$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft File: hitzuc41BLC6JB0U_awOxLTkrcI.mft (raw, json) Hash identifier: EHcnqV+Ykgk3jVMR4eLsK1Zu5FaNwzEKK6Req08dkbI= Subject key identifier: 59:E8:BE:F0:D1:4B:4E:1C:CC:82:83:16:06:EC:A9:10:09:F7:D5:BC Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 099B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft Manifest number: 0988 Signing time: Tue 04 Nov 2025 20:11:38 +0000 Manifest this update: Tue 04 Nov 2025 20:11:38 +0000 Manifest next update: Tue 11 Nov 2025 20:11:38 +0000 Files and hashes: 1: hitzuc41BLC6JB0U_awOxLTkrcI.crl (hash: OBPx0Yxda0xOfy13X0g5iwMnQhMfPhjAyvGt9SShCiQ=) 2: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (hash: 6YMCbYV0HjEFxQW7Rqr8k/qQPvulelScO8qALM4FUVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:11:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2459 (0x99b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Nov 4 20:11:38 2025 GMT Not After : Nov 11 20:11:38 2025 GMT Subject: CN=690a5dfa-a9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:20:18:23:28:36:2a:b2:21:32:5a:cd:fa: f1:57:ea:eb:0d:f0:37:cb:a1:40:21:78:1f:18:f4: 7c:4c:25:bf:9b:73:15:4f:0a:85:09:3b:58:5f:79: 6e:9e:39:87:a6:2c:f5:70:db:66:78:18:12:7e:06: e0:41:be:04:5d:17:56:58:e0:9e:cb:05:43:b4:01: a0:5c:53:a7:06:51:1f:0a:16:bc:7f:10:14:59:9a: 3e:59:2b:53:cf:86:77:b1:dc:b1:aa:49:61:75:d8: 7d:20:b4:83:0e:b4:e3:09:52:b5:7d:7e:7b:01:98: e7:d0:4a:75:75:e8:c0:b2:02:99:c9:1d:03:63:8d: 73:13:a8:58:fd:27:58:8c:23:95:7c:fa:42:da:ea: d2:ab:42:10:d3:33:db:bf:a5:de:c0:3d:0a:76:02: 62:cb:10:cb:6c:7c:a2:65:3d:84:c2:3b:6f:db:10: 62:3c:6a:a8:8d:9b:2a:37:2c:d3:c2:9a:25:0a:4a: a8:a0:d3:4e:2b:8b:e7:cd:a5:eb:59:6b:32:b8:18: 76:96:98:e4:26:ae:f9:71:e5:e9:29:b1:c6:6b:fa: ce:2a:7d:ec:20:79:a8:ab:f1:77:04:0c:b2:fd:a5: b5:56:17:c8:a0:1c:a7:14:b3:64:d3:41:ca:af:0e: 83:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E8:BE:F0:D1:4B:4E:1C:CC:82:83:16:06:EC:A9:10:09:F7:D5:BC X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:54:78:91:2c:26:85:b7:6e:11:27:2b:c7:ef:cb:6e:d4:b0: af:29:09:a3:c3:b7:d4:08:b6:42:4a:95:c9:9c:c6:3a:e1:d7: af:eb:c7:69:21:f3:31:38:4c:ae:b2:c4:aa:7e:b5:ae:bf:81: af:09:6b:36:e3:92:df:3a:ac:bd:1f:c3:a8:ca:08:a0:ca:90: 82:d9:8e:6f:22:b2:b5:b2:0d:a4:cc:6e:31:1f:91:37:7c:b5: d4:19:b1:4c:64:f4:96:66:79:ee:13:cc:84:4a:0b:98:fb:4b: ad:cd:b3:1b:19:fe:41:7a:11:e3:26:d0:14:4b:bd:b8:7c:9c: e8:ae:13:11:cb:14:ae:9d:ed:6a:e3:61:88:ef:01:f1:40:f7: 47:f6:f2:68:a0:c8:22:51:c3:ec:18:8a:7c:97:b3:24:38:d3: 21:c5:4c:0e:7f:62:84:b5:81:86:6b:ff:68:d5:33:58:9f:9a: 7f:d6:64:86:e0:d4:9b:b5:ca:87:81:6d:62:09:09:ab:b8:7b: 0d:98:c1:ef:84:4c:f7:cc:4c:06:a3:a4:19:86:2f:9f:4e:12: a5:ca:66:76:15:92:53:01:f5:b5:b1:b8:5b:9e:58:91:88:47: 66:44:71:ec:e9:6c:77:e0:89:ea:12:63:66:f2:cc:47:9c:6c: f1:8d:0a:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUxMTA0MjAxMTM4WhcNMjUxMTExMjAxMTM4WjAYMRYwFAYD VQQDEw02OTBhNWRmYS1hOWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj4gGCMoNiqyITJazfrxV+rrDfA3y6FAIXgfGPR8TCW/m3MVTwqFCTtYX3lu njmHpiz1cNtmeBgSfgbgQb4EXRdWWOCeywVDtAGgXFOnBlEfCha8fxAUWZo+WStT z4Z3sdyxqklhddh9ILSDDrTjCVK1fX57AZjn0Ep1dejAsgKZyR0DY41zE6hY/SdY jCOVfPpC2urSq0IQ0zPbv6XewD0KdgJiyxDLbHyiZT2Ewjtv2xBiPGqojZsqNyzT wpolCkqooNNOK4vnzaXrWWsyuBh2lpjkJq75ceXpKbHGa/rOKn3sIHmoq/F3BAyy /aW1VhfIoBynFLNk00HKrw6DmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnovvDR S04czIKDFgbsqRAJ99W8MB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0NFQS80MDZFRjE3OEEwQzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJM QzZKQjBVX2F3T3hMVGtyY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9VHiRLCaFt24RJyvH78tu1LCvKQmjw7fUCLZCSpXJnMY64dev68dp IfMxOEyussSqfrWuv4GvCWs245LfOqy9H8OoygigypCC2Y5vIrK1sg2kzG4xH5E3 fLXUGbFMZPSWZnnuE8yESguY+0utzbMbGf5BehHjJtAUS724fJzorhMRyxSune1q 42GI7wHxQPdH9vJooMgiUcPsGIp8l7MkONMhxUwOf2KEtYGGa/9o1TNYn5p/1mSG 4NSbtcqHgW1iCQmruHsNmMHvhEz3zEwGo6QZhi+fThKlymZ2FZJTAfW1sbhbnliR iEdmRHHs6Wx34InqEmNm8sxHnGzxjQr/ -----END CERTIFICATE-----Generated at Wed Nov 5 13:07:14 2025 by rpki-client