$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: HacK7L1XgtY9XyuIJ0qqDYeY4hQlQTRzk6TP+oxxR7w= Subject key identifier: 83:ED:B9:B6:65:98:7D:ED:F7:D2:8C:DC:3C:B2:4B:9A:C8:5C:DA:E3 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 194A Signing time: Fri 22 Aug 2025 17:23:28 +0000 Manifest this update: Fri 22 Aug 2025 17:23:28 +0000 Manifest next update: Fri 29 Aug 2025 17:23:28 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: OXTfUIk0KHfvlaD2Mu3DlRnnS1o2p3aY9sExrEPXR3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4407 (0x1137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Aug 22 17:23:28 2025 GMT Not After : Aug 29 17:23:28 2025 GMT Subject: CN=68a8a790-1451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f7:d0:32:41:10:5c:59:c0:f7:31:c6:c9:58: 2d:a4:28:da:52:79:e3:eb:59:7c:d8:f7:5c:55:3d: 3c:dd:eb:a9:07:4d:91:ba:b9:93:f0:81:de:e6:60: 3b:b4:28:cf:e9:37:67:f2:a6:9d:63:67:43:ac:25: 01:f0:87:29:7b:9b:bc:d5:dd:f6:e6:43:d8:04:a3: 04:3f:42:fb:c8:50:50:72:70:de:af:a0:b4:9b:1b: a9:5f:a2:ec:97:9a:13:1b:4d:c8:3c:0b:05:43:24: c0:62:0c:27:45:61:1c:86:8d:1a:b4:0f:34:e2:d7: 6b:52:37:04:db:86:9b:1e:e7:f3:34:a0:2d:af:62: 3a:67:27:d8:48:ba:2b:e3:52:bf:fb:94:98:8c:eb: 94:0e:0d:50:cd:96:05:5e:13:dc:8d:f4:08:64:bf: 5a:46:4b:42:28:36:4d:ed:a6:6e:3d:96:ab:59:a6: b6:07:05:98:de:9f:18:09:5e:05:d2:38:ca:2a:e4: 23:51:0c:2b:43:4d:8f:a3:ee:32:b3:69:8e:11:4f: bd:0b:77:3a:ac:2f:31:27:6f:04:62:4b:54:97:94: af:8b:96:77:d9:92:78:b0:20:0b:bc:02:19:1a:bc: 39:3b:d5:34:3a:bf:fb:58:c7:68:83:88:1a:8e:ce: 54:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:ED:B9:B6:65:98:7D:ED:F7:D2:8C:DC:3C:B2:4B:9A:C8:5C:DA:E3 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:fd:12:f4:07:9c:68:72:fc:6c:b6:c6:bf:14:de:c7:0d:13: c5:71:cf:12:0a:b0:91:e3:c5:81:e4:4b:22:1f:dd:61:a4:c1: 5e:e1:f3:5d:c8:57:11:55:75:6f:eb:94:12:b1:f5:7a:c2:e7: 21:d1:10:ef:63:6a:97:d8:8f:b2:27:a2:4b:ce:aa:f5:f5:d8: bf:b7:22:53:f2:c6:b5:fe:a8:6b:ea:c0:54:dd:bf:4e:b8:01: 79:07:c3:d2:97:f0:2a:fb:42:33:e1:3f:e9:df:c4:8a:3b:1c: 35:82:1b:25:fe:a7:e0:05:d3:4a:16:13:15:0a:d5:73:45:c8: 61:e8:02:8b:ee:98:f4:fc:dc:b8:cf:f9:1b:43:65:00:f0:02: f2:a6:77:f9:e0:af:c2:f1:0e:62:11:66:5c:ec:c9:fa:0d:01: e4:c7:4f:2f:24:62:d3:41:f8:3f:0b:cf:85:72:55:aa:11:7a: ab:05:f8:67:7e:18:85:e7:e1:2d:20:33:c4:5d:66:80:9d:a9: ea:94:7e:76:23:77:f0:56:54:00:5c:a0:cc:b2:b9:ea:9c:51: 49:ae:a2:70:ef:d7:ac:95:b7:ef:f3:36:2d:a2:17:84:1d:b9: fa:37:8e:9a:0f:c1:4c:31:b5:cd:aa:20:29:be:18:88:d6:22: e0:28:b2:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUwODIyMTcyMzI4WhcNMjUwODI5MTcyMzI4WjAYMRYwFAYD VQQDEw02OGE4YTc5MC0xNDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPfQMkEQXFnA9zHGyVgtpCjaUnnj61l82PdcVT083eupB02RurmT8IHe5mA7 tCjP6Tdn8qadY2dDrCUB8Icpe5u81d325kPYBKMEP0L7yFBQcnDer6C0mxupX6Ls l5oTG03IPAsFQyTAYgwnRWEcho0atA804tdrUjcE24abHufzNKAtr2I6ZyfYSLor 41K/+5SYjOuUDg1QzZYFXhPcjfQIZL9aRktCKDZN7aZuPZarWaa2BwWY3p8YCV4F 0jjKKuQjUQwrQ02Po+4ys2mOEU+9C3c6rC8xJ28EYktUl5Svi5Z32ZJ4sCALvAIZ Grw5O9U0Or/7WMdog4gajs5UEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPtubZl mH3t99KM3DyyS5rIXNrjMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE/RL0B5xocvxstsa/FN7HDRPFcc8SCrCR48WB5EsiH91hpMFe4fNd yFcRVXVv65QSsfV6wuch0RDvY2qX2I+yJ6JLzqr19di/tyJT8sa1/qhr6sBU3b9O uAF5B8PSl/Aq+0Iz4T/p38SKOxw1ghsl/qfgBdNKFhMVCtVzRchh6AKL7pj0/Ny4 z/kbQ2UA8ALypnf54K/C8Q5iEWZc7Mn6DQHkx08vJGLTQfg/C8+FclWqEXqrBfhn fhiF5+EtIDPEXWaAnanqlH52I3fwVlQAXKDMsrnqnFFJrqJw79eslbfv8zYtoheE Hbn6N46aD8FMMbXNqiApvhiI1iLgKLIc -----END CERTIFICATE-----Generated at Sat Aug 23 22:40:04 2025 by rpki-client