$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: jFu0RvXmKaklKncQ9mgGdVk1Uy9roEdxVSuX/+X3Yg0= Subject key identifier: 80:EE:1E:9E:80:D5:32:47:61:15:4C:3C:7E:AD:9D:51:F5:59:99:7C Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0933 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0921 Signing time: Thu 24 Apr 2025 20:12:09 +0000 Manifest this update: Thu 24 Apr 2025 20:12:08 +0000 Manifest next update: Thu 01 May 2025 20:12:08 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: 08W92Qus4hW5Y55OJxhpCWqZ4Kp6QDat/fcUJCSl644=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 9BlYu2PTk5dV4bHJ7RwjBjbWZFG8OxFIELZVhhxp048=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2355 (0x933) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Apr 24 20:12:08 2025 GMT Not After : May 1 20:12:08 2025 GMT Subject: CN=680a9b18-e33e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ca:3a:03:b8:82:59:3e:54:78:dd:4a:b9:dc: aa:fc:17:9a:69:fe:86:1b:e8:c5:1d:b3:c8:70:c0: 39:e8:17:26:b9:c3:e3:6b:bd:16:87:7d:a5:8f:ad: 15:92:0b:4e:96:db:7e:03:b1:4a:cc:fd:3f:58:94: d7:a5:21:bd:6a:85:40:b3:09:da:21:80:77:70:0d: 9d:a7:cb:45:cf:d2:f5:0c:64:d5:33:5d:1d:9e:19: 45:4f:c1:5a:a2:aa:03:a9:3e:cb:c5:3d:de:ea:d9: 03:59:27:3c:ba:e5:d5:ed:5b:3a:73:2f:9a:ca:bd: 73:f6:be:e7:bc:ad:05:ec:99:37:35:e8:97:22:8c: 6a:ca:9e:60:cf:cb:bc:83:d3:0d:99:e2:ed:6e:dd: a2:80:76:ba:b3:48:9e:b1:0d:f7:a1:f6:f3:52:d3: 92:d3:da:61:83:34:62:cb:c0:21:0a:25:aa:fd:91: 07:ff:a9:d3:24:fc:37:fa:26:1e:8d:12:e4:51:ec: 76:1d:38:2f:23:14:59:86:29:c8:65:51:9a:63:1e: 05:21:20:52:7e:9d:ce:b6:7b:1d:2c:6c:51:a8:af: 01:d3:c5:a8:38:e8:ed:bf:6a:4a:20:6b:39:4c:f1: e1:c0:30:a5:74:a8:1c:c6:39:da:e6:ca:d8:07:6e: c6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EE:1E:9E:80:D5:32:47:61:15:4C:3C:7E:AD:9D:51:F5:59:99:7C X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:2e:b6:63:2b:62:51:7a:58:fe:42:81:94:b6:ed:a7:11:03: a0:95:a7:cf:c7:10:18:e2:c7:8f:b0:a5:08:ea:98:7a:22:d8: c5:08:82:a3:11:a0:4d:5d:6d:2b:81:9c:aa:41:b5:7a:ca:00: 16:c2:88:98:2c:8e:b9:24:8d:17:7d:01:aa:47:4a:b3:e0:e4: 63:53:dd:cd:f1:e2:70:aa:5b:19:e7:eb:2a:2b:2c:6c:34:16: 55:b1:47:52:5e:e1:89:fa:44:e9:8c:1a:79:4d:01:60:bf:ca: 4e:72:0e:19:a4:1f:f1:5c:02:07:a5:dc:a4:5f:77:dc:40:88: 18:1f:4a:30:7d:69:a2:3a:2f:c3:2e:b7:2a:09:a2:33:08:2b: 93:8d:ef:13:7a:61:2a:c6:0d:9e:fc:22:8d:86:6e:e5:71:fc: 55:f5:d9:75:5a:c0:9f:dc:c3:e1:3d:8f:ff:20:98:a0:cd:d8: 1e:62:97:6d:7c:51:c8:81:b0:32:47:21:41:9e:ba:d3:45:c9: 97:49:23:ca:8f:a9:8e:45:2a:96:b8:cf:0e:96:10:d1:2f:d9: 89:e6:b7:85:eb:c9:32:79:3c:e7:c4:08:6a:b7:47:59:b4:2c: e7:47:f7:5d:12:66:fe:31:84:82:54:a3:ca:c5:30:e0:ba:47: 77:98:8c:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwNDI0MjAxMjA4WhcNMjUwNTAxMjAxMjA4WjAYMRYwFAYD VQQDEw02ODBhOWIxOC1lMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApco6A7iCWT5UeN1Kudyq/Beaaf6GG+jFHbPIcMA56BcmucPja70Wh32lj60V kgtOltt+A7FKzP0/WJTXpSG9aoVAswnaIYB3cA2dp8tFz9L1DGTVM10dnhlFT8Fa oqoDqT7LxT3e6tkDWSc8uuXV7Vs6cy+ayr1z9r7nvK0F7Jk3NeiXIoxqyp5gz8u8 g9MNmeLtbt2igHa6s0iesQ33ofbzUtOS09phgzRiy8AhCiWq/ZEH/6nTJPw3+iYe jRLkUex2HTgvIxRZhinIZVGaYx4FISBSfp3OtnsdLGxRqK8B08WoOOjtv2pKIGs5 TPHhwDCldKgcxjna5srYB27GjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDuHp6A 1TJHYRVMPH6tnVH1WZl8MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADLrZjK2JRelj+QoGUtu2nEQOglafPxxAY4sePsKUI6ph6ItjFCIKj EaBNXW0rgZyqQbV6ygAWwoiYLI65JI0XfQGqR0qz4ORjU93N8eJwqlsZ5+sqKyxs NBZVsUdSXuGJ+kTpjBp5TQFgv8pOcg4ZpB/xXAIHpdykX3fcQIgYH0owfWmiOi/D LrcqCaIzCCuTje8TemEqxg2e/CKNhm7lcfxV9dl1WsCf3MPhPY//IJigzdgeYpdt fFHIgbAyRyFBnrrTRcmXSSPKj6mORSqWuM8OlhDRL9mJ5reF68kyeTznxAhqt0dZ tCznR/ddEmb+MYSCVKPKxTDgukd3mIx+ -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:14 2025 by rpki-client