$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: sfxwr68dmBTWOJzr9RdpZHB/pdaKnUfw1epNseogqfM= Subject key identifier: DC:98:F6:37:D3:92:F2:E8:D7:3F:B8:E9:43:B6:57:01:31:28:B1:A3 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 094E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 093C Signing time: Sat 14 Jun 2025 20:05:02 +0000 Manifest this update: Sat 14 Jun 2025 20:05:02 +0000 Manifest next update: Sat 21 Jun 2025 20:05:02 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: l3nrPKnetdCJWSeTsF13mbbSoBUS9xXy5s0lhsx1MkY=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Jun 14 20:05:02 2025 GMT Not After : Jun 21 20:05:02 2025 GMT Subject: CN=684dd5ee-4a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:e3:6a:0e:2e:af:af:c0:39:99:7b:08:9d: a7:ab:8c:40:1d:62:9c:2a:db:bd:7b:c6:a4:eb:d9: 15:63:b9:67:c3:d8:75:6d:83:21:4e:ed:53:63:fd: c8:d0:3f:ed:86:9d:34:d6:03:46:92:35:fe:29:50: fb:28:4a:2b:28:4f:fe:5a:bc:30:c2:94:29:58:7b: fa:cc:80:09:5c:07:3c:6a:1e:09:61:51:4a:0e:64: 86:46:4c:f3:ae:0f:86:d9:ea:a3:a5:13:02:9f:75: 55:24:2e:81:a4:86:2a:bb:85:71:9c:ed:81:10:ad: 33:58:99:25:8d:0b:1c:12:93:ea:24:20:5b:0d:54: d1:83:34:f2:7e:72:7a:96:20:40:6b:cc:b3:e1:8b: f0:29:4c:d6:9b:58:70:ae:7b:9d:2e:80:da:bf:2c: 1c:db:a3:25:77:9f:0a:8e:b9:c0:4a:3c:cd:c9:f4: b5:0a:30:74:56:e9:02:43:d2:7b:93:57:ed:5b:7c: 75:3a:6e:a3:07:bf:7d:1e:88:79:7f:34:65:0e:74: e8:cc:cf:05:f3:cb:ad:b3:80:37:f2:c3:aa:bf:43: 18:f5:2f:bc:a3:96:b3:27:a9:8b:5a:0e:bb:07:2f: c2:52:10:46:60:78:6b:67:49:bd:33:b0:00:2d:12: ae:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:98:F6:37:D3:92:F2:E8:D7:3F:B8:E9:43:B6:57:01:31:28:B1:A3 X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:e3:96:2b:ca:8e:0f:4b:a2:88:23:e2:78:b8:eb:41:74:38: c9:36:ee:19:55:50:dc:3d:24:2f:d1:80:0e:57:4e:f3:5f:f9: 5b:a9:7c:de:95:b0:88:7a:c3:85:df:b8:f5:33:1f:08:d0:23: 35:5c:37:86:0f:f4:cc:fe:21:02:ec:41:8e:a5:ec:58:99:79: 28:3e:77:d6:c2:28:96:a2:df:db:b8:55:73:16:51:bd:3c:fc: fe:b1:56:9c:11:22:64:bc:1e:5e:8b:b0:37:0e:f1:50:df:25: 5a:e0:29:da:e9:d3:ce:9d:81:bc:01:d3:ba:bb:e0:8f:8b:d1: 34:30:c1:ef:ad:90:e3:07:a1:e8:8b:72:bc:85:6c:f5:b8:27: 63:41:b8:1f:5b:1a:21:cd:72:ea:7a:3c:13:0d:a1:c6:cb:89: d2:92:8e:85:a9:cc:12:02:99:59:da:85:5d:7b:1c:d1:cb:cb: 12:dd:a2:91:ae:7f:4c:90:dc:81:51:45:9a:81:eb:e9:25:f1: 90:7f:2b:e5:a6:24:ae:fb:27:de:ac:0d:d3:38:a8:6f:bd:dd: dd:ef:4a:cb:0d:2a:1f:e1:13:cf:60:fc:04:1e:28:d6:39:8d: e5:73:e7:0a:1d:50:fb:f7:a0:06:3d:a9:cf:3f:b4:f5:51:15: 41:ae:42:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwNjE0MjAwNTAyWhcNMjUwNjIxMjAwNTAyWjAYMRYwFAYD VQQDEw02ODRkZDVlZS00YTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBTjag4ur6/AOZl7CJ2nq4xAHWKcKtu9e8ak69kVY7lnw9h1bYMhTu1TY/3I 0D/thp001gNGkjX+KVD7KEorKE/+WrwwwpQpWHv6zIAJXAc8ah4JYVFKDmSGRkzz rg+G2eqjpRMCn3VVJC6BpIYqu4VxnO2BEK0zWJkljQscEpPqJCBbDVTRgzTyfnJ6 liBAa8yz4YvwKUzWm1hwrnudLoDavywc26Mld58KjrnASjzNyfS1CjB0VukCQ9J7 k1ftW3x1Om6jB799Hoh5fzRlDnTozM8F88uts4A38sOqv0MY9S+8o5azJ6mLWg67 By/CUhBGYHhrZ0m9M7AALRKuXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyY9jfT kvLo1z+46UO2VwExKLGjMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk45Yryo4PS6KII+J4uOtBdDjJNu4ZVVDcPSQv0YAOV07zX/lbqXze lbCIesOF37j1Mx8I0CM1XDeGD/TM/iEC7EGOpexYmXkoPnfWwiiWot/buFVzFlG9 PPz+sVacESJkvB5ei7A3DvFQ3yVa4Cna6dPOnYG8AdO6u+CPi9E0MMHvrZDjB6Ho i3K8hWz1uCdjQbgfWxohzXLqejwTDaHGy4nSko6FqcwSAplZ2oVdexzRy8sS3aKR rn9MkNyBUUWagevpJfGQfyvlpiSu+yferA3TOKhvvd3d70rLDSof4RPPYPwEHijW OY3lc+cKHVD796AGPanPP7T1URVBrkKy -----END CERTIFICATE-----Generated at Sun Jun 15 09:38:57 2025 by rpki-client