$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: fK79SdzCTUo8hla2sDuLOXn/WNru8an+tFZTUF5UmX8= Subject key identifier: 6F:CA:11:00:EB:44:C4:43:50:57:7E:9A:43:F3:47:0C:E3:8A:E9:8B Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0317 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0312 Signing time: Thu 19 Jun 2025 01:03:41 +0000 Manifest this update: Thu 19 Jun 2025 01:03:41 +0000 Manifest next update: Thu 26 Jun 2025 01:03:41 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: w9LKmgvmR1o/s6yfVrDakpiYZh695yKeJzIsoyHzkZg=) 2: BE65DAF646FE11F083055C85C4F9AE02.roa (hash: AfEBQjKNnibN5CgqBIWTvGQoaqHakVqEmw/BNLJgfG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Jun 19 01:03:41 2025 GMT Not After : Jun 26 01:03:41 2025 GMT Subject: CN=685361ed-2ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:19:5b:6b:08:07:77:da:b5:49:20:77:2d:25: 5d:c1:07:58:d2:0d:5c:12:83:3a:61:25:73:f1:0b: 19:ef:68:6c:f1:09:43:9d:1f:3c:60:fb:2e:b0:d6: 83:7d:3c:dd:49:22:f9:ec:a7:1e:0d:77:47:3a:9c: 99:ca:59:ca:08:32:f6:b1:dc:d7:5c:6a:99:54:8b: f6:f6:2c:7a:13:44:27:9b:b4:a4:b9:1d:33:94:d7: 0d:be:35:af:ee:f3:42:90:9a:81:28:f1:f3:95:56: 80:0b:f0:61:1d:50:f7:b4:cc:27:03:72:62:b3:1e: e2:a3:ef:08:8b:98:0d:47:ce:a4:cc:8f:3b:ef:f6: fd:ac:29:92:d8:70:e6:24:0f:1b:a6:9c:8a:c4:dd: 88:29:41:75:37:f8:1a:23:56:95:24:93:e3:84:c6: 90:9b:e8:b0:ae:96:2f:5b:6b:7d:f5:e6:5e:fb:c4: da:dc:99:0a:60:88:75:92:c5:c5:c4:cc:cc:9d:49: 50:94:0c:7d:9b:bc:2d:8b:c3:80:93:0d:00:a6:bd: a9:10:b9:1e:73:eb:e4:29:de:88:63:75:18:1a:76: 78:88:d1:ad:93:41:a7:61:df:75:1b:3e:8a:54:3d: 18:9b:26:ce:30:5d:0c:a9:36:0d:40:24:a9:23:70: 8d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CA:11:00:EB:44:C4:43:50:57:7E:9A:43:F3:47:0C:E3:8A:E9:8B X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ce:7f:fd:16:ca:d3:58:d6:a3:b9:e5:06:43:e6:5d:1b:d4: 11:60:ee:d9:97:e8:41:78:50:a1:d3:38:1f:22:a4:b5:ef:08: ce:17:e7:ee:d9:8d:53:c0:24:79:2c:0b:d0:46:a3:01:bc:28: a1:79:da:d0:3c:af:21:86:fb:38:50:94:2c:96:d7:87:99:98: ed:78:41:3c:37:51:70:07:02:50:3b:8e:ea:e6:25:6b:a1:d4: 68:81:e0:5b:7b:b3:cb:e5:cf:c6:df:1d:50:19:1f:e9:a6:02: 0d:d3:32:09:30:08:33:d1:f2:00:2f:82:58:d5:db:12:41:f1: 5e:51:88:14:c5:ad:fc:20:c1:6b:aa:b1:2a:8a:fa:d4:f7:29: d9:74:c6:8c:35:9b:bf:70:97:79:da:a5:01:9d:cc:1c:3c:1f: 9e:4d:76:df:e3:53:3f:90:e4:11:31:cb:df:5a:dc:cc:d9:15: 48:61:c2:7c:60:9c:67:a4:27:4e:41:82:1f:38:d9:01:9a:b8: 24:3e:a2:2c:78:d7:c5:5e:30:9e:0f:d2:41:0b:ea:08:d9:6e: fd:ce:e5:5e:4b:aa:92:98:3e:e4:f7:cf:5d:54:d9:1d:d4:a9: 9c:af:1c:ad:97:24:7d:9b:7a:39:e0:16:58:d8:4d:a8:1f:51: 9b:ab:a6:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNjE5MDEwMzQxWhcNMjUwNjI2MDEwMzQxWjAYMRYwFAYD VQQDEw02ODUzNjFlZC0yYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BlbawgHd9q1SSB3LSVdwQdY0g1cEoM6YSVz8QsZ72hs8QlDnR88YPsusNaD fTzdSSL57KceDXdHOpyZylnKCDL2sdzXXGqZVIv29ix6E0Qnm7SkuR0zlNcNvjWv 7vNCkJqBKPHzlVaAC/BhHVD3tMwnA3Jisx7io+8Ii5gNR86kzI877/b9rCmS2HDm JA8bppyKxN2IKUF1N/gaI1aVJJPjhMaQm+iwrpYvW2t99eZe+8Ta3JkKYIh1ksXF xMzMnUlQlAx9m7wti8OAkw0Apr2pELkec+vkKd6IY3UYGnZ4iNGtk0GnYd91Gz6K VD0YmybOMF0MqTYNQCSpI3CN8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG/KEQDr RMRDUFd+mkPzRwzjiumLMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZzn/9FsrTWNajueUGQ+ZdG9QRYO7Zl+hBeFCh0zgfIqS17wjOF+fu 2Y1TwCR5LAvQRqMBvCihedrQPK8hhvs4UJQslteHmZjteEE8N1FwBwJQO47q5iVr odRogeBbe7PL5c/G3x1QGR/ppgIN0zIJMAgz0fIAL4JY1dsSQfFeUYgUxa38IMFr qrEqivrU9ynZdMaMNZu/cJd52qUBncwcPB+eTXbf41M/kOQRMcvfWtzM2RVIYcJ8 YJxnpCdOQYIfONkBmrgkPqIseNfFXjCeD9JBC+oI2W79zuVeS6qSmD7k989dVNkd 1KmcrxytlyR9m3o54BZY2E2oH1Gbq6aj -----END CERTIFICATE-----Generated at Thu Jun 19 09:53:48 2025 by rpki-client