$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: suGTmNaN/3t/uMhkK5XEVvwQQEYFSRwZLfgEojPZs6A= Subject key identifier: A1:9A:55:15:B9:F9:2C:3A:B9:36:44:AB:99:4B:36:39:4B:B2:C4:53 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 035B Signing time: Mon 03 Nov 2025 00:56:00 +0000 Manifest this update: Mon 03 Nov 2025 00:55:59 +0000 Manifest next update: Mon 10 Nov 2025 00:55:59 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: zzLvD59jXpt5+fXVfU0e8oDt5Rg8qO+Juc9IDQud7us=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Nov 3 00:55:59 2025 GMT Not After : Nov 10 00:55:59 2025 GMT Subject: CN=6907fd9f-3a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2e:be:ad:eb:69:89:75:72:63:f9:ad:9b:23: 5a:8a:16:1b:fb:19:db:d2:aa:c0:50:69:bb:73:76: 76:a3:0b:d8:cc:6d:3e:07:9f:5d:76:8d:fd:51:91: 95:de:b5:b5:19:6f:55:6f:57:e1:4e:ac:e6:c3:d6: a8:2d:53:6c:c2:ee:ec:f4:c6:a9:82:0d:36:e8:7b: f0:62:28:51:ee:43:97:45:da:1b:67:63:3a:81:9c: ef:ef:1c:52:86:e3:21:91:55:ed:5a:e6:d8:33:e9: d8:29:7b:b3:b5:8f:d6:75:97:62:d2:a9:79:0e:50: 06:f4:c5:85:1c:b3:cb:d7:3c:03:c2:57:2a:c0:52: 90:e4:39:22:1f:07:2b:a5:3c:31:61:cc:50:1c:69: 12:07:13:79:ea:0b:9b:38:37:ce:91:db:9d:ca:ba: 2c:ff:72:14:23:1d:05:d0:80:ec:17:5b:b5:66:c6: e4:98:32:86:2c:2c:9b:90:5e:58:8d:b8:db:18:21: 9b:8b:0f:f0:5d:59:0f:1f:1d:65:b5:f4:ff:fd:b3: 56:15:c5:40:aa:44:d3:3b:47:9d:bc:39:b0:36:7c: 45:5e:e1:1c:0f:eb:84:2e:1f:2e:ed:79:c0:d4:df: 80:94:86:e7:71:7c:5e:32:3e:d3:b7:6a:48:c3:15: 2b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9A:55:15:B9:F9:2C:3A:B9:36:44:AB:99:4B:36:39:4B:B2:C4:53 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ac:f3:74:06:e8:51:8c:77:13:cf:e6:f6:d4:84:e0:85:79: f1:98:25:38:1f:8a:1e:31:7c:7a:d2:a3:79:b3:d9:f5:a2:75: 7d:69:f4:5d:fc:1e:7e:53:c3:f2:8c:63:b1:ac:d6:ba:46:64: ce:c3:74:d0:8e:49:a4:0e:47:ea:95:4f:aa:89:1a:6a:5a:6e: 89:a2:0e:c8:4e:1e:44:ab:27:a5:04:17:35:0a:38:96:db:77: 1c:a6:4e:7d:b0:2a:26:7d:24:1d:c0:c1:60:07:33:7d:17:2c: a2:85:49:f9:4e:98:91:4e:52:04:39:6e:54:0b:a6:ea:77:84: 0b:86:0d:2c:79:da:61:d9:8b:56:b9:bb:fc:9b:85:34:63:a2: 9f:6c:1a:18:20:76:21:9c:1e:1d:e0:aa:6c:7a:08:3a:2b:7d: 19:27:bf:10:4b:ed:c5:e5:35:ed:8a:3a:de:ff:f5:6c:38:9f: 77:2c:bd:90:f7:8c:32:a0:b1:de:34:a2:cc:26:54:00:d3:e7: fd:84:ea:9f:22:ce:bd:50:8e:69:1d:35:3e:28:2b:1a:68:9f: 6d:c4:89:9f:e7:9e:30:cb:e3:f9:93:12:63:be:61:d9:8c:2c: a0:18:a8:2a:88:de:10:a9:cb:1f:c0:08:49:04:20:ef:2c:2c: 7a:37:8d:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUxMTAzMDA1NTU5WhcNMjUxMTEwMDA1NTU5WjAYMRYwFAYD VQQDEw02OTA3ZmQ5Zi0zYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2C6+retpiXVyY/mtmyNaihYb+xnb0qrAUGm7c3Z2owvYzG0+B59ddo39UZGV 3rW1GW9Vb1fhTqzmw9aoLVNswu7s9Mapgg026HvwYihR7kOXRdobZ2M6gZzv7xxS huMhkVXtWubYM+nYKXuztY/WdZdi0ql5DlAG9MWFHLPL1zwDwlcqwFKQ5DkiHwcr pTwxYcxQHGkSBxN56gubODfOkdudyros/3IUIx0F0IDsF1u1ZsbkmDKGLCybkF5Y jbjbGCGbiw/wXVkPHx1ltfT//bNWFcVAqkTTO0edvDmwNnxFXuEcD+uELh8u7XnA 1N+AlIbncXxeMj7Tt2pIwxUrFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGaVRW5 +Sw6uTZEq5lLNjlLssRTMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtrPN0BuhRjHcTz+b21ITghXnxmCU4H4oeMXx60qN5s9n1onV9afRd /B5+U8PyjGOxrNa6RmTOw3TQjkmkDkfqlU+qiRpqWm6Jog7ITh5EqyelBBc1CjiW 23ccpk59sComfSQdwMFgBzN9FyyihUn5TpiRTlIEOW5UC6bqd4QLhg0sedph2YtW ubv8m4U0Y6KfbBoYIHYhnB4d4Kpsegg6K30ZJ78QS+3F5TXtijre//VsOJ93LL2Q 94wyoLHeNKLMJlQA0+f9hOqfIs69UI5pHTU+KCsaaJ9txImf554wy+P5kxJjvmHZ jCygGKgqiN4QqcsfwAhJBCDvLCx6N43t -----END CERTIFICATE-----Generated at Tue Nov 4 21:31:47 2025 by rpki-client