$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: MfRYOnOMI+yZOXaKFwHbEjtmfo+F5sg1Lo1W9bwKgH8= Subject key identifier: 3D:DF:2D:CD:DD:9B:34:56:57:EF:04:BD:F4:9E:30:FB:24:9B:A0:18 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 032A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0324 Signing time: Sat 19 Jul 2025 01:35:26 +0000 Manifest this update: Sat 19 Jul 2025 01:35:26 +0000 Manifest next update: Sat 26 Jul 2025 01:35:26 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: 1ElswD6YkKasy9fFQiTW+gSqANetBWwlYsgzZoIvYjs=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 810 (0x32a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Jul 19 01:35:26 2025 GMT Not After : Jul 26 01:35:26 2025 GMT Subject: CN=687af65e-4a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:09:e6:73:41:e1:ea:82:39:1b:2b:9e:ac: f8:8c:28:88:d0:b3:02:80:92:03:79:4b:d8:6f:c6: f4:44:2a:79:b8:91:3a:73:b1:91:45:86:ed:89:39: af:79:ae:da:69:ab:c5:26:bc:51:9e:8b:c9:eb:b5: c5:46:87:c1:75:14:8e:9d:a6:0e:4c:b1:6a:93:05: f7:8f:01:1f:58:fc:cc:64:48:72:57:98:7c:b6:f3: a1:00:36:ad:d1:f4:67:13:99:04:64:ea:66:61:49: 22:f1:77:e0:75:7e:28:05:d5:13:3a:4e:6e:b8:47: f2:da:b2:18:d4:3d:a8:a9:27:73:bd:2c:60:39:15: 63:7b:7d:f1:6c:3a:64:1a:bb:fe:13:5c:d7:d9:9e: d9:5f:15:e3:a3:8c:ec:de:86:14:90:d0:e2:5b:e2: bb:05:01:6b:61:5a:8b:4f:01:64:b6:58:f5:26:d0: ca:1e:b9:29:c3:03:df:fa:1d:4a:4d:cc:12:da:ab: e3:e2:7c:32:fe:e4:e7:4c:cd:59:94:32:1d:0d:a5: 67:3c:c8:17:5f:95:79:c0:df:26:68:69:a3:e4:9a: e8:78:f6:cc:26:79:c3:60:cf:0a:58:80:70:3b:8f: 6d:38:01:24:8b:83:42:20:f7:9c:cb:94:d7:14:f1: de:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:DF:2D:CD:DD:9B:34:56:57:EF:04:BD:F4:9E:30:FB:24:9B:A0:18 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d2:0f:da:d0:9c:e3:bc:d0:1a:93:1d:bb:bc:61:84:29:08: e8:01:d3:11:8a:33:40:a4:f5:17:c6:eb:4c:f4:47:61:22:f7: cf:95:75:ab:b9:bb:15:85:3e:98:07:c5:75:d5:55:76:b8:e7: ed:b0:54:9b:b5:e9:a2:8c:6a:c5:d6:9a:5a:4a:cf:f7:5e:b0: eb:c7:ef:3c:66:04:26:1f:40:8f:47:e0:69:56:04:35:f7:9a: 3b:eb:e5:39:99:b2:a5:0c:e5:91:01:75:72:f6:d3:1c:d2:d0: 05:97:e5:8b:08:7f:08:c7:71:fa:4a:9c:59:f9:f8:df:9e:97: 5b:66:41:fc:ec:12:16:a1:1b:bd:5c:82:a5:4d:00:f7:d0:95: a2:34:9c:88:ab:21:20:e0:44:ad:28:38:b6:28:5c:bc:56:34: e7:09:3c:bf:15:41:87:00:d3:13:0a:ad:30:09:10:58:5b:bc: 15:7c:97:92:82:8e:8e:8f:9e:40:f4:16:00:5a:f2:19:01:56: 7d:a3:f0:79:97:3c:1b:d9:d0:62:a3:c7:9d:ff:4d:69:64:17: 7d:8d:3b:cc:c7:88:4e:4f:2f:c5:49:a0:f7:87:39:dc:2e:ae: ea:c6:3c:73:ac:52:7a:ef:3f:51:b1:bb:7d:2c:45:12:fb:ac: 8f:c6:ed:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNzE5MDEzNTI2WhcNMjUwNzI2MDEzNTI2WjAYMRYwFAYD VQQDEw02ODdhZjY1ZS00YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDoJ5nNB4eqCORsrnqz4jCiI0LMCgJIDeUvYb8b0RCp5uJE6c7GRRYbtiTmv ea7aaavFJrxRnovJ67XFRofBdRSOnaYOTLFqkwX3jwEfWPzMZEhyV5h8tvOhADat 0fRnE5kEZOpmYUki8XfgdX4oBdUTOk5uuEfy2rIY1D2oqSdzvSxgORVje33xbDpk Grv+E1zX2Z7ZXxXjo4zs3oYUkNDiW+K7BQFrYVqLTwFktlj1JtDKHrkpwwPf+h1K TcwS2qvj4nwy/uTnTM1ZlDIdDaVnPMgXX5V5wN8maGmj5JroePbMJnnDYM8KWIBw O49tOAEki4NCIPecy5TXFPHewwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3fLc3d mzRWV+8EvfSeMPskm6AYMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL0g/a0JzjvNAakx27vGGEKQjoAdMRijNApPUXxutM9EdhIvfPlXWr ubsVhT6YB8V11VV2uOftsFSbtemijGrF1ppaSs/3XrDrx+88ZgQmH0CPR+BpVgQ1 95o76+U5mbKlDOWRAXVy9tMc0tAFl+WLCH8Ix3H6SpxZ+fjfnpdbZkH87BIWoRu9 XIKlTQD30JWiNJyIqyEg4EStKDi2KFy8VjTnCTy/FUGHANMTCq0wCRBYW7wVfJeS go6Oj55A9BYAWvIZAVZ9o/B5lzwb2dBio8ed/01pZBd9jTvMx4hOTy/FSaD3hznc Lq7qxjxzrFJ67z9Rsbt9LEUS+6yPxu1Q -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:17 2025 by rpki-client