$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: 0juhJSvo0D3XnhozI90x397A0yH+6ubsHpLlTVeLDnM= Subject key identifier: 4B:B5:A2:BD:49:90:C2:B7:C5:47:38:22:AC:34:40:E0:5A:B1:A0:33 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 1984 Signing time: Sat 18 Oct 2025 17:47:24 +0000 Manifest this update: Sat 18 Oct 2025 17:47:23 +0000 Manifest next update: Sat 25 Oct 2025 17:47:23 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: UW3Kp3BiVYGd4ZjbGamKranyntTVhcUSaiQBMDhwbzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4436 (0x1154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Oct 18 17:47:23 2025 GMT Not After : Oct 25 17:47:23 2025 GMT Subject: CN=68f3d2ab-3bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:dc:fd:ff:2f:29:45:c5:54:91:3f:9e:8d:d4: 78:16:78:aa:6f:39:42:96:33:e1:49:e5:52:d4:13: 3d:9e:c0:ae:7e:3f:6f:1b:90:1e:31:47:af:be:96: e0:2b:95:9a:ea:6b:4b:64:04:60:4b:11:0e:ee:48: d9:c1:f0:0c:26:93:2b:d2:83:06:70:6d:42:47:32: 92:cf:0e:1f:1c:aa:fc:1b:13:8c:c3:c7:c0:49:35: 59:05:da:d8:03:0a:06:ec:40:a6:fc:1a:86:5b:16: 96:f8:f6:a7:ec:ef:81:4f:22:da:63:22:3e:ab:b4: c4:36:1c:8c:87:a3:2f:d1:1a:02:4a:15:0a:4b:5d: 51:8f:d8:9f:a5:ad:7d:23:36:3c:18:d5:ad:49:77: 71:56:57:51:6c:dd:24:53:67:bd:cb:75:c4:5c:87: f8:64:ba:3b:9d:3f:a8:79:48:02:b7:f9:82:ec:da: ec:17:4a:f7:6a:a8:94:ee:f4:6e:07:2c:e6:c5:32: 80:f9:fb:58:a8:92:d3:43:66:83:07:9b:54:f2:01: 43:37:b4:61:fa:50:8b:dd:1f:9b:ef:11:eb:47:11: 1a:f6:e2:60:ab:f5:f6:10:86:b6:92:a9:63:fc:3e: 0c:63:25:2c:0c:a0:0c:0c:d7:c6:2e:a2:74:c8:17: 58:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B5:A2:BD:49:90:C2:B7:C5:47:38:22:AC:34:40:E0:5A:B1:A0:33 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:0b:20:9a:5b:80:13:c1:a3:77:ea:1f:1c:fe:d0:d4:78:2f: e7:4e:7b:90:a2:0b:1e:b1:89:d0:bd:60:9f:a4:96:e1:79:cb: dc:98:e2:06:96:f6:d0:5d:37:42:2f:e0:49:77:e3:33:21:b7: a9:8b:bf:5e:39:1f:bf:e0:d9:26:d4:03:b6:fe:7c:0a:df:f6: 08:74:e5:7f:9a:e3:25:4e:12:93:61:0d:32:7e:72:e4:83:b7: cb:39:44:88:32:1a:94:9d:82:37:a4:be:22:46:1e:aa:28:8b: 25:bf:e5:0b:42:f4:44:5f:d8:bd:93:da:59:e3:da:da:f6:93: 2a:e6:f0:c8:f7:aa:9a:c6:1c:5d:18:95:95:7c:40:6b:e2:d7: c7:39:9f:74:17:dc:9a:5f:23:68:ac:30:59:08:c9:15:34:9c: ad:d8:d7:d8:e7:6e:4c:bd:d4:d5:9c:08:6b:29:5b:22:4a:c2: f8:9d:72:0d:cf:7b:b5:90:d1:74:46:40:09:6d:40:ff:44:17: 58:15:5e:4f:99:87:fc:3b:4c:07:b0:a0:c0:2d:e8:f2:fd:2c: 45:14:2e:31:a4:6c:53:0c:7d:06:a1:66:a1:6b:ea:2f:e5:c4: 69:ad:4e:1c:1e:73:68:14:a8:7b:61:c1:c5:9c:f8:cb:c3:99: 7f:bd:47:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUxMDE4MTc0NzIzWhcNMjUxMDI1MTc0NzIzWjAYMRYwFAYD VQQDEw02OGYzZDJhYi0zYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Nz9/y8pRcVUkT+ejdR4FniqbzlCljPhSeVS1BM9nsCufj9vG5AeMUevvpbg K5Wa6mtLZARgSxEO7kjZwfAMJpMr0oMGcG1CRzKSzw4fHKr8GxOMw8fASTVZBdrY AwoG7ECm/BqGWxaW+Pan7O+BTyLaYyI+q7TENhyMh6Mv0RoCShUKS11Rj9ifpa19 IzY8GNWtSXdxVldRbN0kU2e9y3XEXIf4ZLo7nT+oeUgCt/mC7NrsF0r3aqiU7vRu ByzmxTKA+ftYqJLTQ2aDB5tU8gFDN7Rh+lCL3R+b7xHrRxEa9uJgq/X2EIa2kqlj /D4MYyUsDKAMDNfGLqJ0yBdYpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu1or1J kMK3xUc4Iqw0QOBasaAzMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvCyCaW4ATwaN36h8c/tDUeC/nTnuQogsesYnQvWCfpJbhecvcmOIG lvbQXTdCL+BJd+MzIbepi79eOR+/4Nkm1AO2/nwK3/YIdOV/muMlThKTYQ0yfnLk g7fLOUSIMhqUnYI3pL4iRh6qKIslv+ULQvREX9i9k9pZ49ra9pMq5vDI96qaxhxd GJWVfEBr4tfHOZ90F9yaXyNorDBZCMkVNJyt2NfY525MvdTVnAhrKVsiSsL4nXIN z3u1kNF0RkAJbUD/RBdYFV5PmYf8O0wHsKDALejy/SxFFC4xpGxTDH0GoWaha+ov 5cRprU4cHnNoFKh7YcHFnPjLw5l/vUeg -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:47 2025 by rpki-client