$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: tObh88NLjlu0BFlPfN6h3ZSuKm3AFY1hWPEj/u0q38E= Subject key identifier: 6D:5C:A5:74:FB:3F:56:EB:32:6B:C4:B3:E5:FE:4E:63:E4:0F:F5:6C Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 0299 Signing time: Fri 19 Sep 2025 02:05:13 +0000 Manifest this update: Fri 19 Sep 2025 02:05:12 +0000 Manifest next update: Fri 26 Sep 2025 02:05:12 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: ynulo2uphedkfjE0/lb4Jq8+aZDDzRgg3U2skisfkNU=) 2: 9A59F7D670E411F0A8BFEE2AC4F9AE02.roa (hash: Pm7xX1vwf0DPPYIok3OlHUKVD8r7hcmVaxi8mGdbOm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Sep 19 02:05:12 2025 GMT Not After : Sep 26 02:05:12 2025 GMT Subject: CN=68ccba58-0e68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:d9:f9:42:78:3a:70:39:0b:1d:9b:16:3d: 4e:14:31:14:0a:a5:61:30:8a:21:5e:45:df:69:39: c5:1f:de:9b:ce:26:43:4a:f0:b7:6a:24:0f:4f:79: c8:5a:7e:78:e9:33:36:1d:9a:0a:3a:0d:ab:2b:ab: 53:92:70:10:f8:33:9d:8a:29:d5:40:8c:77:7e:87: f5:59:c7:91:22:75:0e:7b:59:a6:fd:73:5c:61:3f: fe:be:60:8c:39:83:56:ad:ea:88:dd:be:4b:17:5d: 74:68:a5:ad:57:90:16:79:33:45:62:a7:14:c5:37: 5d:62:96:53:ed:a4:ba:72:7e:52:92:4f:64:8e:e2: 50:0b:ac:a8:42:34:93:7c:a7:6d:ce:be:70:bd:9d: eb:52:d8:a4:a3:74:83:d5:79:02:02:c5:33:8d:6c: 97:95:5c:de:92:89:e6:a7:65:59:96:2a:f3:56:3e: 8b:a3:41:af:d4:cb:44:93:86:aa:ec:a5:ff:df:c2: a7:e9:ef:9a:9a:40:e1:49:47:62:3d:61:0d:0a:1b: d0:4a:1a:b4:52:c4:fe:b3:3f:e4:1d:53:60:c4:a2: 4a:be:fd:67:99:4f:d1:33:2c:03:7b:1f:31:d6:65: 1c:1f:ca:d3:a5:81:c9:34:7e:86:23:6d:94:28:61: 31:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5C:A5:74:FB:3F:56:EB:32:6B:C4:B3:E5:FE:4E:63:E4:0F:F5:6C X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:21:24:dd:fa:31:11:89:c4:52:9e:a5:0b:34:c1:3b:d8:20: 51:98:24:1e:67:e1:31:d6:98:09:5e:0d:dd:81:9b:75:f5:5a: 09:2a:68:b7:41:43:13:72:23:dc:c3:7b:9d:14:c0:e7:ba:3a: 36:d7:33:d4:e1:94:6f:ff:69:59:f9:7a:47:b6:fa:bf:dd:c2: 4a:97:51:fd:06:d6:a7:87:57:29:03:d0:2b:74:1b:eb:77:49: e2:98:5a:10:db:49:2c:e2:02:cb:4e:7a:9d:58:4a:6c:02:42: e8:82:0a:ab:c3:16:aa:a0:d6:ec:1a:7c:96:82:55:17:c0:05: cd:86:aa:ac:12:5a:cc:e6:e3:17:33:f1:d0:9a:c3:14:6d:3a: dc:36:2c:2c:d4:2a:12:eb:30:93:27:d8:41:7e:20:0c:e6:61: e0:dd:51:a6:39:87:77:28:e0:b2:ca:c8:52:33:79:79:92:bf: 95:ab:61:a5:02:11:07:70:c8:1c:67:50:05:98:3b:56:02:f8: 4f:cd:5f:fc:71:8f:3b:e3:38:33:af:a6:c6:02:f7:8c:73:99: 1f:4c:2d:b8:7f:01:1b:9f:1e:c1:54:aa:06:a3:35:f6:68:cb: b9:27:6d:f2:2d:4d:ce:5f:be:bf:60:72:4e:a5:1a:3e:e7:37: fe:75:30:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwOTE5MDIwNTEyWhcNMjUwOTI2MDIwNTEyWjAYMRYwFAYD VQQDEw02OGNjYmE1OC0wZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6LZ+UJ4OnA5Cx2bFj1OFDEUCqVhMIohXkXfaTnFH96bziZDSvC3aiQPT3nI Wn546TM2HZoKOg2rK6tTknAQ+DOdiinVQIx3fof1WceRInUOe1mm/XNcYT/+vmCM OYNWreqI3b5LF110aKWtV5AWeTNFYqcUxTddYpZT7aS6cn5Skk9kjuJQC6yoQjST fKdtzr5wvZ3rUtiko3SD1XkCAsUzjWyXlVzekonmp2VZlirzVj6Lo0Gv1MtEk4aq 7KX/38Kn6e+amkDhSUdiPWENChvQShq0UsT+sz/kHVNgxKJKvv1nmU/RMywDex8x 1mUcH8rTpYHJNH6GI22UKGExnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1cpXT7 P1brMmvEs+X+TmPkD/VsMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbISTd+jERicRSnqULNME72CBRmCQeZ+Ex1pgJXg3dgZt19VoJKmi3 QUMTciPcw3udFMDnujo21zPU4ZRv/2lZ+XpHtvq/3cJKl1H9Btanh1cpA9ArdBvr d0nimFoQ20ks4gLLTnqdWEpsAkLoggqrwxaqoNbsGnyWglUXwAXNhqqsElrM5uMX M/HQmsMUbTrcNiws1CoS6zCTJ9hBfiAM5mHg3VGmOYd3KOCyyshSM3l5kr+Vq2Gl AhEHcMgcZ1AFmDtWAvhPzV/8cY874zgzr6bGAveMc5kfTC24fwEbnx7BVKoGozX2 aMu5J23yLU3OX76/YHJOpRo+5zf+dTAq -----END CERTIFICATE-----Generated at Fri Sep 19 05:30:20 2025 by rpki-client