$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: 5+LXQf3UvbF+fV2ocJb1L9fK+LWhEGxC9wgMTvFaEmQ= Subject key identifier: 45:BA:1B:92:3F:34:5C:AC:5E:19:B2:55:71:02:54:72:26:92:92:C0 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 02F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 02F5 Signing time: Fri 25 Apr 2025 01:03:40 +0000 Manifest this update: Fri 25 Apr 2025 01:03:39 +0000 Manifest next update: Fri 02 May 2025 01:03:39 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: iGNIZm7Ua1gtgGaDkPcSfaJDdFv7BX5Jgj09tRMYsUg=) 2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: tyU81tqa4w/chmwWDtJ/kbfsyW9fGaL62+VlH2ZbK30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Apr 25 01:03:39 2025 GMT Not After : May 2 01:03:39 2025 GMT Subject: CN=680adf6b-d865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c2:2c:ce:46:ad:fd:2f:77:c4:c8:26:5a:5c: 13:95:ec:35:11:26:39:e8:d9:45:d3:2d:16:30:ac: f2:c4:0e:2e:78:d8:25:20:86:56:7d:a2:b1:08:d8: 8b:b9:06:ea:1e:0c:76:4b:e5:d3:bd:44:2a:f1:92: 64:41:f9:d3:2a:7a:60:a7:32:7b:f7:92:38:a6:91: 91:20:70:7a:a7:5b:48:27:7f:87:00:4c:4e:25:18: 91:3a:e9:d7:01:c9:08:a9:9d:71:55:90:1f:a5:41: 89:b9:3f:de:53:a7:c7:bb:78:3c:23:8c:36:57:f6: c1:6d:e0:48:46:2f:de:d3:87:9c:0e:1b:36:50:9c: 1a:c4:3b:94:0d:4f:d1:6c:e6:59:14:da:55:f7:9a: 01:6d:12:38:e8:ad:c9:36:11:5c:53:f2:86:75:f4: 53:c8:6f:7d:a0:86:15:bc:3d:ac:64:4f:86:05:a2: 22:ea:82:8f:2c:4d:c8:d3:c4:da:0c:a6:2a:bf:6f: f3:37:36:45:3e:fa:4c:0b:bc:b3:dd:40:fc:c8:88: 37:59:91:76:9b:69:8d:20:25:11:1d:83:9d:94:db: 17:2a:ea:46:7e:2d:41:cf:43:3e:48:2d:a1:3e:33: 7c:3a:36:72:1b:1c:68:99:b3:cb:63:b2:bb:36:a3: c5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:BA:1B:92:3F:34:5C:AC:5E:19:B2:55:71:02:54:72:26:92:92:C0 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:53:a7:12:85:f8:ba:6f:25:8b:d1:62:95:73:02:77:d1:3a: 7e:10:ed:b0:0c:d4:3b:ec:d7:cf:e8:48:f0:3d:8c:8c:3e:b3: ca:27:c6:a8:b3:e3:70:b3:3b:24:db:b8:c7:0b:83:28:f6:46: 8c:57:0e:8c:9d:cb:0b:51:ba:e7:5b:7f:dc:b5:b9:7e:cc:94: a0:54:27:36:e0:cd:c4:28:dc:1d:30:bf:07:00:44:66:ad:9a: 43:92:a2:4a:c2:d0:9e:70:94:15:7f:59:79:d3:ed:78:d3:77: a6:bd:42:7b:6b:8f:82:22:28:92:ec:50:d5:cf:ab:c6:dd:79: 21:07:b8:87:35:87:fb:ec:a5:a8:39:b8:2e:e3:9b:d3:60:bd: c6:c1:26:6d:55:03:53:bb:fd:fb:22:94:02:3a:66:ce:0e:07: a1:48:fc:1e:bd:04:ea:0c:1f:e6:d5:fe:6e:48:30:27:f9:55: e2:72:8a:27:59:f1:19:fc:16:f0:e2:e7:8f:f1:f1:48:4c:8d: 8d:56:04:49:54:12:16:a4:cb:27:ac:d7:78:e7:e6:52:b6:3f: 37:88:38:55:ed:7c:26:78:2a:0e:f9:24:e0:0c:88:2a:d1:38: e6:98:fb:24:91:c6:4c:cd:44:dc:b6:53:1b:bd:e9:24:86:95: 4e:ae:3d:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNDI1MDEwMzM5WhcNMjUwNTAyMDEwMzM5WjAYMRYwFAYD VQQDEw02ODBhZGY2Yi1kODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MIszkat/S93xMgmWlwTlew1ESY56NlF0y0WMKzyxA4ueNglIIZWfaKxCNiL uQbqHgx2S+XTvUQq8ZJkQfnTKnpgpzJ795I4ppGRIHB6p1tIJ3+HAExOJRiROunX AckIqZ1xVZAfpUGJuT/eU6fHu3g8I4w2V/bBbeBIRi/e04ecDhs2UJwaxDuUDU/R bOZZFNpV95oBbRI46K3JNhFcU/KGdfRTyG99oIYVvD2sZE+GBaIi6oKPLE3I08Ta DKYqv2/zNzZFPvpMC7yz3UD8yIg3WZF2m2mNICURHYOdlNsXKupGfi1Bz0M+SC2h PjN8OjZyGxxombPLY7K7NqPFIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW6G5I/ NFysXhmyVXECVHImkpLAMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArU6cShfi6byWL0WKVcwJ30Tp+EO2wDNQ77NfP6EjwPYyMPrPKJ8ao s+Nwszsk27jHC4Mo9kaMVw6MncsLUbrnW3/ctbl+zJSgVCc24M3EKNwdML8HAERm rZpDkqJKwtCecJQVf1l50+1403emvUJ7a4+CIiiS7FDVz6vG3XkhB7iHNYf77KWo Obgu45vTYL3GwSZtVQNTu/37IpQCOmbODgehSPwevQTqDB/m1f5uSDAn+VXicoon WfEZ/Bbw4ueP8fFITI2NVgRJVBIWpMsnrNd45+ZStj83iDhV7XwmeCoO+STgDIgq 0TjmmPskkcZMzUTctlMbvekkhpVOrj13 -----END CERTIFICATE-----Generated at Sat Apr 26 13:43:42 2025 by rpki-client