$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: 9yWEEJ2eXQ2euu/jyPEPaP2nfgvjiJCHB4OIlUUKdCY= Subject key identifier: 7E:95:DA:60:E4:56:1F:29:F0:23:75:B7:36:7F:BA:89:D8:70:44:E4 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 0330 Signing time: Sat 09 Aug 2025 01:40:13 +0000 Manifest this update: Sat 09 Aug 2025 01:40:12 +0000 Manifest next update: Sat 16 Aug 2025 01:40:12 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: YKJmkymQe4nNNqA9XYvCYirBJEJ9zw5UWLQQhSNX0aE=) 2: CBA514345AD611F0B344B779C4F9AE02.roa (hash: J8n4mPedZrA/XF+XvL0Z511Ein+0uaP3PjSJKtqS6XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Aug 9 01:40:12 2025 GMT Not After : Aug 16 01:40:12 2025 GMT Subject: CN=6896a6fd-e248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:28:3d:a9:70:87:59:25:13:c6:8f:b1:e3: 36:d9:ca:a1:15:ad:bd:24:d1:59:41:0b:fe:a3:58: 53:a8:6e:6d:58:8c:be:76:c0:17:ec:f5:6b:8a:6b: c7:fa:af:f0:bc:16:50:86:01:3c:0c:37:05:d0:27: 41:3a:85:52:f4:c1:33:d6:5c:3b:56:68:f2:3a:2a: 56:7f:70:ca:97:7b:b1:c2:d0:d0:49:e0:5a:6d:d9: 23:fc:87:86:1f:07:a2:d2:1f:9d:b0:08:5f:de:7d: 97:b1:ea:b9:d9:ae:21:94:28:46:b0:a6:67:5a:1d: 03:15:d8:a4:21:a4:0e:21:8a:39:ba:fe:86:82:32: 36:b1:2e:80:df:be:34:b9:78:e8:8c:96:d8:de:08: 86:c8:73:1a:38:9e:ec:46:3d:42:5b:3d:5a:1e:e4: fb:ae:70:62:66:c9:4d:5f:ea:47:d2:d0:40:fe:77: 54:eb:9f:4c:e2:5c:04:82:25:d6:e6:57:c6:01:70: fa:e6:bf:fc:e5:9a:26:f8:f5:82:8f:84:f1:92:f5: f6:e6:98:fb:bb:fa:44:25:9d:87:4b:37:c1:6a:d4: dd:e0:d3:14:bf:18:a2:98:a2:9e:e5:39:99:1a:86: ef:7c:1c:55:d8:c7:23:fa:12:95:8d:2a:57:36:75: 83:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:95:DA:60:E4:56:1F:29:F0:23:75:B7:36:7F:BA:89:D8:70:44:E4 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:76:40:fa:83:11:f9:02:80:13:93:48:5f:82:26:07:2e:ab: a4:7a:ea:60:ec:de:c9:df:d6:50:bf:df:ed:ad:45:fe:29:43: 9d:86:26:04:61:9f:55:a1:ca:25:e5:8b:87:07:3f:78:dc:2c: 9f:91:aa:44:6a:c4:a0:04:4f:7d:1e:fc:5a:36:f2:f5:3b:f1: 5f:5a:c9:e6:e1:25:ea:e5:7d:42:58:bc:9f:90:60:32:05:46: 26:52:70:c9:dd:b8:15:cb:7f:b7:e2:20:3f:da:38:9b:21:2e: de:46:5e:4e:eb:3a:2e:62:5f:ee:4f:2d:bf:10:6e:29:b1:3f: cc:a0:fc:0d:a1:c7:17:f6:bc:e8:73:7b:45:d6:30:bb:91:db: 7c:61:c2:1a:a8:ad:58:d1:b0:59:56:67:ac:3b:1e:77:44:39: c3:b0:fd:00:18:66:bf:f2:36:71:53:b6:95:80:56:cf:27:f0: 5b:9a:95:87:7c:5d:d7:a5:f8:8c:aa:f3:2b:39:47:10:5c:12: ac:1a:de:fb:d4:31:89:24:98:7a:8c:d7:db:52:5f:db:e5:4a: 13:52:e1:a2:0b:d1:9b:53:e3:16:9d:e7:0f:dd:01:0c:8a:dd: 72:8b:19:25:52:37:1d:27:07:05:31:e0:2e:d7:a2:4b:21:5e: 86:d2:2d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwODA5MDE0MDEyWhcNMjUwODE2MDE0MDEyWjAYMRYwFAYD VQQDEw02ODk2YTZmZC1lMjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3coPalwh1klE8aPseM22cqhFa29JNFZQQv+o1hTqG5tWIy+dsAX7PVrimvH +q/wvBZQhgE8DDcF0CdBOoVS9MEz1lw7VmjyOipWf3DKl3uxwtDQSeBabdkj/IeG Hwei0h+dsAhf3n2Xseq52a4hlChGsKZnWh0DFdikIaQOIYo5uv6GgjI2sS6A3740 uXjojJbY3giGyHMaOJ7sRj1CWz1aHuT7rnBiZslNX+pH0tBA/ndU659M4lwEgiXW 5lfGAXD65r/85Zom+PWCj4TxkvX25pj7u/pEJZ2HSzfBatTd4NMUvxiimKKe5TmZ GobvfBxV2Mcj+hKVjSpXNnWDGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6V2mDk Vh8p8CN1tzZ/uonYcETkMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgdkD6gxH5AoATk0hfgiYHLqukeupg7N7J39ZQv9/trUX+KUOdhiYE YZ9Vocol5YuHBz943CyfkapEasSgBE99HvxaNvL1O/FfWsnm4SXq5X1CWLyfkGAy BUYmUnDJ3bgVy3+34iA/2jibIS7eRl5O6zouYl/uTy2/EG4psT/MoPwNoccX9rzo c3tF1jC7kdt8YcIaqK1Y0bBZVmesOx53RDnDsP0AGGa/8jZxU7aVgFbPJ/BbmpWH fF3XpfiMqvMrOUcQXBKsGt771DGJJJh6jNfbUl/b5UoTUuGiC9GbU+MWnecP3QEM it1yixklUjcdJwcFMeAu16JLIV6G0i3h -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:53 2025 by rpki-client