$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft File: HUW1iuOmlSERtAmFTag5MXvugjM.mft (raw, json) Hash identifier: cbtDU8rBArVSGNkEaAvI3BIb71fYiOlW6BrSJzNVs5g= Subject key identifier: 2C:BB:FF:CE:ED:87:45:CE:4D:59:23:37:3E:59:19:67:E8:A8:9B:46 Authority key identifier: 1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 Certificate issuer: /CN=A9120119/serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Certificate serial: 10F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft Manifest number: 18CC Signing time: Thu 24 Apr 2025 17:18:13 +0000 Manifest this update: Thu 24 Apr 2025 17:18:13 +0000 Manifest next update: Thu 01 May 2025 17:18:13 +0000 Files and hashes: 1: HUW1iuOmlSERtAmFTag5MXvugjM.crl (hash: XN47QQHSrFDzsK2MIjU+SrBoPgkBI6hp1FcdKrPnvcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4345 (0x10f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=1D45B58AE3A6952111B409854DA839317BEE8233 Validity Not Before: Apr 24 17:18:13 2025 GMT Not After : May 1 17:18:13 2025 GMT Subject: CN=680a7255-a8ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bb:38:cb:da:35:a3:88:8f:12:18:ec:56:9a: 32:7f:64:34:1b:95:77:84:be:b2:34:c1:0f:82:6d: c8:57:82:28:98:ea:99:16:0f:71:c1:88:12:f2:2b: 22:d9:0a:c4:e9:cb:67:43:f0:de:aa:da:13:1a:1c: eb:40:fe:ca:64:7d:a0:ea:d3:13:bb:90:26:94:8e: 1b:a7:bc:6b:77:b6:26:02:7f:7b:2b:c7:9e:7d:49: b4:8a:79:b9:e3:e8:36:92:b3:b5:ec:27:5b:02:0c: c6:96:33:1e:6c:2c:53:e2:48:2c:ee:84:e5:77:cc: c6:9f:a7:68:38:93:3e:98:37:6a:57:cb:88:b2:ec: d3:08:99:df:c0:fd:e4:00:33:e9:b5:b2:1e:8f:15: 22:50:59:a1:70:4f:2a:bb:00:cb:bc:58:4b:40:45: 50:5d:9d:a8:3b:19:fa:fb:bf:38:09:85:22:1d:99: 68:08:5e:d8:bc:25:7f:02:72:6e:25:23:27:10:62: be:b3:4a:2c:db:21:82:b9:52:57:a0:20:4f:44:fa: d8:88:3b:2f:df:3e:12:02:41:3f:e8:8f:5b:2b:4e: ad:1d:37:2b:3b:10:cc:12:31:45:78:ca:84:9e:ec: 26:ff:09:a5:a0:2f:86:87:2e:d4:89:e6:4b:e2:e3: dd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BB:FF:CE:ED:87:45:CE:4D:59:23:37:3E:59:19:67:E8:A8:9B:46 X509v3 Authority Key Identifier: keyid:1D:45:B5:8A:E3:A6:95:21:11:B4:09:85:4D:A8:39:31:7B:EE:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUW1iuOmlSERtAmFTag5MXvugjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/HUW1iuOmlSERtAmFTag5MXvugjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:2b:11:aa:12:19:8b:a2:31:9a:66:00:7e:12:ba:d6:1b:c5: 45:60:e4:f3:6b:f1:1f:fb:df:6d:29:3c:50:ab:d7:21:9e:de: 43:46:ae:89:ef:e8:21:19:16:d5:ad:9f:15:9b:43:bf:1b:de: 4d:b9:e4:fa:36:8a:9d:be:19:db:6b:3e:73:74:b9:3b:e2:5d: c3:54:85:cd:66:ab:44:53:ac:51:4d:cf:90:6d:c6:95:ff:2f: f4:dc:22:78:d5:8f:4b:4a:19:fd:69:b5:3d:60:4f:08:33:48: 71:1f:b7:d6:db:c0:a6:f4:da:58:c6:68:a9:fa:aa:91:27:79: da:c2:7d:7a:cc:34:96:a7:4b:6f:3f:90:f3:31:e7:07:ce:2c: 53:5c:ae:64:e8:8a:35:4c:4c:95:3c:d1:6a:63:05:32:18:68: 06:a6:c3:6c:2b:d3:d4:3b:ba:03:69:86:11:ba:95:7b:79:ee: 9f:b3:6c:7d:01:fd:f6:69:67:48:d2:57:b3:1b:1f:ab:63:22: 68:14:49:f4:93:8f:92:a2:98:d4:e2:ff:d5:7f:1a:b6:b5:8c: bc:b1:8a:79:8d:b7:59:95:04:11:d2:15:c1:f6:f6:87:95:80: 5b:d6:d9:a9:61:81:29:d3:35:97:0c:cf:6a:20:13:6d:41:37: e8:13:3e:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDFENDVCNThBRTNBNjk1MjExMUI0MDk4NTREQTgzOTMx N0JFRTgyMzMwHhcNMjUwNDI0MTcxODEzWhcNMjUwNTAxMTcxODEzWjAYMRYwFAYD VQQDEw02ODBhNzI1NS1hOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ls4y9o1o4iPEhjsVpoyf2Q0G5V3hL6yNMEPgm3IV4IomOqZFg9xwYgS8isi 2QrE6ctnQ/DeqtoTGhzrQP7KZH2g6tMTu5AmlI4bp7xrd7YmAn97K8eefUm0inm5 4+g2krO17CdbAgzGljMebCxT4kgs7oTld8zGn6doOJM+mDdqV8uIsuzTCJnfwP3k ADPptbIejxUiUFmhcE8quwDLvFhLQEVQXZ2oOxn6+784CYUiHZloCF7YvCV/AnJu JSMnEGK+s0os2yGCuVJXoCBPRPrYiDsv3z4SAkE/6I9bK06tHTcrOxDMEjFFeMqE nuwm/wmloC+Ghy7UieZL4uPdWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCy7/87t h0XOTVkjNz5ZGWfoqJtGMB8GA1UdIwQYMBaAFB1FtYrjppUhEbQJhU2oOTF77oIz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxTRVJ0QW1GVGFnNU1YdnVn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVVzFpdU9tbFNFUnRBbUZUYWc1TVh2dWdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDExOS9FRUI3MUJFMjEzRjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9IVVcxaXVPbWxT RVJ0QW1GVGFnNU1YdnVnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4KxGqEhmLojGaZgB+ErrWG8VFYOTza/Ef+99tKTxQq9chnt5DRq6J 7+ghGRbVrZ8Vm0O/G95NueT6Noqdvhnbaz5zdLk74l3DVIXNZqtEU6xRTc+QbcaV /y/03CJ41Y9LShn9abU9YE8IM0hxH7fW28Cm9NpYxmip+qqRJ3nawn16zDSWp0tv P5DzMecHzixTXK5k6Io1TEyVPNFqYwUyGGgGpsNsK9PUO7oDaYYRupV7ee6fs2x9 Af32aWdI0lezGx+rYyJoFEn0k4+SopjU4v/Vfxq2tYy8sYp5jbdZlQQR0hXB9vaH lYBb1tmpYYEp0zWXDM9qIBNtQTfoEz5/ -----END CERTIFICATE-----Generated at Sat Apr 26 05:27:41 2025 by rpki-client