$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: sWlYpeoZJwnLRpI6BFcCJYlGTVGouVWL/t1s9h/X8Nw= Subject key identifier: 1F:F6:2D:50:3E:B8:E8:2B:8A:E3:9E:66:C0:D5:68:64:83:4A:0D:BF Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 2192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2177 Signing time: Mon 08 Sep 2025 15:54:25 +0000 Manifest this update: Mon 08 Sep 2025 15:54:25 +0000 Manifest next update: Mon 15 Sep 2025 15:54:25 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: vkXYHOL/hxK5KfD9cEb1q0T8mi1Fglch9L+0g8DfZO0=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8594 (0x2192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Sep 8 15:54:25 2025 GMT Not After : Sep 15 15:54:25 2025 GMT Subject: CN=68befc31-2d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:66:37:a3:e0:4d:e8:6e:c7:a7:90:f0:58: e3:22:fd:02:f2:3e:77:58:d9:2f:fb:57:f4:a5:16: bb:45:3e:04:f6:7c:e2:ab:03:3c:c9:de:de:70:b8: 19:7a:f8:45:60:84:63:b2:92:ef:b0:eb:09:3c:1c: a6:e0:60:48:15:92:1e:58:85:e2:5e:b0:e6:6a:35: 74:f2:b6:0d:21:6a:1b:82:4a:0f:57:34:8f:dd:02: e2:46:ee:8a:a4:6a:68:10:95:b2:38:24:4a:9e:3b: 9c:3f:0f:be:32:f3:1c:c8:7e:22:70:d8:48:01:5d: c2:65:e8:69:e9:b8:22:4f:16:ad:20:5c:07:0e:c6: e2:d9:a1:42:da:c2:0d:ad:08:71:f3:1f:1d:05:21: 50:6f:9e:5e:77:fa:3d:95:ea:c7:02:1f:83:a5:fb: 3f:b0:7e:4d:e8:8a:0d:10:f1:b2:b1:a1:23:94:34: f0:19:74:09:6b:a3:aa:80:45:1f:c4:27:42:f1:98: 73:a3:fb:14:a1:d2:e4:d9:5e:49:49:b2:9a:81:a1: 67:74:37:3d:33:0c:f9:a3:74:06:63:a8:6d:1a:c7: db:bd:98:a4:59:4b:41:5c:f9:89:fc:b1:e0:91:1b: 5b:60:dd:f5:28:5e:15:72:76:c6:c6:3a:63:ff:75: 50:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F6:2D:50:3E:B8:E8:2B:8A:E3:9E:66:C0:D5:68:64:83:4A:0D:BF X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ab:49:6c:e3:07:ad:fb:07:88:41:23:5c:12:f5:a8:b5:d3: 25:04:39:32:91:75:bf:66:d5:97:0f:4e:3c:28:9f:b4:69:57: c8:d4:7e:81:92:f2:57:43:fd:a5:68:09:4d:7f:e6:8b:2b:d2: 78:b0:91:28:2b:26:78:3e:a2:6c:8f:cb:f0:64:0b:da:d3:ed: 2d:7c:ff:78:86:65:0e:14:a9:fc:e5:2d:fb:cd:ec:22:1d:10: f3:d2:c0:83:f5:ba:37:8c:ed:b1:b9:3f:e7:8a:61:aa:0f:1d: a2:b0:3a:b9:8b:34:47:1e:62:9b:90:06:72:fd:f8:2b:a3:da: 49:55:be:6c:13:00:53:fe:88:5b:27:c5:1f:5d:e2:d6:cf:61: dd:a5:f9:7c:43:ee:5e:cb:89:6b:f6:ef:f7:fc:96:de:70:e3: 55:91:dc:7b:71:0f:ba:a4:e6:89:de:0a:0f:08:73:08:4f:9f: 33:2f:e5:c0:ee:dc:8f:5a:d3:3e:5c:78:99:f0:da:cd:94:15: 80:9f:fe:eb:31:4e:0d:0d:f6:04:52:00:f5:52:b8:49:55:e4: 84:25:94:e5:00:53:a4:d3:04:b8:31:cd:95:d1:a3:23:70:36: 64:7e:4c:be:eb:08:e5:de:94:dd:0c:de:e8:1f:ca:08:17:b2: c6:52:5a:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUwOTA4MTU1NDI1WhcNMjUwOTE1MTU1NDI1WjAYMRYwFAYD VQQDEw02OGJlZmMzMS0yZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhJmN6PgTehux6eQ8FjjIv0C8j53WNkv+1f0pRa7RT4E9nziqwM8yd7ecLgZ evhFYIRjspLvsOsJPBym4GBIFZIeWIXiXrDmajV08rYNIWobgkoPVzSP3QLiRu6K pGpoEJWyOCRKnjucPw++MvMcyH4icNhIAV3CZehp6bgiTxatIFwHDsbi2aFC2sIN rQhx8x8dBSFQb55ed/o9lerHAh+Dpfs/sH5N6IoNEPGysaEjlDTwGXQJa6OqgEUf xCdC8Zhzo/sUodLk2V5JSbKagaFndDc9Mwz5o3QGY6htGsfbvZikWUtBXPmJ/LHg kRtbYN31KF4VcnbGxjpj/3VQPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/2LVA+ uOgriuOeZsDVaGSDSg2/MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7q0ls4wet+weIQSNcEvWotdMlBDkykXW/ZtWXD048KJ+0aVfI1H6B kvJXQ/2laAlNf+aLK9J4sJEoKyZ4PqJsj8vwZAva0+0tfP94hmUOFKn85S37zewi HRDz0sCD9bo3jO2xuT/nimGqDx2isDq5izRHHmKbkAZy/fgro9pJVb5sEwBT/ohb J8UfXeLWz2Hdpfl8Q+5ey4lr9u/3/JbecONVkdx7cQ+6pOaJ3goPCHMIT58zL+XA 7tyPWtM+XHiZ8NrNlBWAn/7rMU4NDfYEUgD1UrhJVeSEJZTlAFOk0wS4Mc2V0aMj cDZkfky+6wjl3pTdDN7oH8oIF7LGUlpF -----END CERTIFICATE-----Generated at Tue Sep 9 13:34:01 2025 by rpki-client