$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: w2Ujy7zTFXQ0BL9NH8DEhPb/Lnb5jUzOHYPEm/F5JIc= Subject key identifier: E3:8E:AE:F6:13:9F:CE:E4:ED:6A:16:3A:74:3F:57:26:C6:43:2B:2B Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 1948 Signing time: Wed 20 Aug 2025 17:21:06 +0000 Manifest this update: Wed 20 Aug 2025 17:21:06 +0000 Manifest next update: Wed 27 Aug 2025 17:21:06 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: ztxKtNyGbMLqJKkemYWoLaiN87gozw+wxB+DKpOokz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 17:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4406 (0x1136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Aug 20 17:21:06 2025 GMT Not After : Aug 27 17:21:06 2025 GMT Subject: CN=68a60402-58e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8c:e0:5a:18:71:17:22:47:35:60:39:10:8a: 0b:23:73:a7:9c:17:d9:8a:e2:4b:1f:c0:4c:06:4c: 9c:db:c2:f8:c7:c1:79:c2:98:69:f4:4b:de:fa:38: 7b:e8:6f:02:b1:76:fb:49:81:8d:00:ba:b3:1d:8e: 5f:fb:8c:5a:62:fc:72:81:0a:0f:36:7e:44:fb:a1: ed:ab:fe:7d:3a:d6:8e:81:78:30:4f:7e:a9:3a:b3: 79:d3:ea:48:10:01:aa:16:1e:11:f2:4d:84:ef:b5: df:66:f2:ba:8b:a9:5b:04:7c:b0:95:21:d5:5a:57: dc:a6:86:c3:a7:73:65:c5:24:c2:bd:1e:17:be:2c: bf:cc:49:77:12:7a:85:5a:26:7d:1e:7e:e1:70:e9: 23:b8:72:fb:43:9c:b7:d7:83:ac:af:e0:75:90:8b: c3:b0:d1:24:8c:9d:52:8d:7c:09:ff:af:44:ad:67: d6:39:fe:86:38:be:c5:16:65:65:22:50:b2:ae:b5: 4e:34:18:9c:a6:4e:1c:a3:ee:2f:2b:90:f3:53:96: 1b:42:1e:b6:3e:26:6a:9a:5a:a5:61:76:1b:e9:74: 94:9c:cf:e7:35:bd:3e:d3:03:39:14:5e:62:8d:51: 91:61:0b:6f:83:e1:e0:a1:27:37:77:96:91:c2:82: d6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8E:AE:F6:13:9F:CE:E4:ED:6A:16:3A:74:3F:57:26:C6:43:2B:2B X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:be:dc:88:c4:b1:fd:8c:37:1e:a3:7f:a1:a8:ad:bc:03:ae: 1d:64:55:f8:22:6a:6e:31:b5:34:32:3e:65:56:18:4f:51:59: df:59:92:82:33:e0:c5:6f:58:cc:77:f2:d8:77:6e:13:84:90: 9a:51:46:d0:a2:f8:27:3a:99:8e:be:27:d8:a5:57:76:d7:78: 54:77:a8:9e:4d:9e:14:05:67:c6:d0:ef:fe:ff:69:0d:f7:6f: 30:5f:e2:7c:4b:6c:11:59:4f:4c:60:a1:dc:18:59:06:ed:e6: fc:5a:ca:40:d5:a1:1e:ad:8a:4d:ae:83:38:5c:36:ca:f7:b7: cf:92:72:ed:10:bd:92:34:ce:20:b1:4c:fa:0c:c2:ac:9b:72: 4f:f7:cf:61:7f:56:79:18:01:69:0d:fe:f9:a3:a6:bf:8f:de: fb:eb:d1:ea:51:bd:d5:d0:7a:23:fe:d0:f8:c6:52:d6:02:3a: 25:f7:4e:74:1f:fd:47:1e:36:24:c8:7a:40:8a:c6:0a:ab:01: f9:dc:1a:cc:60:51:56:7e:e3:71:bf:b3:be:4c:24:6e:d0:ff: 2b:96:c8:4d:ce:ac:cf:c1:ef:5e:79:44:e1:ee:0f:f4:87:60: ed:ea:e6:af:f8:28:e4:71:96:0e:aa:d8:fb:dc:ba:30:47:96: 7d:bd:28:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUwODIwMTcyMTA2WhcNMjUwODI3MTcyMTA2WjAYMRYwFAYD VQQDEw02OGE2MDQwMi01OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34zgWhhxFyJHNWA5EIoLI3OnnBfZiuJLH8BMBkyc28L4x8F5wphp9Eve+jh7 6G8CsXb7SYGNALqzHY5f+4xaYvxygQoPNn5E+6Htq/59OtaOgXgwT36pOrN50+pI EAGqFh4R8k2E77XfZvK6i6lbBHywlSHVWlfcpobDp3NlxSTCvR4Xviy/zEl3EnqF WiZ9Hn7hcOkjuHL7Q5y314Osr+B1kIvDsNEkjJ1SjXwJ/69ErWfWOf6GOL7FFmVl IlCyrrVONBicpk4co+4vK5DzU5YbQh62PiZqmlqlYXYb6XSUnM/nNb0+0wM5FF5i jVGRYQtvg+HgoSc3d5aRwoLWJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOOrvYT n87k7WoWOnQ/VybGQysrMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAavtyIxLH9jDceo3+hqK28A64dZFX4ImpuMbU0Mj5lVhhPUVnfWZKC M+DFb1jMd/LYd24ThJCaUUbQovgnOpmOvifYpVd213hUd6ieTZ4UBWfG0O/+/2kN 928wX+J8S2wRWU9MYKHcGFkG7eb8WspA1aEerYpNroM4XDbK97fPknLtEL2SNM4g sUz6DMKsm3JP989hf1Z5GAFpDf75o6a/j97769HqUb3V0Hoj/tD4xlLWAjol9050 H/1HHjYkyHpAisYKqwH53BrMYFFWfuNxv7O+TCRu0P8rlshNzqzPwe9eeUTh7g/0 h2Dt6uav+CjkcZYOqtj73LowR5Z9vSjm -----END CERTIFICATE-----Generated at Fri Aug 22 16:22:28 2025 by rpki-client