$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: tp9/ID//j1fl/OvfonqmqV822aj5RFVwdCEj69HTz4k= Subject key identifier: E9:68:89:FA:DE:90:0D:64:88:EB:FC:A7:C5:2C:53:BE:F7:C3:9A:76 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 096A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0958 Signing time: Fri 08 Aug 2025 20:32:07 +0000 Manifest this update: Fri 08 Aug 2025 20:32:06 +0000 Manifest next update: Fri 15 Aug 2025 20:32:06 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: KlcrYgvJ9OUlUHZ8kLOcv1AWtEVdh2/agBxhLAvKIvI=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2410 (0x96a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Aug 8 20:32:06 2025 GMT Not After : Aug 15 20:32:06 2025 GMT Subject: CN=68965ec6-4bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:83:ab:d5:7d:24:a9:36:c2:15:b3:c9:c3:ab: 63:b5:35:7d:79:ee:e0:97:17:cb:21:b3:7e:ca:c8: d4:9b:cc:af:cb:2a:9c:16:43:e6:ba:45:e1:3d:2b: 22:a5:b6:99:6e:c3:41:81:67:58:f3:af:02:8a:fb: af:98:2e:29:d3:82:bd:02:ec:c8:ce:35:dc:e3:c6: e1:c3:24:fe:a6:64:11:14:9d:89:e0:c6:5a:be:2a: 7e:f8:70:41:ff:f9:3a:6b:08:69:0e:51:37:e5:ea: c0:23:68:8d:c5:85:da:9c:55:f6:e3:52:e0:b1:b9: 61:b9:2e:8a:29:03:62:5e:ed:6d:e4:fe:e8:7b:5c: 8f:48:5a:65:ac:6e:0a:18:36:93:ff:20:d4:d6:a1: ff:4f:00:ef:5a:ae:5c:fb:9c:cf:5b:4c:37:af:2a: b8:2e:eb:b8:b1:7a:a4:36:d1:fc:ff:6d:4b:6c:97: aa:d5:81:12:94:94:ca:8a:c3:69:e9:1c:bc:ea:f5: 91:a2:7d:bc:7a:e9:be:0e:c6:e5:ac:e0:4c:ca:2e: dc:5d:cf:63:9e:69:07:d1:ad:7d:00:f0:57:bc:7f: 62:ae:7a:52:cc:d8:a3:6c:85:19:f6:a6:ff:92:f7: 09:cb:d0:1b:43:d0:08:1d:9f:b1:82:7d:dc:0d:40: b8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:68:89:FA:DE:90:0D:64:88:EB:FC:A7:C5:2C:53:BE:F7:C3:9A:76 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:76:a5:e9:4d:98:56:ac:4e:6d:24:18:d9:9e:41:31:8d:42: 8b:85:99:5f:5d:d3:5a:f6:f0:f2:0a:95:dd:c1:7e:be:33:a8: 58:d8:94:6e:82:c3:6c:43:39:24:5b:bd:24:a2:92:fa:c6:e8: 2b:07:93:9b:57:7d:70:2e:f6:e8:44:63:4f:c6:7d:fa:c8:f8: af:dd:ae:42:25:9e:a2:52:cc:61:73:a2:38:b4:d7:44:fc:96: fe:0b:0d:b4:97:77:e7:7f:3c:ee:d5:35:30:09:40:79:80:d9: 3d:6a:eb:fa:d8:16:f2:66:cc:41:8c:f4:6e:48:63:42:88:ec: 95:d8:4e:dd:3e:90:1d:8d:fe:db:59:27:9b:16:9a:21:92:19: ee:ff:5d:38:d6:d8:9e:de:0a:99:69:9e:3b:4d:14:36:a9:1f: 2c:e7:22:5c:d7:1d:49:80:ec:1c:68:56:c3:d5:e3:0e:2c:b2: a4:ad:6f:20:ed:68:a7:3c:fc:85:3d:0e:eb:19:9a:96:d9:58: aa:29:32:89:a6:38:4c:f8:e5:53:8a:1c:36:af:eb:66:25:92: 94:83:09:e4:24:89:da:cf:45:f2:74:85:14:f2:cb:89:12:ce: b1:b7:36:41:4a:c1:13:a3:0b:10:c0:23:c1:41:67:ae:04:84: c9:56:9e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwODA4MjAzMjA2WhcNMjUwODE1MjAzMjA2WjAYMRYwFAYD VQQDEw02ODk2NWVjNi00YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4Or1X0kqTbCFbPJw6tjtTV9ee7glxfLIbN+ysjUm8yvyyqcFkPmukXhPSsi pbaZbsNBgWdY868CivuvmC4p04K9AuzIzjXc48bhwyT+pmQRFJ2J4MZavip++HBB //k6awhpDlE35erAI2iNxYXanFX241LgsblhuS6KKQNiXu1t5P7oe1yPSFplrG4K GDaT/yDU1qH/TwDvWq5c+5zPW0w3ryq4Luu4sXqkNtH8/21LbJeq1YESlJTKisNp 6Ry86vWRon28eum+DsblrOBMyi7cXc9jnmkH0a19APBXvH9irnpSzNijbIUZ9qb/ kvcJy9AbQ9AIHZ+xgn3cDUC42wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOloifre kA1kiOv8p8UsU773w5p2MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2dqXpTZhWrE5tJBjZnkExjUKLhZlfXdNa9vDyCpXdwX6+M6hY2JRu gsNsQzkkW70kopL6xugrB5ObV31wLvboRGNPxn36yPiv3a5CJZ6iUsxhc6I4tNdE /Jb+Cw20l3fnfzzu1TUwCUB5gNk9auv62BbyZsxBjPRuSGNCiOyV2E7dPpAdjf7b WSebFpohkhnu/1041tie3gqZaZ47TRQ2qR8s5yJc1x1JgOwcaFbD1eMOLLKkrW8g 7WinPPyFPQ7rGZqW2ViqKTKJpjhM+OVTihw2r+tmJZKUgwnkJInaz0XydIUU8suJ Es6xtzZBSsETowsQwCPBQWeuBITJVp51 -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:12 2025 by rpki-client