$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: cIhRPWzjFXPXcK0SZtnBGAY2hQqv+K7IpxygayCioU4= Subject key identifier: 67:2B:DC:62:45:3E:9F:2E:D6:48:82:FF:EA:C2:DA:28:80:0C:1A:DD Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 209A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2081 Signing time: Sat 18 May 2024 16:17:33 +0000 Manifest this update: Sat 18 May 2024 16:17:32 +0000 Manifest next update: Sat 25 May 2024 16:17:32 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: LoWhLqgoDLEOyF+G0jrADGhUbUv0kzYLk70EiOxZZxY=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: s53j2skJsnDb4ejjn3tNze/p8sESg8UDFgbdXAnasB4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: P4AZv++I8EWWlQck4s2dxs4RaVdYX4EVzJLdNjcAR5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8346 (0x209a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: May 18 16:17:32 2024 GMT Not After : May 25 16:17:32 2024 GMT Subject: CN=6648d49c-3041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:df:70:83:eb:a5:55:a9:95:0d:53:9d:22: a0:ab:aa:62:d3:dd:e2:3d:33:49:53:e5:7d:bf:02: 93:a5:b4:16:a9:92:b0:4d:d0:76:7b:db:76:9f:26: b7:af:4c:6c:be:54:d3:20:15:f9:1c:b7:30:8d:ad: 07:32:d2:cf:63:4c:e6:f4:1e:2b:c6:fa:88:5c:ef: 7c:46:2c:d9:a0:7d:dd:f0:71:ac:46:db:13:c7:a1: 42:5c:5d:14:7c:1f:fe:38:66:9c:ba:39:87:2c:4a: 27:f6:3b:70:bf:d1:ea:6e:35:31:9d:de:da:ef:14: 1f:d2:35:e1:70:33:66:e9:11:17:b5:8d:54:d1:52: 47:7d:c8:e7:f0:be:a6:98:2e:57:50:9d:96:6c:53: 95:9c:84:74:0b:d5:34:11:98:05:19:44:08:6e:d9: 90:bc:2d:9a:88:e7:83:d2:0f:a8:11:55:7a:43:a8: 56:a7:cb:fa:3e:8c:d9:44:fa:ef:9c:f4:3f:39:25: a8:c0:35:c4:52:67:9c:bd:9a:fa:64:45:57:fe:56: 69:e9:f0:5c:80:05:1b:71:15:a3:d9:5c:08:c1:88: 13:5d:2e:81:f1:0d:b5:56:2e:44:52:42:3d:a3:48: 71:fe:b0:ee:b8:6d:32:da:e7:a4:0b:bd:36:d8:48: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2B:DC:62:45:3E:9F:2E:D6:48:82:FF:EA:C2:DA:28:80:0C:1A:DD X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3a:25:cf:29:3d:53:88:60:d8:cc:5f:42:58:8d:c0:b9:0c: 28:af:60:9c:a3:39:b4:f0:5c:91:9e:51:21:f2:2c:f4:8e:46: 80:8a:15:30:0d:4d:2c:6f:e0:9a:40:1a:f5:cb:48:5b:03:4d: 27:cd:fa:24:4e:9b:64:44:6c:ab:54:d6:99:db:8d:ff:d8:5a: be:43:2f:7a:f3:d7:db:55:6a:71:66:a0:4d:3d:b3:a9:0c:2a: b1:33:bc:fb:be:90:67:b4:76:31:8d:4f:e5:13:a6:00:a0:f4: 61:17:4e:d0:4d:b2:30:36:9b:b8:8f:f5:55:cd:7f:ff:e8:e0: 36:bb:d8:1d:ae:d5:a5:42:40:a0:5c:c9:43:94:bc:25:6e:3d: 23:51:22:0c:78:43:62:b1:1f:c9:30:45:47:25:ed:ef:d5:35: 96:87:89:1f:57:31:69:9d:dd:de:bf:30:96:93:26:21:dc:a0: 4d:68:ce:7d:7e:90:12:24:50:cf:d0:76:82:1d:63:d9:37:f2: 52:8a:7e:ca:d5:e0:b3:a5:eb:4d:cf:de:10:13:c6:49:85:3c: c8:a1:e3:af:98:85:be:ad:6b:0d:1d:0a:97:85:f6:6d:dd:f7: 7e:86:2c:6b:3e:0b:fc:82:77:ac:37:5c:91:ef:6c:98:f5:17: ab:0d:ea:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjQwNTE4MTYxNzMyWhcNMjQwNTI1MTYxNzMyWjAYMRYwFAYD VQQDEw02NjQ4ZDQ5Yy0zMDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteffcIPrpVWplQ1TnSKgq6pi093iPTNJU+V9vwKTpbQWqZKwTdB2e9t2nya3 r0xsvlTTIBX5HLcwja0HMtLPY0zm9B4rxvqIXO98RizZoH3d8HGsRtsTx6FCXF0U fB/+OGacujmHLEon9jtwv9HqbjUxnd7a7xQf0jXhcDNm6REXtY1U0VJHfcjn8L6m mC5XUJ2WbFOVnIR0C9U0EZgFGUQIbtmQvC2aiOeD0g+oEVV6Q6hWp8v6PozZRPrv nPQ/OSWowDXEUmecvZr6ZEVX/lZp6fBcgAUbcRWj2VwIwYgTXS6B8Q21Vi5EUkI9 o0hx/rDuuG0y2uekC7022EgX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcr3GJF Pp8u1kiC/+rC2iiADBrdMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaOiXPKT1TiGDYzF9CWI3AuQwor2Ccozm08FyRnlEh8iz0jkaAihUw DU0sb+CaQBr1y0hbA00nzfokTptkRGyrVNaZ243/2Fq+Qy9689fbVWpxZqBNPbOp DCqxM7z7vpBntHYxjU/lE6YAoPRhF07QTbIwNpu4j/VVzX//6OA2u9gdrtWlQkCg XMlDlLwlbj0jUSIMeENisR/JMEVHJe3v1TWWh4kfVzFpnd3evzCWkyYh3KBNaM59 fpASJFDP0HaCHWPZN/JSin7K1eCzpetNz94QE8ZJhTzIoeOvmIW+rWsNHQqXhfZt 3fd+hixrPgv8gnesN1yR72yY9RerDeoc -----END CERTIFICATE-----Generated at Sat May 18 17:20:35 2024 by rpki-client on console-ams.rpki-client.org