$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: kfd0QWb6RsPQjjxADE906o1EZi8nPcDWkjFtUA9xMWE= Subject key identifier: 30:A8:E7:72:B7:D0:7B:9E:8B:F2:B4:E9:E8:AC:78:30:B0:C8:86:74 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 115D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 1996 Signing time: Tue 04 Nov 2025 17:19:58 +0000 Manifest this update: Tue 04 Nov 2025 17:19:58 +0000 Manifest next update: Tue 11 Nov 2025 17:19:58 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: BHHzqiyrZbMkBdulKv1W6cf6dQJliP1dmjzIClc4EvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:19:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4445 (0x115d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Nov 4 17:19:58 2025 GMT Not After : Nov 11 17:19:58 2025 GMT Subject: CN=690a35be-57d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b5:19:73:85:19:09:06:f7:03:0f:16:c6:23: 1c:63:6a:2d:47:b6:6f:f6:ba:fc:80:13:8d:47:e3: 73:f6:9b:73:95:e4:f9:b7:55:48:21:e8:12:7c:ce: 27:38:8c:33:d4:59:9e:67:24:ca:5d:e6:3f:db:4c: 23:7d:6b:3c:9a:e0:b2:fb:5a:5a:08:9f:4c:cc:4c: f7:91:87:d1:c9:78:bc:3b:0b:11:d0:56:61:32:73: 63:71:68:8c:da:8f:24:5d:2c:0c:1f:03:eb:1d:46: 95:1a:30:78:12:f7:a1:2a:65:62:c3:0d:31:53:ea: a6:bc:1f:64:2d:43:21:1f:16:01:a3:1d:67:57:11: 1b:7a:c3:7d:ab:08:ec:30:4e:93:1d:1b:3b:e5:d1: 53:00:d1:4a:8b:f5:12:d0:c7:d0:9c:36:93:ae:5e: bd:aa:4e:f3:64:98:ec:24:a1:59:45:ef:08:98:21: 30:ab:36:11:49:cc:a2:1a:b2:b8:c2:ff:78:84:84: b3:28:ad:f5:ab:75:9e:67:7b:68:1a:e6:12:9f:f0: a2:49:69:e9:dc:0c:e9:ef:91:0f:41:a8:58:dc:45: 9a:00:33:c8:3e:a5:2b:57:2d:03:c5:49:14:72:b3: 94:b0:01:f9:d1:73:5e:93:77:cd:f0:8f:03:10:55: 28:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A8:E7:72:B7:D0:7B:9E:8B:F2:B4:E9:E8:AC:78:30:B0:C8:86:74 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:69:5f:d7:d3:be:ee:32:9b:fc:b5:27:3d:af:92:d3:3c:09: 26:14:ef:7c:f3:47:f5:bc:13:53:99:e1:8d:fe:dc:cc:5d:d3: 74:ee:fb:5a:bc:3b:a5:94:8c:91:85:b4:29:e1:d2:da:a5:81: df:70:36:c6:dd:a8:41:d3:fa:27:18:63:68:6d:7d:94:2d:f8: 8d:92:43:4b:5a:87:32:2a:ff:de:43:94:66:e7:3a:ca:71:e5: 34:41:01:50:11:e6:19:f4:d6:2e:6c:5b:ae:c4:62:4f:c8:4f: dc:f0:f9:b6:4a:1d:c2:95:51:3f:01:d6:1b:6c:42:f4:4b:55: a1:4b:69:49:65:7a:27:fe:6e:ce:a3:97:8c:f7:18:4c:a2:ba: 50:29:51:3e:9e:6e:1e:e3:e0:33:5b:60:1f:3b:dd:1c:ed:14: 09:d2:69:97:f4:a4:d7:f2:ea:5c:b4:cd:c1:ca:15:31:61:10: 23:ea:da:15:a3:63:72:38:d3:8a:81:fd:90:3e:f4:2c:7a:a9: 5b:4f:39:30:e3:44:a2:c8:0b:46:00:38:48:d5:d9:2e:8a:3e: 0e:62:35:11:84:31:c1:4f:84:80:ba:8e:af:8a:46:a8:0e:ab: 56:c5:88:7b:ea:b4:93:25:e0:b5:64:ed:52:59:81:85:d4:30: 92:c6:f4:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUxMTA0MTcxOTU4WhcNMjUxMTExMTcxOTU4WjAYMRYwFAYD VQQDEw02OTBhMzViZS01N2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLUZc4UZCQb3Aw8WxiMcY2otR7Zv9rr8gBONR+Nz9ptzleT5t1VIIegSfM4n OIwz1FmeZyTKXeY/20wjfWs8muCy+1paCJ9MzEz3kYfRyXi8OwsR0FZhMnNjcWiM 2o8kXSwMHwPrHUaVGjB4EvehKmViww0xU+qmvB9kLUMhHxYBox1nVxEbesN9qwjs ME6THRs75dFTANFKi/US0MfQnDaTrl69qk7zZJjsJKFZRe8ImCEwqzYRScyiGrK4 wv94hISzKK31q3WeZ3toGuYSn/CiSWnp3Azp75EPQahY3EWaADPIPqUrVy0DxUkU crOUsAH50XNek3fN8I8DEFUoTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCo53K3 0Huei/K06eiseDCwyIZ0MB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/aV/X077uMpv8tSc9r5LTPAkmFO9880f1vBNTmeGN/tzMXdN07vta vDullIyRhbQp4dLapYHfcDbG3ahB0/onGGNobX2ULfiNkkNLWocyKv/eQ5Rm5zrK ceU0QQFQEeYZ9NYubFuuxGJPyE/c8Pm2Sh3ClVE/AdYbbEL0S1WhS2lJZXon/m7O o5eM9xhMorpQKVE+nm4e4+AzW2AfO90c7RQJ0mmX9KTX8upctM3ByhUxYRAj6toV o2NyONOKgf2QPvQseqlbTzkw40SiyAtGADhI1dkuij4OYjURhDHBT4SAuo6vikao DqtWxYh76rSTJeC1ZO1SWYGF1DCSxvQv -----END CERTIFICATE-----Generated at Wed Nov 5 19:29:46 2025 by rpki-client