$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: JMDoLA4sznl/QJTsTIzWN3HOaEn2PhBxnEZ1II1hwh0= Subject key identifier: 61:80:3E:23:C7:89:C9:F4:BC:25:49:2C:16:B5:46:9C:C6:91:60:03 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 02FE Signing time: Tue 13 May 2025 01:04:05 +0000 Manifest this update: Tue 13 May 2025 01:04:05 +0000 Manifest next update: Tue 20 May 2025 01:04:05 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: n9tVU5AxLKBnuZ8gcrnF4Cw/JvS3eC3wQ8b1Ji6tDqY=) 2: 7704C7B0D65111EC8F5E2576C4F9AE02.roa (hash: tyU81tqa4w/chmwWDtJ/kbfsyW9fGaL62+VlH2ZbK30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: May 13 01:04:05 2025 GMT Not After : May 20 01:04:05 2025 GMT Subject: CN=68229a85-3007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:2a:b1:36:fb:01:24:cf:9d:e2:71:93:87: ea:c1:ac:99:bf:10:3e:fc:ae:b9:20:ed:8b:4f:64: c6:59:dc:8c:81:df:de:c4:15:75:ff:62:82:4e:4e: 25:78:94:cd:7f:71:10:a5:e8:d1:e2:ab:67:27:ab: c6:a1:a4:32:95:50:ad:5d:f2:59:fe:98:10:20:bd: 80:f7:56:49:d1:44:fa:e5:ab:9a:6f:1d:73:06:1e: 9d:61:e5:bf:0e:33:c4:05:1a:13:67:d8:50:16:d5: 70:2f:64:f5:48:9e:9b:be:ef:17:c0:76:10:c5:6f: 38:a7:4d:de:52:d3:9b:d8:e3:fc:bc:9a:9d:e3:27: 71:74:45:90:70:1c:97:02:d3:9a:20:79:d1:64:10: 6e:e5:60:11:45:14:a0:5f:4e:60:63:2d:92:f1:9e: fd:67:22:09:95:8b:e2:fa:c8:91:92:ee:e3:7d:3c: be:eb:e1:b3:c1:8d:0e:c0:db:71:ac:f2:4c:ad:a4: 34:ec:b0:79:88:2c:b9:34:ca:6a:28:01:c3:2d:c9: c3:77:d1:41:28:61:48:8c:aa:08:d6:c6:f4:ed:db: 3c:32:ce:a7:ec:ec:e7:55:c0:3a:c4:13:cf:01:53: dd:13:3c:41:98:a6:4f:aa:9c:5a:10:0d:17:11:97: cc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:80:3E:23:C7:89:C9:F4:BC:25:49:2C:16:B5:46:9C:C6:91:60:03 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:cd:77:59:7d:0f:8c:c4:92:2c:84:a9:62:38:1f:aa:72:55: 51:ba:7e:03:b5:94:65:a9:73:af:3c:12:38:4f:e8:15:73:1e: 70:ad:e2:14:3a:ef:5c:76:07:df:81:0e:2d:d8:98:1f:40:17: 46:d2:73:0e:85:a2:ce:58:6a:da:bf:6f:2f:67:73:40:fb:20: 4d:23:e9:33:6d:b5:81:e6:52:37:d5:1d:90:0e:fc:cd:bf:6d: 41:43:a3:c9:ad:84:20:d1:c9:b0:ec:34:d1:02:96:65:55:1b: 87:04:85:7e:ea:71:5d:eb:07:2b:e1:f5:c6:7f:d3:cb:7a:90: 78:93:ae:99:0a:c5:7c:41:3f:6d:c4:5a:17:3c:38:90:5f:59: c4:8d:4f:64:df:01:ee:bf:db:5e:55:a3:8a:8a:44:46:6b:0b: d7:b3:48:5b:d0:e4:a9:e2:95:18:f0:98:c8:92:54:91:9e:75: 72:cd:ed:66:3a:a9:d1:ec:aa:a3:a5:f7:e9:53:e5:26:e2:7d: 2d:6e:73:24:2c:92:5a:ce:ae:d7:65:af:3c:aa:ba:79:fa:22: 0c:d6:24:24:87:8e:67:79:39:9a:07:a6:04:f9:56:14:30:ca: 93:1b:f9:0e:a5:cc:5c:69:e7:04:ec:ac:26:d7:56:ef:42:32: 20:3a:b3:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNTEzMDEwNDA1WhcNMjUwNTIwMDEwNDA1WjAYMRYwFAYD VQQDEw02ODIyOWE4NS0zMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU4qsTb7ASTPneJxk4fqwayZvxA+/K65IO2LT2TGWdyMgd/exBV1/2KCTk4l eJTNf3EQpejR4qtnJ6vGoaQylVCtXfJZ/pgQIL2A91ZJ0UT65auabx1zBh6dYeW/ DjPEBRoTZ9hQFtVwL2T1SJ6bvu8XwHYQxW84p03eUtOb2OP8vJqd4ydxdEWQcByX AtOaIHnRZBBu5WARRRSgX05gYy2S8Z79ZyIJlYvi+siRku7jfTy+6+GzwY0OwNtx rPJMraQ07LB5iCy5NMpqKAHDLcnDd9FBKGFIjKoI1sb07ds8Ms6n7OznVcA6xBPP AVPdEzxBmKZPqpxaEA0XEZfMlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGAPiPH icn0vCVJLBa1RpzGkWADMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdzXdZfQ+MxJIshKliOB+qclVRun4DtZRlqXOvPBI4T+gVcx5wreIU Ou9cdgffgQ4t2JgfQBdG0nMOhaLOWGrav28vZ3NA+yBNI+kzbbWB5lI31R2QDvzN v21BQ6PJrYQg0cmw7DTRApZlVRuHBIV+6nFd6wcr4fXGf9PLepB4k66ZCsV8QT9t xFoXPDiQX1nEjU9k3wHuv9teVaOKikRGawvXs0hb0OSp4pUY8JjIklSRnnVyze1m OqnR7KqjpffpU+Um4n0tbnMkLJJazq7XZa88qrp5+iIM1iQkh45neTmaB6YE+VYU MMqTG/kOpcxcaecE7Kwm11bvQjIgOrOy -----END CERTIFICATE-----Generated at Tue May 13 08:07:13 2025 by rpki-client