$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: z0Mdp8++bfp2DujRhRiLi+lqMaTNXgXSFlZkOw4DZ2I= Subject key identifier: CE:02:D4:21:EB:EE:F8:AC:B9:95:A6:48:26:72:26:0F:81:E4:06:4F Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 035B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0355 Signing time: Thu 23 Oct 2025 02:20:19 +0000 Manifest this update: Thu 23 Oct 2025 02:20:19 +0000 Manifest next update: Thu 30 Oct 2025 02:20:19 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: B09AJo5fpbpvfbgW9aapsNH3EcFtNpYKMjonzKENNOM=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Oct 23 02:20:19 2025 GMT Not After : Oct 30 02:20:19 2025 GMT Subject: CN=68f990e3-fe60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:da:e9:87:86:e5:4e:47:57:fa:db:14:0e:f3: 4b:90:68:56:bd:80:c9:d8:dc:3a:fe:6d:c2:3b:c8: d5:c1:9f:47:d9:fc:c8:6b:a3:cc:15:1f:3e:22:74: 8d:a2:bf:43:82:2d:cd:74:bd:50:47:ef:08:34:d0: b5:0f:f0:03:5d:98:08:cc:99:08:c8:dc:7c:7e:37: 24:d5:80:dd:f2:48:13:09:72:90:34:00:64:48:3d: 5a:8c:52:4e:4c:90:ca:19:e4:9d:0f:69:f7:5b:4c: 5b:2e:6c:5d:29:de:ef:a2:45:d2:6d:85:83:fb:ea: 40:59:10:25:6e:ef:f6:12:34:2c:cb:c1:6c:ca:95: d6:4a:09:6a:73:27:2f:33:c5:71:a2:07:bf:d2:3e: be:49:aa:cd:7d:80:fc:17:df:51:9f:e7:33:1b:a7: ee:02:13:a5:b8:86:b7:24:d4:f8:0f:cd:82:cc:ca: b7:8f:a6:6e:3f:53:4e:bc:cf:1e:5c:0e:31:91:41: 4e:c4:80:05:b9:5d:03:1e:11:b7:c3:ec:68:10:ea: c7:a8:c9:51:9c:f9:3b:a1:05:6d:63:09:44:92:9e: 6a:70:db:19:c1:52:9f:83:43:b5:13:d3:b7:88:0d: 31:65:23:9e:78:0f:10:f6:a8:c7:c9:4d:c8:6c:28: ce:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:02:D4:21:EB:EE:F8:AC:B9:95:A6:48:26:72:26:0F:81:E4:06:4F X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:d2:cf:8d:27:bd:4f:bc:7d:38:65:7b:5a:23:06:1d:6f:ba: a9:43:0e:30:2e:e0:44:2c:db:9a:e9:e0:91:5d:01:27:7d:40: bd:d9:bb:cc:3c:14:48:d3:a5:d1:a0:a9:c1:1a:54:ee:4a:d1: ca:52:c2:d2:e9:22:8b:a8:0a:03:8b:67:1d:7c:da:c5:59:00: 7f:8a:e1:05:38:0e:68:9b:b4:30:75:93:60:c8:61:73:a7:00: 41:6d:93:50:5e:38:4f:99:36:c0:52:8f:60:5c:70:d0:19:c1: 6f:58:15:84:d8:6f:87:22:a5:c9:88:df:18:c7:29:1d:fa:4c: e6:50:84:83:9a:6f:3d:86:f8:5a:6d:36:ca:23:db:3b:7a:48: dc:06:40:b4:64:b4:6f:79:8b:c9:31:a0:d9:ef:11:11:b1:15: 02:13:ba:19:cb:8d:bc:9c:b7:2c:9b:bd:8f:89:ab:9f:70:eb: a2:00:3d:f7:cc:79:90:f5:d6:9d:82:c6:94:ee:67:7a:ba:5d: b8:f2:d0:6f:a4:a4:0d:af:4a:50:86:75:1c:c6:fd:13:ae:d9: b4:2d:06:4e:66:ee:d6:a1:92:c8:2c:37:d4:ab:92:d0:bb:8d: ee:9b:41:41:c4:b6:38:cf:3e:44:ab:ab:34:12:3b:ac:f2:16: 00:86:a8:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUxMDIzMDIyMDE5WhcNMjUxMDMwMDIyMDE5WjAYMRYwFAYD VQQDEw02OGY5OTBlMy1mZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8drph4blTkdX+tsUDvNLkGhWvYDJ2Nw6/m3CO8jVwZ9H2fzIa6PMFR8+InSN or9Dgi3NdL1QR+8INNC1D/ADXZgIzJkIyNx8fjck1YDd8kgTCXKQNABkSD1ajFJO TJDKGeSdD2n3W0xbLmxdKd7vokXSbYWD++pAWRAlbu/2EjQsy8FsypXWSglqcycv M8Vxoge/0j6+SarNfYD8F99Rn+czG6fuAhOluIa3JNT4D82CzMq3j6ZuP1NOvM8e XA4xkUFOxIAFuV0DHhG3w+xoEOrHqMlRnPk7oQVtYwlEkp5qcNsZwVKfg0O1E9O3 iA0xZSOeeA8Q9qjHyU3IbCjO8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4C1CHr 7visuZWmSCZyJg+B5AZPMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY0s+NJ71PvH04ZXtaIwYdb7qpQw4wLuBELNua6eCRXQEnfUC92bvM PBRI06XRoKnBGlTuStHKUsLS6SKLqAoDi2cdfNrFWQB/iuEFOA5om7QwdZNgyGFz pwBBbZNQXjhPmTbAUo9gXHDQGcFvWBWE2G+HIqXJiN8Yxykd+kzmUISDmm89hvha bTbKI9s7ekjcBkC0ZLRveYvJMaDZ7xERsRUCE7oZy428nLcsm72PiaufcOuiAD33 zHmQ9dadgsaU7md6ul248tBvpKQNr0pQhnUcxv0Trtm0LQZOZu7WoZLILDfUq5LQ u43um0FBxLY4zz5Eq6s0Ejus8hYAhqgB -----END CERTIFICATE-----Generated at Thu Oct 23 20:32:25 2025 by rpki-client