$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft File: hwGGtlfRGymKhLAkIO504fu1woI.mft (raw, json) Hash identifier: CXvFpKOp/Xn5myXik3Aqic8OyzCT1FyAkfhGrq1HwRs= Subject key identifier: 9D:D2:AB:1F:22:E6:BD:74:DF:C9:9F:5C:12:D5:5E:A5:7B:D7:09:89 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft Manifest number: 018C Signing time: Wed 25 Mar 2026 03:42:32 +0000 Manifest this update: Wed 25 Mar 2026 03:42:32 +0000 Manifest next update: Wed 01 Apr 2026 03:42:32 +0000 Files and hashes: 1: hwGGtlfRGymKhLAkIO504fu1woI.crl (hash: 3UkSpCQ7YlMeUP9bOBlu+nC8Rns+vHmCAgVKDHhIgAE=) 2: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (hash: nklLe8rD44I5yJJy7aHPD+A/b+2jYTeXcDSJkM8vc6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:42:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Mar 25 03:42:32 2026 GMT Not After : Apr 1 03:42:32 2026 GMT Subject: CN=69c359a8-c0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9d:be:79:f7:d3:9b:73:9e:6e:95:6c:e6:2e: e7:fa:75:c3:65:7c:e2:50:7a:d0:07:90:6a:e0:92: d1:e0:70:a3:6f:89:6c:55:e2:4c:ae:1f:00:2e:56: 68:50:66:4f:3e:df:97:c3:7e:31:1a:bd:f2:49:3d: 62:a1:58:4e:70:19:b5:b0:96:ba:1b:6d:65:39:70: 64:a8:5c:2b:7d:69:4d:47:14:87:07:42:c8:ef:90: e6:f4:4c:69:86:34:ce:37:c9:16:00:07:e0:47:45: 9a:fe:2c:b1:0d:b7:e5:81:86:e6:70:04:15:ea:08: 80:f9:10:ae:f0:aa:28:69:6b:49:0f:10:55:e2:1f: c3:f9:06:30:ab:94:a3:41:c8:7e:55:55:ea:a6:af: 42:0c:0e:57:29:4f:c9:31:e8:e7:2b:5f:11:51:30: b8:16:83:89:a4:6c:0d:48:d3:40:b2:8e:11:4c:77: aa:60:8e:48:28:66:d7:70:f1:f5:21:7e:77:b5:f6: 50:e4:8b:f0:be:7e:43:a4:10:27:c0:8e:73:bf:d7: 41:35:d9:a1:ef:2d:a1:f5:c2:09:e0:88:37:5f:fc: fc:85:75:3f:6e:f9:4e:e4:78:bb:b3:da:ca:57:d2: fa:04:4f:62:b5:c7:3e:6d:0f:22:c6:43:e2:e7:5b: 0c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D2:AB:1F:22:E6:BD:74:DF:C9:9F:5C:12:D5:5E:A5:7B:D7:09:89 X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:cd:43:e7:c5:c2:5e:7b:a4:03:f3:7a:1b:f7:f0:2c:85:ac: 54:51:45:3e:e1:ad:1b:9d:b6:68:0b:22:9e:47:86:85:46:38: 07:10:c7:64:9a:ee:09:91:e2:f8:4b:57:a1:f7:c8:fc:76:50: 78:fa:e5:4f:d5:f1:79:df:ad:5c:ce:d6:a3:8f:1e:bc:4a:50: bd:b1:c3:4f:eb:08:21:67:a3:27:e2:1d:f8:f6:a6:f1:54:f1: 6b:fb:91:c8:57:f8:c0:59:8a:0e:76:3b:d7:64:a6:5d:1b:ac: bb:64:3d:50:c1:ca:12:91:98:7a:8c:b1:d2:a7:4c:9c:69:88: 2a:97:42:2e:fe:df:84:75:db:f0:6e:a9:91:81:e3:26:b6:a0: 0f:64:d8:c8:50:9f:0b:9a:bc:57:57:ad:2b:ef:5d:25:05:c6: 20:bc:68:d6:a9:16:29:16:c2:54:70:7b:00:ea:59:6e:9d:bb: 6e:dc:7f:7c:d7:df:0b:9f:e0:ba:a1:a4:fa:27:64:2e:86:58: 76:27:cc:15:c5:82:43:98:79:7b:fa:fa:db:d9:5e:89:f3:91: 84:0f:3c:66:5c:86:03:ec:9a:51:37:c6:e3:9f:a1:ba:8f:c9: d2:bb:68:ea:c8:2d:91:a3:d7:33:1a:2b:e4:26:06:f4:23:2e: a9:b8:28:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjYwMzI1MDM0MjMyWhcNMjYwNDAxMDM0MjMyWjAYMRYwFAYD VQQDEw02OWMzNTlhOC1jMGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsp2+effTm3OebpVs5i7n+nXDZXziUHrQB5Bq4JLR4HCjb4lsVeJMrh8ALlZo UGZPPt+Xw34xGr3yST1ioVhOcBm1sJa6G21lOXBkqFwrfWlNRxSHB0LI75Dm9Exp hjTON8kWAAfgR0Wa/iyxDbflgYbmcAQV6giA+RCu8KooaWtJDxBV4h/D+QYwq5Sj Qch+VVXqpq9CDA5XKU/JMejnK18RUTC4FoOJpGwNSNNAso4RTHeqYI5IKGbXcPH1 IX53tfZQ5Ivwvn5DpBAnwI5zv9dBNdmh7y2h9cIJ4Ig3X/z8hXU/bvlO5Hi7s9rK V9L6BE9itcc+bQ8ixkPi51sMywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ3Sqx8i 5r1038mfXBLVXqV71wmJMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4NS9ENUZFQTNERUM5RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5 bUtoTEFrSU81MDRmdTF3b0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcc1D58XCXnukA/N6G/fwLIWsVFFFPuGtG522aAsinkeGhUY4BxDHZJruCZHi +EtXoffI/HZQePrlT9Xxed+tXM7Wo48evEpQvbHDT+sIIWejJ+Id+Pam8VTxa/uR yFf4wFmKDnY712SmXRusu2Q9UMHKEpGYeoyx0qdMnGmIKpdCLv7fhHXb8G6pkYHj JragD2TYyFCfC5q8V1etK+9dJQXGILxo1qkWKRbCVHB7AOpZbp27btx/fNffC5/g uqGk+idkLoZYdifMFcWCQ5h5e/r629leifORhA88ZlyGA+yaUTfG45+huo/J0rto 6sgtkaPXMxor5CYG9CMuqbgo1g== -----END CERTIFICATE-----Generated at Thu Mar 26 19:04:13 2026 by rpki-client