvsYXxFwd4jxWoqIU6F+MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs1P4k23g+pLxsMndciL9eZRmfbmnagLrpBOt/QoAmME722NwklMGN4CFEok1 VH4kJALV0LMBYNe+264ogxynGjMHoUTFN4tf8hIkpjNZ8NYWIOohem47ojVIeU6i Fbgu4MSeCs9V1CKbyzkblxfXr6ia5VfPGf71jgXTqkOC/kLIDtRFkOSl+T2DH3FM xL/lfp2CyL02bbmU+rPIJKfPbV1QSu0mMpUryyCeo0YXE7z8iBXGeBJWVbC9cjMP Lrba9yt+8guE46K4D/WDflqQrz6iTwpfjDkhvrB9pLdZAr6xl4vSbaXRuG9cd58M /SloQBxxZt2ZG+ZEJNfdsjVJqg== -----END CERTIFICATE-----Generated at Fri Mar 13 13:51:52 2026 by rpki-client