$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: IfJbcAU1Q2Rj9AXHU0ntZQuk6iZvv9HdlePf+DbKsyQ= Subject key identifier: 7E:F6:52:E1:FC:5A:1A:F3:F0:8A:2F:F8:98:36:4E:C4:B7:D3:2A:ED Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 2141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2126 Signing time: Wed 02 Apr 2025 16:00:26 +0000 Manifest this update: Wed 02 Apr 2025 16:00:25 +0000 Manifest next update: Wed 09 Apr 2025 16:00:25 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: tuTdpYpMzufPXjlBpes3GrYZE4SbasPK4AXz3jk8Tyg=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8513 (0x2141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F Validity Not Before: Apr 2 16:00:25 2025 GMT Not After : Apr 9 16:00:25 2025 GMT Subject: CN=67ed5f19-62a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:48:ed:71:7c:75:02:27:a5:e5:9f:b3:0c:e3: 7f:06:ba:93:4c:04:a4:68:05:47:f0:eb:2d:71:42: c4:d1:13:da:e2:c2:9a:40:c5:0e:2b:8d:b9:06:fd: 1e:ae:43:20:36:ab:f5:f4:b2:9e:63:ed:68:78:ce: b3:fa:fb:61:12:98:89:a1:58:8b:11:1e:d4:79:b3: f0:08:f8:de:e1:ed:d3:6b:68:5a:ae:d8:d6:ee:e1: 0c:b1:3c:39:0c:54:b6:91:20:61:d4:b9:09:ed:1e: 1d:22:c2:ea:87:7a:9e:7e:32:a3:e4:5b:de:c1:ba: 28:3f:43:4d:08:99:33:65:f6:f7:89:05:da:36:c1: 65:f6:59:c2:c6:df:cb:dc:76:99:a5:3a:03:b3:6a: 66:14:45:77:49:4b:85:a1:54:5d:6a:f6:5e:d2:49: 84:2f:18:eb:6e:1f:f8:53:ce:81:be:9e:73:cd:1d: 8c:4c:f4:b2:57:a8:b4:bc:87:66:97:6f:70:e7:f9: d0:3e:06:c3:8f:82:28:f0:77:20:f1:58:24:3c:f4: 50:6f:33:3a:1e:c7:2c:7f:a6:ab:fd:a8:19:c8:35: 97:86:35:c2:5e:0a:8c:79:3d:aa:94:41:93:26:d6: a0:96:da:fc:28:0b:fb:f1:40:7e:34:28:e2:ae:ec: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F6:52:E1:FC:5A:1A:F3:F0:8A:2F:F8:98:36:4E:C4:B7:D3:2A:ED X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:08:04:04:c9:34:b3:d1:53:57:7d:6d:b0:7f:76:ff:e0:cb: 72:09:d7:16:b2:0e:ca:e8:ff:19:a5:71:4f:d7:cb:6a:ef:ee: d2:7b:38:aa:de:ec:f4:77:12:a0:cf:a0:8c:6b:24:0a:21:00: 05:e1:2a:47:2c:81:75:4a:21:9c:48:ad:64:e9:79:38:88:5c: 0e:3e:81:23:1f:c0:b8:0a:c6:16:dd:c1:4f:8f:95:cc:85:8b: 19:5f:02:d8:20:04:ba:e2:20:61:6c:fc:31:4b:6a:5d:28:c9: 21:43:87:bf:6a:88:cd:3c:55:2e:c5:4b:1b:b7:58:4f:4f:75: 94:ba:fe:f0:46:77:bb:e4:aa:44:2f:bf:c1:51:31:a0:03:7e: ef:c9:c5:3f:b0:56:06:73:00:74:91:21:76:5f:2f:2b:aa:f2: 74:25:9c:3a:3f:1b:b2:26:d9:41:f9:4b:6c:49:4d:90:94:cf: 00:ca:ed:40:c8:3a:5c:13:1d:3e:8a:94:57:a6:33:04:b9:92: ef:ce:ce:84:a1:f9:03:ba:db:4d:44:f9:73:8a:40:a1:50:fc: 6f:96:ee:cb:6a:3d:9e:03:3d:44:d0:58:52:a4:4e:13:62:fa: 0c:5f:3f:a6:65:66:74:f9:d0:dd:c5:19:bc:0b:69:c5:58:36: fa:48:35:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUwNDAyMTYwMDI1WhcNMjUwNDA5MTYwMDI1WjAYMRYwFAYD VQQDEw02N2VkNWYxOS02MmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UjtcXx1Aiel5Z+zDON/BrqTTASkaAVH8OstcULE0RPa4sKaQMUOK425Bv0e rkMgNqv19LKeY+1oeM6z+vthEpiJoViLER7UebPwCPje4e3Ta2hartjW7uEMsTw5 DFS2kSBh1LkJ7R4dIsLqh3qefjKj5FvewbooP0NNCJkzZfb3iQXaNsFl9lnCxt/L 3HaZpToDs2pmFEV3SUuFoVRdavZe0kmELxjrbh/4U86Bvp5zzR2MTPSyV6i0vIdm l29w5/nQPgbDj4Io8Hcg8VgkPPRQbzM6Hscsf6ar/agZyDWXhjXCXgqMeT2qlEGT Jtagltr8KAv78UB+NCjiruzU7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH72UuH8 Whrz8Iov+Jg2TsS30yrtMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNCAQEyTSz0VNXfW2wf3b/4MtyCdcWsg7K6P8ZpXFP18tq7+7Seziq 3uz0dxKgz6CMayQKIQAF4SpHLIF1SiGcSK1k6Xk4iFwOPoEjH8C4CsYW3cFPj5XM hYsZXwLYIAS64iBhbPwxS2pdKMkhQ4e/aojNPFUuxUsbt1hPT3WUuv7wRne75KpE L7/BUTGgA37vycU/sFYGcwB0kSF2Xy8rqvJ0JZw6PxuyJtlB+UtsSU2QlM8Ayu1A yDpcEx0+ipRXpjMEuZLvzs6EofkDuttNRPlzikChUPxvlu7Laj2eAz1E0FhSpE4T YvoMXz+mZWZ0+dDdxRm8C2nFWDb6SDVU -----END CERTIFICATE-----Generated at Fri Apr 4 18:18:29 2025 by rpki-client