$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: FrHIa63mAufQMqkOv+cMSR6enSkKJ0FP1Xk/XGTH6u0= Subject key identifier: 33:F7:CA:1E:6C:CC:C0:26:77:9E:B9:65:A2:7B:A9:3B:DE:3A:EE:B3 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 1131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 193E Signing time: Sun 10 Aug 2025 17:16:14 +0000 Manifest this update: Sun 10 Aug 2025 17:16:13 +0000 Manifest next update: Sun 17 Aug 2025 17:16:13 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: Ug9Tjb0L/+oU9rqb03VwqZhm/CIvX7N+miKjwRUa1Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4401 (0x1131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Aug 10 17:16:13 2025 GMT Not After : Aug 17 17:16:13 2025 GMT Subject: CN=6898d3de-590b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:72:b8:2c:91:b5:1c:c3:cd:57:95:bc:c2:bd: ef:97:f7:60:38:cc:08:75:52:1e:29:94:de:80:5d: aa:bb:27:2c:ce:9a:28:99:21:d0:7d:b0:b3:3e:0b: ce:1d:b7:23:bb:eb:64:cd:b4:70:7d:cb:64:9a:6b: 2e:43:c8:e6:bf:76:36:3d:aa:26:a9:c8:89:73:48: 40:b6:78:9f:b7:3e:49:35:8d:2c:bc:95:54:a2:a8: f8:5a:6a:1c:24:07:27:e8:26:18:45:22:95:93:e6: 07:82:47:58:b2:02:63:6a:33:fb:6b:80:d1:88:44: e9:23:f4:c8:8f:e7:3d:9d:58:dc:e3:f7:15:83:cf: 4a:53:c9:72:78:73:a2:4a:14:e9:ab:4d:54:db:dd: b0:79:52:c9:ff:c2:65:e9:e4:7a:86:67:49:7f:cb: 3b:ac:34:28:91:8e:71:30:ad:2b:aa:72:bb:d9:bd: a7:83:7c:0f:ea:19:45:f7:7e:7d:cc:07:a7:e7:bb: 08:31:93:36:87:0b:2c:69:10:d1:6c:f6:fd:4b:ee: e9:f9:b1:06:c7:8e:64:60:0f:46:80:0e:e8:48:79: 3b:87:a5:bd:57:34:45:f7:87:10:ae:0b:85:46:b5: 59:54:cb:fb:71:c6:c8:d0:e9:87:6f:81:5c:a7:63: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F7:CA:1E:6C:CC:C0:26:77:9E:B9:65:A2:7B:A9:3B:DE:3A:EE:B3 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:af:63:63:5c:b4:83:38:ee:ce:95:9b:fa:b4:35:6f:a2:b0: ff:7e:21:7a:a3:36:36:14:82:3d:9d:e5:b1:5b:c5:13:18:d8: 58:e1:c8:2c:10:84:d4:50:61:31:e9:51:fe:31:4e:b0:bc:b6: 1f:a0:23:21:fd:df:91:86:1b:da:58:0c:df:d2:a6:45:ce:9b: 66:ee:c7:ec:40:d4:47:ec:2f:52:c5:46:a6:dd:fc:d5:29:5b: 0b:c5:29:c7:98:eb:68:c6:6d:dd:28:b6:d4:80:00:62:d0:d4: 33:61:5b:54:d2:68:d7:0f:7c:9c:e4:2e:8b:7b:70:60:64:24: bb:4e:ca:e5:ef:e8:af:81:00:ca:be:ad:aa:77:97:fa:69:db: 08:1c:ae:c9:70:4c:6b:4b:65:5e:6b:e6:ac:9e:9b:16:bc:02: bf:20:8b:c5:41:f5:aa:6e:07:7b:59:8d:a4:e3:8a:19:b4:e7: 21:ce:8c:47:af:51:e2:8a:c2:b4:7d:42:9a:6e:86:0e:c7:9c: 46:14:46:3a:7c:6b:92:f7:4d:7f:45:3a:b4:ba:64:57:b9:f8: 59:a2:d7:cb:b8:e3:91:2c:3c:4c:21:fd:2f:45:77:83:03:b6: 41:d0:cd:3d:10:fa:11:5a:30:1d:0a:b9:88:d6:ca:85:c4:c9: 1d:77:c0:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICETEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUwODEwMTcxNjEzWhcNMjUwODE3MTcxNjEzWjAYMRYwFAYD VQQDEw02ODk4ZDNkZS01OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHK4LJG1HMPNV5W8wr3vl/dgOMwIdVIeKZTegF2quycszpoomSHQfbCzPgvO Hbcju+tkzbRwfctkmmsuQ8jmv3Y2PaomqciJc0hAtniftz5JNY0svJVUoqj4Wmoc JAcn6CYYRSKVk+YHgkdYsgJjajP7a4DRiETpI/TIj+c9nVjc4/cVg89KU8lyeHOi ShTpq01U292weVLJ/8Jl6eR6hmdJf8s7rDQokY5xMK0rqnK72b2ng3wP6hlF9359 zAen57sIMZM2hwssaRDRbPb9S+7p+bEGx45kYA9GgA7oSHk7h6W9VzRF94cQrguF RrVZVMv7ccbI0OmHb4Fcp2MvKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDP3yh5s zMAmd565ZaJ7qTveOu6zMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpr2NjXLSDOO7OlZv6tDVvorD/fiF6ozY2FII9neWxW8UTGNhY4cgs EITUUGEx6VH+MU6wvLYfoCMh/d+RhhvaWAzf0qZFzptm7sfsQNRH7C9SxUam3fzV KVsLxSnHmOtoxm3dKLbUgABi0NQzYVtU0mjXD3yc5C6Le3BgZCS7Tsrl7+ivgQDK vq2qd5f6adsIHK7JcExrS2Vea+asnpsWvAK/IIvFQfWqbgd7WY2k44oZtOchzoxH r1HiisK0fUKaboYOx5xGFEY6fGuS901/RTq0umRXufhZotfLuOORLDxMIf0vRXeD A7ZB0M09EPoRWjAdCrmI1sqFxMkdd8Dr -----END CERTIFICATE-----Generated at Sun Aug 10 21:10:34 2025 by rpki-client