$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: CpNif+fcuNv6HVPAVG6vL6uuhCFCjr5yJiam982LLpc= Subject key identifier: DA:C6:70:C6:D0:05:F9:AB:78:B4:75:AB:23:15:68:99:0A:71:0A:14 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 03AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 03A2 Signing time: Fri 13 Mar 2026 00:17:59 +0000 Manifest this update: Fri 13 Mar 2026 00:17:58 +0000 Manifest next update: Fri 20 Mar 2026 00:17:58 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: j05JYxuIPa/5kXhl4VuEdAN1pdMuQvQiOiABtUmKEUI=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: qaqb32QMVSNEZ3f7TtmSpmBYJSl1ZcNm9kGHql238LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 00:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Mar 13 00:17:58 2026 GMT Not After : Mar 20 00:17:58 2026 GMT Subject: CN=69b357b6-3add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f5:0f:b6:58:f4:b1:57:f1:f1:15:6e:1a:4b: 7f:0e:72:41:f2:35:46:c5:1c:c5:49:88:c8:82:f9: 0e:58:7e:3b:5b:6d:00:9e:70:fa:89:33:20:4d:e8: 00:5e:46:d9:fe:9d:03:e1:35:32:3b:0c:df:1a:fc: c8:31:38:73:4c:67:80:a8:31:17:e5:52:b2:4c:c3: 69:71:b0:0d:fd:7c:82:1e:bd:f3:ff:a5:d0:36:b8: 24:c5:02:a1:0d:73:ad:b1:8c:7a:bc:96:e4:ef:85: 54:d0:0b:0c:37:72:74:38:05:7b:21:44:cb:2c:ac: 63:98:8a:ac:02:02:99:41:04:45:2f:7a:6c:23:9c: 9f:7a:34:6b:d4:cd:12:7a:2c:0a:b4:6e:99:2f:96: 81:2c:d4:b5:df:94:89:ef:c3:df:ea:e7:3d:1e:88: 1a:15:ae:1b:75:75:8c:bd:97:83:76:69:0d:35:98: 15:86:f0:50:d6:81:2d:d6:a3:35:f1:13:94:cf:3c: 55:f1:2d:dd:ac:80:e6:49:fe:7a:f2:e6:74:b6:63: e4:66:0d:66:5a:39:d2:01:fa:83:06:fc:fd:31:10: f1:3a:ac:d2:a8:38:c1:40:e1:d0:54:38:e5:c2:49: 7c:da:0d:b7:f8:b8:70:d5:f1:37:eb:d2:1d:92:b5: 31:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C6:70:C6:D0:05:F9:AB:78:B4:75:AB:23:15:68:99:0A:71:0A:14 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:38:d4:1a:42:e1:98:d5:ac:b6:85:ad:e9:5e:86:00:3c:5b: 86:37:4e:c9:92:ad:f1:51:44:b3:7f:6a:7b:c4:58:55:0f:5a: b2:15:31:6b:92:a0:80:d0:51:d9:1f:10:f7:db:b3:2d:cb:5d: 70:a2:eb:9f:2d:0c:a5:a4:a8:a5:12:cd:92:6a:6f:73:0b:45: ef:f4:6c:1a:79:2a:9a:68:af:4e:61:91:f1:fb:af:37:5e:eb: 60:e2:ce:f6:f4:b3:d7:4e:b2:fe:07:3a:7b:eb:25:35:a0:30: ea:c1:93:4c:40:52:49:cb:01:2b:46:9a:e9:de:4c:44:68:b1: 83:ec:8d:ef:6d:8d:36:88:da:14:a0:df:46:ec:2b:66:7b:a7: f5:8a:85:e4:5a:73:ea:c8:a0:4b:89:16:63:ce:c7:de:e5:7f: fa:eb:f6:b1:17:d6:56:ec:ed:34:f0:23:cd:df:38:f0:e4:4f: be:d9:af:cc:e1:6f:b6:be:7b:78:ca:9b:14:34:91:1b:1c:b6: d5:df:a5:33:d4:c4:32:29:32:ac:08:c5:e2:0e:16:b7:44:e6: 99:f0:e0:49:41:8c:6b:51:f4:14:bd:d3:5d:7a:2e:c8:e7:c9: 17:c0:3b:c7:b1:b3:c2:12:ac:fb:8c:aa:98:33:ef:cc:d0:0b: 7d:55:07:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjYwMzEzMDAxNzU4WhcNMjYwMzIwMDAxNzU4WjAYMRYwFAYD VQQDEw02OWIzNTdiNi0zYWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkfUPtlj0sVfx8RVuGkt/DnJB8jVGxRzFSYjIgvkOWH47W20AnnD6iTMgTegA XkbZ/p0D4TUyOwzfGvzIMThzTGeAqDEX5VKyTMNpcbAN/XyCHr3z/6XQNrgkxQKh DXOtsYx6vJbk74VU0AsMN3J0OAV7IUTLLKxjmIqsAgKZQQRFL3psI5yfejRr1M0S eiwKtG6ZL5aBLNS135SJ78Pf6uc9HogaFa4bdXWMvZeDdmkNNZgVhvBQ1oEt1qM1 8ROUzzxV8S3drIDmSf568uZ0tmPkZg1mWjnSAfqDBvz9MRDxOqzSqDjBQOHQVDjl wkl82g23+Lhw1fE369IdkrUx8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNrGcMbQ BfmreLR1qyMVaJkKcQoUMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAajjUGkLhmNWstoWt6V6GADxbhjdOyZKt8VFEs39qe8RYVQ9ashUxa5KggNBR 2R8Q99uzLctdcKLrny0MpaSopRLNkmpvcwtF7/RsGnkqmmivTmGR8fuvN17rYOLO 9vSz106y/gc6e+slNaAw6sGTTEBSScsBK0aa6d5MRGixg+yN722NNojaFKDfRuwr Znun9YqF5Fpz6sigS4kWY87H3uV/+uv2sRfWVuztNPAjzd848ORPvtmvzOFvtr57 eMqbFDSRGxy21d+lM9TEMikyrAjF4g4Wt0TmmfDgSUGMa1H0FL3TXXouyOfJF8A7 x7GzwhKs+4yqmDPvzNALfVUHQA== -----END CERTIFICATE-----Generated at Fri Mar 13 11:19:28 2026 by rpki-client