$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: gOJLZSFfqdl9t5m4F37gtsNjtC6AEjzsnoxN9x7Qu0U= Subject key identifier: 90:B5:CA:2D:25:68:8F:F0:98:1D:1A:9C:49:53:56:D2:BA:B9:3F:F4 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 03B4 Signing time: Fri 17 Apr 2026 00:36:47 +0000 Manifest this update: Fri 17 Apr 2026 00:36:46 +0000 Manifest next update: Fri 24 Apr 2026 00:36:46 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: +fR7x9qr9BFcjO2AzRvkAeHGt1tzrHOK+u3wocrj/cA=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: qaqb32QMVSNEZ3f7TtmSpmBYJSl1ZcNm9kGHql238LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Apr 17 00:36:46 2026 GMT Not After : Apr 24 00:36:46 2026 GMT Subject: CN=69e1809e-0c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8c:7f:0e:58:61:53:54:b5:95:11:95:68:24: bc:98:5f:b0:e9:e3:42:98:6f:10:ac:8f:5f:4d:98: 1f:a8:32:b8:0e:ff:d6:e1:ef:91:13:4f:33:99:f3: 88:9e:7f:51:b1:b2:95:6c:54:f4:2f:58:df:9f:3d: 0f:ad:3e:20:80:9d:46:83:d7:08:09:b5:95:00:c1: 20:7d:4f:e6:9b:20:42:dd:26:1c:ec:46:a5:5b:53: ed:eb:82:af:45:b2:05:72:1b:78:60:69:7c:59:81: 98:29:1a:a2:17:b4:5c:19:7c:aa:52:3c:d8:d2:79: 39:70:48:1f:4e:b5:72:ee:73:23:90:b7:39:87:38: c3:ac:d0:b5:73:9f:d9:b9:d2:0f:66:0b:18:01:4f: 42:ec:cb:e0:02:4e:86:51:d6:61:12:83:64:a8:84: cf:68:51:09:e3:32:4c:8d:c5:a2:71:2a:5f:f3:77: 47:bd:96:ae:fb:d8:4b:9d:a6:6f:da:e5:de:3e:8f: bd:7d:92:82:d5:e8:da:26:8d:1e:4f:82:4b:5b:b1: 0b:44:ce:75:91:92:80:b9:2f:db:3d:e1:ec:01:80: 84:60:8c:58:43:3b:11:d7:99:39:7e:26:a2:33:a5: 1c:ae:2f:64:bd:73:f5:d0:79:51:ab:38:5f:c1:28: 5c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B5:CA:2D:25:68:8F:F0:98:1D:1A:9C:49:53:56:D2:BA:B9:3F:F4 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:de:bb:c1:5c:87:bf:a5:bf:ca:f7:6d:88:dd:32:63:9f:e4: 66:15:6e:92:02:c5:70:1a:3e:84:f3:a8:e7:39:a4:e9:56:c5: c6:2c:5a:3c:14:23:db:14:80:a8:cb:38:0a:f7:21:0d:b8:06: 86:e6:45:54:58:27:a3:bb:53:d1:b7:32:8e:37:78:8c:ed:a8: 0c:00:88:e1:35:e0:3a:9b:30:f8:22:d3:d7:02:93:d1:5f:8e: 3d:66:89:c2:62:fb:79:c5:0a:8b:bf:e9:4e:1c:1a:a6:ad:64: d8:41:64:16:df:02:93:71:a4:97:3b:09:66:0d:1c:76:b6:ea: dc:79:b4:c6:01:55:0a:84:21:d0:6c:65:99:1e:29:ad:f6:91: 24:e8:e5:40:4b:36:89:62:7e:43:9f:42:5c:08:39:27:78:6d: 21:5a:a9:22:81:8d:af:ec:ec:47:cb:66:5d:52:a2:ba:d8:bb: b1:dd:68:53:89:5d:a1:70:09:99:6c:70:a0:1d:c2:5e:f6:3b: 43:f6:66:e3:ec:11:52:70:b7:60:b1:0f:51:40:99:a9:d6:3b: b2:85:b0:c0:d7:a3:62:15:e2:f5:19:af:de:37:61:4e:01:f5: a9:96:e4:41:39:27:b4:2b:b8:bb:8c:9e:39:7a:e2:98:94:f7: c2:e7:7a:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjYwNDE3MDAzNjQ2WhcNMjYwNDI0MDAzNjQ2WjAYMRYwFAYD VQQDEw02OWUxODA5ZS0wYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44x/DlhhU1S1lRGVaCS8mF+w6eNCmG8QrI9fTZgfqDK4Dv/W4e+RE08zmfOI nn9RsbKVbFT0L1jfnz0PrT4ggJ1Gg9cICbWVAMEgfU/mmyBC3SYc7EalW1Pt64Kv RbIFcht4YGl8WYGYKRqiF7RcGXyqUjzY0nk5cEgfTrVy7nMjkLc5hzjDrNC1c5/Z udIPZgsYAU9C7MvgAk6GUdZhEoNkqITPaFEJ4zJMjcWicSpf83dHvZau+9hLnaZv 2uXePo+9fZKC1ejaJo0eT4JLW7ELRM51kZKAuS/bPeHsAYCEYIxYQzsR15k5fiai M6Ucri9kvXP10HlRqzhfwShcGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJC1yi0l aI/wmB0anElTVtK6uT/0MB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk967wVyHv6W/yvdtiN0yY5/kZhVukgLFcBo+hPOo5zmk6VbFxixaPBQj2xSA qMs4CvchDbgGhuZFVFgno7tT0bcyjjd4jO2oDACI4TXgOpsw+CLT1wKT0V+OPWaJ wmL7ecUKi7/pThwapq1k2EFkFt8Ck3GklzsJZg0cdrbq3Hm0xgFVCoQh0GxlmR4p rfaRJOjlQEs2iWJ+Q59CXAg5J3htIVqpIoGNr+zsR8tmXVKiuti7sd1oU4ldoXAJ mWxwoB3CXvY7Q/Zm4+wRUnC3YLEPUUCZqdY7soWwwNejYhXi9Rmv3jdhTgH1qZbk QTkntCu4u4yeOXrimJT3wud6ag== -----END CERTIFICATE-----Generated at Fri Apr 17 06:35:24 2026 by rpki-client