$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: rIjuEgUWmvZUpfVE++MftfNxTKJYKxUaUt0jH8zpBmk= Subject key identifier: 41:78:BF:E5:DC:55:15:20:AE:B7:72:E5:53:BD:FA:C1:9D:42:58:92 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 18E0 Signing time: Wed 14 May 2025 17:24:53 +0000 Manifest this update: Wed 14 May 2025 17:24:53 +0000 Manifest next update: Wed 21 May 2025 17:24:53 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: KxUAtsKzUF2B4x5rfYBE+N+K3mIDX5vuWKYIJzN4ark=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4355 (0x1103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: May 14 17:24:53 2025 GMT Not After : May 21 17:24:53 2025 GMT Subject: CN=6824d1e5-7d27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:0b:01:10:ad:f0:cd:81:b0:c2:7b:ae:b2: e4:8d:65:3e:53:0c:cc:d9:46:3b:1b:1a:a3:aa:e9: 89:c4:1f:ec:71:e3:9a:9f:cd:4a:03:f8:76:de:64: ad:78:78:17:70:46:a4:f8:da:83:ea:7c:44:d8:3e: d8:5b:fb:6a:99:c4:4a:07:b6:02:48:b8:33:92:30: 58:4a:8c:91:6e:10:63:d2:d7:69:01:69:19:52:b0: 19:4c:fe:b9:59:31:4c:91:1f:31:db:1e:40:c6:61: 1d:ee:5a:22:01:7b:72:6e:0c:99:b3:c6:dd:69:87: 5a:b3:84:75:28:2e:74:fb:b1:0b:b4:ef:23:14:bd: 60:c0:4f:b3:35:60:de:70:fb:6a:2c:3c:a6:5b:d9: 8c:73:da:2d:01:da:5e:18:2c:69:6e:c6:a2:f6:b3: 77:4e:93:b7:bf:4d:c2:20:fd:70:d0:2a:41:e4:1a: e8:de:36:5f:8c:ca:26:a5:95:d3:6d:57:87:07:f3: 37:56:b0:b9:0e:2d:87:50:38:27:85:06:7b:b3:bb: fa:bf:d2:6a:56:24:09:60:3e:45:5d:3a:f2:18:d0: f5:0a:a1:1a:ed:eb:1d:18:b5:e3:93:01:ff:60:d4: c3:5a:1e:ba:eb:af:d8:0d:19:2e:f5:4f:2e:cc:b1: b3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:78:BF:E5:DC:55:15:20:AE:B7:72:E5:53:BD:FA:C1:9D:42:58:92 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:56:b9:7a:e9:ec:2d:8d:65:df:b7:17:17:a4:63:00:b1:a3: 87:dc:4a:97:47:83:14:5c:d0:e4:4a:0d:ba:7e:24:de:39:79: c7:df:66:6f:d4:a9:6f:fa:8e:f4:82:2b:41:c8:d2:20:17:95: d1:0f:8a:50:27:52:ca:78:96:ea:ff:2d:54:85:9e:11:79:a5: cb:2f:9f:4c:65:d3:fd:cf:6e:83:bb:81:0b:e2:13:96:06:23: 2b:b2:73:b3:78:e6:d2:e1:21:34:36:b6:9b:bf:25:0e:c2:aa: f0:2a:00:0c:89:34:6b:3e:e9:cd:79:94:b4:cc:61:af:86:a9: 10:cd:0c:0f:ee:de:2c:74:9b:d2:ba:8e:5a:21:ae:6f:8a:48: e6:37:6d:00:db:48:21:e7:5a:68:77:f5:26:07:68:51:43:a2: 35:7e:c9:82:c0:f9:cd:31:d5:71:7e:6f:d0:f1:c2:4f:9e:78: 92:2b:e3:f7:85:cb:61:4e:d6:c9:8b:30:65:b8:dc:ad:90:87: 7c:35:26:df:13:d4:34:a3:4d:5c:b6:19:8e:32:bd:35:68:35: 89:db:5b:18:ff:e1:cf:fc:a4:b9:b2:42:0b:03:83:fc:0c:2b: 1b:1b:37:f2:12:cf:62:06:b6:d8:ec:49:39:dd:f2:b4:28:ea: 05:4e:fe:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUwNTE0MTcyNDUzWhcNMjUwNTIxMTcyNDUzWjAYMRYwFAYD VQQDEw02ODI0ZDFlNS03ZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhYLARCt8M2BsMJ7rrLkjWU+UwzM2UY7GxqjqumJxB/sceOan81KA/h23mSt eHgXcEak+NqD6nxE2D7YW/tqmcRKB7YCSLgzkjBYSoyRbhBj0tdpAWkZUrAZTP65 WTFMkR8x2x5AxmEd7loiAXtybgyZs8bdaYdas4R1KC50+7ELtO8jFL1gwE+zNWDe cPtqLDymW9mMc9otAdpeGCxpbsai9rN3TpO3v03CIP1w0CpB5Bro3jZfjMompZXT bVeHB/M3VrC5Di2HUDgnhQZ7s7v6v9JqViQJYD5FXTryGND1CqEa7esdGLXjkwH/ YNTDWh6666/YDRku9U8uzLGz8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEF4v+Xc VRUgrrdy5VO9+sGdQliSMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdVrl66ewtjWXftxcXpGMAsaOH3EqXR4MUXNDkSg26fiTeOXnH32Zv 1Klv+o70gitByNIgF5XRD4pQJ1LKeJbq/y1UhZ4ReaXLL59MZdP9z26Du4EL4hOW BiMrsnOzeObS4SE0NrabvyUOwqrwKgAMiTRrPunNeZS0zGGvhqkQzQwP7t4sdJvS uo5aIa5vikjmN20A20gh51pod/UmB2hRQ6I1fsmCwPnNMdVxfm/Q8cJPnniSK+P3 hcthTtbJizBluNytkId8NSbfE9Q0o01cthmOMr01aDWJ21sY/+HP/KS5skILA4P8 DCsbGzfyEs9iBrbY7Ek53fK0KOoFTv6i -----END CERTIFICATE-----Generated at Fri May 16 09:49:36 2025 by rpki-client