$ rpki-client -vvf rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft File: HWGssMZyy01A7T6U08CbIMdFJa4.mft (raw, json) Hash identifier: HAxTVn2MjKNqU8TSgw5w1dtJUVKyTcPXqVVYacaSI7A= Subject key identifier: DB:DA:60:06:37:9D:42:F6:0C:27:F4:5E:C9:CB:43:14:DC:0C:1F:87 Authority key identifier: 1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE Certificate issuer: /CN=A9176BDB/serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Certificate serial: 031F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft Manifest number: 031A Signing time: Thu 03 Jul 2025 01:34:21 +0000 Manifest this update: Thu 03 Jul 2025 01:34:20 +0000 Manifest next update: Thu 10 Jul 2025 01:34:20 +0000 Files and hashes: 1: HWGssMZyy01A7T6U08CbIMdFJa4.crl (hash: SXWZX2n1muJxJvWRA4/jnEgEXirZI/O1UvKbFSx32uo=) 2: BE65DAF646FE11F083055C85C4F9AE02.roa (hash: AfEBQjKNnibN5CgqBIWTvGQoaqHakVqEmw/BNLJgfG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 799 (0x31f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176BDB, serialNumber=1D61ACB0C672CB4D40ED3E94D3C09B20C74525AE Validity Not Before: Jul 3 01:34:20 2025 GMT Not After : Jul 10 01:34:20 2025 GMT Subject: CN=6865de1d-96e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9e:63:b1:02:f4:bb:8e:a6:7e:f1:7e:5c:0f: 68:e6:47:3a:dd:16:19:fc:80:8d:1e:ad:b8:1b:09: 2d:f5:b5:98:9e:70:85:e4:5b:31:6f:19:36:36:63: 09:b5:2f:ce:92:7b:d8:68:ab:f5:0a:8d:44:d9:b6: 78:a7:0d:c8:21:c5:09:ee:1e:36:75:c3:d2:c1:3e: 2f:b3:51:93:18:02:73:66:29:3c:17:8d:90:4b:6a: 47:ff:37:b0:34:1e:3a:f1:f4:08:8b:b0:63:a3:8d: e2:f9:19:57:3b:6a:69:09:f9:2e:8d:b4:6d:03:0f: 5e:ab:37:d0:07:ce:36:58:4c:9a:1e:5e:cb:35:b5: 75:f4:1d:03:a2:c8:a8:53:9e:02:73:09:f5:83:73: 7a:7b:8b:e6:e9:51:80:81:14:21:8e:eb:85:30:b0: 2c:af:52:86:61:4c:6f:d1:f2:aa:35:58:7d:ab:ac: c9:bb:f6:2a:10:ff:d4:0a:a4:01:96:b9:6b:01:61: 60:38:20:3a:b6:62:38:c8:a6:56:f2:69:bf:55:71: d4:88:d5:6e:b3:c0:d3:1b:56:34:b9:85:ff:49:bb: 15:f1:df:fa:69:ae:d1:4f:b2:63:f8:52:cc:10:d0: 07:77:34:b4:bd:3a:90:d1:dd:37:88:dc:b7:cd:7e: ff:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:DA:60:06:37:9D:42:F6:0C:27:F4:5E:C9:CB:43:14:DC:0C:1F:87 X509v3 Authority Key Identifier: keyid:1D:61:AC:B0:C6:72:CB:4D:40:ED:3E:94:D3:C0:9B:20:C7:45:25:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HWGssMZyy01A7T6U08CbIMdFJa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176BDB/657E0F34D64B11ECAB20E36BC4F9AE02/HWGssMZyy01A7T6U08CbIMdFJa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:41:cd:77:d5:d1:16:dd:c9:a1:ec:d3:f8:7c:2f:54:9f:0f: 5a:6a:3d:aa:14:05:58:66:4f:0f:5c:78:c6:27:b0:f5:29:d1: fe:68:45:24:b6:5a:7f:89:4a:43:2b:85:76:f1:75:a1:6e:a2: 3f:e8:3d:7f:a8:6d:52:79:15:5a:61:4c:95:e5:38:40:55:47: c4:28:c8:04:53:81:53:ac:e1:b0:11:51:4a:ff:70:b4:64:32: b9:23:bd:56:43:72:41:97:81:12:b1:68:af:76:b9:b3:db:5b: 80:86:2c:7c:37:4e:3d:1d:a7:df:b8:d4:91:16:bf:c2:27:69: d3:4e:1c:9f:7f:4b:bc:4d:c6:c6:15:cb:ae:d0:b7:d7:f1:13: a4:bb:c8:3b:7b:4e:a7:85:ea:23:fa:02:41:00:f3:d8:71:ed: 37:71:79:ea:8c:1b:74:0d:c3:30:f4:40:c3:60:73:49:4b:d8: c2:cd:88:bb:f0:17:fd:64:d9:99:e5:e5:83:36:51:6b:25:c8: 73:68:7b:64:f9:30:fb:b2:29:7e:71:ab:17:51:b0:9b:ba:06: bd:72:41:30:1e:db:8d:c7:83:8c:e4:9b:93:c1:73:de:34:f6: 27:3a:14:37:71:2f:1c:6d:db:cf:8f:2b:17:51:62:8f:94:8e: 9f:0c:ee:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCREIxMTAvBgNVBAUTKDFENjFBQ0IwQzY3MkNCNEQ0MEVEM0U5NEQzQzA5QjIw Qzc0NTI1QUUwHhcNMjUwNzAzMDEzNDIwWhcNMjUwNzEwMDEzNDIwWjAYMRYwFAYD VQQDEw02ODY1ZGUxZC05NmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp5jsQL0u46mfvF+XA9o5kc63RYZ/ICNHq24Gwkt9bWYnnCF5Fsxbxk2NmMJ tS/OknvYaKv1Co1E2bZ4pw3IIcUJ7h42dcPSwT4vs1GTGAJzZik8F42QS2pH/zew NB468fQIi7Bjo43i+RlXO2ppCfkujbRtAw9eqzfQB842WEyaHl7LNbV19B0Dosio U54Ccwn1g3N6e4vm6VGAgRQhjuuFMLAsr1KGYUxv0fKqNVh9q6zJu/YqEP/UCqQB lrlrAWFgOCA6tmI4yKZW8mm/VXHUiNVus8DTG1Y0uYX/SbsV8d/6aa7RT7Jj+FLM ENAHdzS0vTqQ0d03iNy3zX7/SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNvaYAY3 nUL2DCf0XsnLQxTcDB+HMB8GA1UdIwQYMBaAFB1hrLDGcstNQO0+lNPAmyDHRSWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkJEQi82NTdFMEYzNEQ2 NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkwMUE3VDZVMDhDYklNZEZK YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hXR3NzTVp5eTAxQTdUNlUwOENiSU1kRkphNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkJEQi82NTdFMEYzNEQ2NEIxMUVDQUIyMEUzNkJDNEY5QUUwMi9IV0dzc01aeXkw MUE3VDZVMDhDYklNZEZKYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLQc131dEW3cmh7NP4fC9Unw9aaj2qFAVYZk8PXHjGJ7D1KdH+aEUk tlp/iUpDK4V28XWhbqI/6D1/qG1SeRVaYUyV5ThAVUfEKMgEU4FTrOGwEVFK/3C0 ZDK5I71WQ3JBl4ESsWivdrmz21uAhix8N049HaffuNSRFr/CJ2nTThyff0u8TcbG Fcuu0LfX8ROku8g7e06nheoj+gJBAPPYce03cXnqjBt0DcMw9EDDYHNJS9jCzYi7 8Bf9ZNmZ5eWDNlFrJchzaHtk+TD7sil+casXUbCbuga9ckEwHtuNx4OM5JuTwXPe NPYnOhQ3cS8cbdvPjysXUWKPlI6fDO7k -----END CERTIFICATE-----Generated at Thu Jul 3 16:52:47 2025 by rpki-client