$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: maTJDl7OqMcTTl7/EIoUSoxoSvTH9P4qz0rIcMI+aA0= Subject key identifier: EF:AC:88:51:F6:50:9C:49:1B:64:28:7F:1E:DD:41:A2:B0:C1:7B:C9 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0344 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 033E Signing time: Fri 05 Sep 2025 01:25:16 +0000 Manifest this update: Fri 05 Sep 2025 01:25:16 +0000 Manifest next update: Fri 12 Sep 2025 01:25:16 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: qEbUydTrP/SP1MHCPB5ydWOEJNfKiaVhJCz3xjJiJRU=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Sep 5 01:25:16 2025 GMT Not After : Sep 12 01:25:16 2025 GMT Subject: CN=68ba3bfc-207c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2d:01:e0:cc:1a:95:24:6a:40:fe:35:14:e8: a9:76:a1:26:a4:31:8e:fd:fa:51:88:16:f1:17:38: a8:54:45:ff:5f:cb:77:22:c5:42:30:61:1c:ad:95: 86:c7:2c:68:14:be:ef:9a:7a:6c:01:1c:01:82:38: 93:fb:47:d7:5d:35:bc:df:27:aa:54:27:95:8f:7d: 20:a6:a6:7d:3b:e6:73:f6:3c:cb:c3:60:01:f1:ee: 03:eb:6b:1e:6b:f1:e5:ae:53:77:c0:ef:98:80:ca: 58:1c:55:fa:d1:c9:5f:4b:d1:54:0b:d0:ea:59:71: 08:9e:59:d6:cb:4e:7a:e7:a5:28:01:a7:cd:9e:c5: fa:95:aa:3c:bb:c4:bc:45:ac:47:73:64:01:d7:26: 70:38:c1:03:0d:07:42:73:78:98:3d:b7:43:aa:18: f6:d0:25:8c:9c:83:a8:85:3b:54:c1:d3:c7:13:a1: e6:bf:86:91:81:4b:c7:31:e1:03:c9:b9:d0:f8:08: 59:01:84:2c:22:9a:db:13:83:e8:5d:b2:26:16:ae: bd:cc:fc:6a:c7:49:e3:44:d8:50:64:7d:fe:f9:48: 7d:52:f1:c5:76:d7:43:ca:43:a1:13:b4:89:a3:2d: 46:bf:12:79:f0:34:af:38:a6:2d:f9:e9:e8:b0:d4: ce:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AC:88:51:F6:50:9C:49:1B:64:28:7F:1E:DD:41:A2:B0:C1:7B:C9 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d7:c6:14:7c:eb:b6:dd:55:5e:b2:9e:26:bb:f9:74:3c:35: 3a:51:85:a1:48:ae:ca:68:93:3b:ee:ab:f1:b5:a3:3e:42:83: 17:d9:44:3a:e0:2d:ba:74:c3:ae:4c:23:2f:0f:73:82:16:f0: 48:6a:9c:73:b1:53:99:04:20:3b:d0:f2:7f:fb:db:9a:75:dc: 05:d6:39:b1:b4:59:58:20:47:f2:36:9a:2c:97:73:5d:45:ef: 99:e2:b1:4b:10:77:64:0d:bc:4b:fa:4d:40:b2:36:af:71:1f: 53:3c:35:d2:c3:a9:30:e0:5a:cf:3c:56:cd:00:94:d5:2e:2b: 72:09:b2:51:2d:75:4f:81:75:cf:98:e0:5f:2a:b7:fc:c1:8d: 0a:0f:ed:3f:0c:04:88:58:2f:a1:8d:96:21:61:97:af:4b:49: 2e:03:0d:33:af:c8:c3:18:cf:36:e7:9a:7d:69:0d:1f:2a:7c: 89:f2:cc:d5:a6:34:4f:0b:46:3e:2a:fc:ce:c2:82:38:c3:cf: b0:0b:cc:f6:80:36:5b:ec:ea:2f:e7:ef:da:bd:cb:78:bf:f5: 0a:42:87:0b:ab:c2:84:c3:ca:15:1a:6e:fe:82:77:b7:4a:23: 48:1f:19:14:4d:11:c0:f1:e2:ff:e2:d8:46:59:61:e7:64:77: 34:af:36:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwOTA1MDEyNTE2WhcNMjUwOTEyMDEyNTE2WjAYMRYwFAYD VQQDEw02OGJhM2JmYy0yMDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsy0B4MwalSRqQP41FOipdqEmpDGO/fpRiBbxFzioVEX/X8t3IsVCMGEcrZWG xyxoFL7vmnpsARwBgjiT+0fXXTW83yeqVCeVj30gpqZ9O+Zz9jzLw2AB8e4D62se a/HlrlN3wO+YgMpYHFX60clfS9FUC9DqWXEInlnWy05656UoAafNnsX6lao8u8S8 RaxHc2QB1yZwOMEDDQdCc3iYPbdDqhj20CWMnIOohTtUwdPHE6Hmv4aRgUvHMeED ybnQ+AhZAYQsIprbE4PoXbImFq69zPxqx0njRNhQZH3++Uh9UvHFdtdDykOhE7SJ oy1GvxJ58DSvOKYt+enosNTOEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+siFH2 UJxJG2Qofx7dQaKwwXvJMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS18YUfOu23VVesp4mu/l0PDU6UYWhSK7KaJM77qvxtaM+QoMX2UQ6 4C26dMOuTCMvD3OCFvBIapxzsVOZBCA70PJ/+9uaddwF1jmxtFlYIEfyNposl3Nd Re+Z4rFLEHdkDbxL+k1AsjavcR9TPDXSw6kw4FrPPFbNAJTVLityCbJRLXVPgXXP mOBfKrf8wY0KD+0/DASIWC+hjZYhYZevS0kuAw0zr8jDGM8255p9aQ0fKnyJ8szV pjRPC0Y+KvzOwoI4w8+wC8z2gDZb7Oov5+/avct4v/UKQocLq8KEw8oVGm7+gne3 SiNIHxkUTRHA8eL/4thGWWHnZHc0rzZK -----END CERTIFICATE-----Generated at Sat Sep 6 13:47:45 2025 by rpki-client