$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: z6mS64IFZJyPdeEdFw9CwWlOZ9cqbPbVO7PlbRPYFGA= Subject key identifier: 93:2E:30:B9:96:F6:79:92:A5:B2:1D:EA:08:8A:50:2E:6E:00:BC:61 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 21B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2194 Signing time: Sun 02 Nov 2025 15:55:25 +0000 Manifest this update: Sun 02 Nov 2025 15:55:24 +0000 Manifest next update: Sun 09 Nov 2025 15:55:24 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: CJqU00bzZDNgbrSWzQ6t6ZdHuTxn2zchRLC8o6Edai4=) 2: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (hash: lQXg+x/pxYEw6RZp1vPPXfhhm8xX80IO6STDBaCkyJw=) 3: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 4: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8624 (0x21b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Nov 2 15:55:24 2025 GMT Not After : Nov 9 15:55:24 2025 GMT Subject: CN=69077eed-66ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4c:a1:94:69:c9:56:d0:eb:03:5a:27:3d:62: ff:d1:11:57:73:ea:91:9a:da:6b:f5:89:00:2d:02: 45:3b:d9:01:da:3f:8d:e8:a1:f6:9b:3e:f7:d9:ce: 8d:3e:27:ef:50:01:64:03:c2:e7:77:79:cd:07:23: 4c:18:cb:dc:3e:04:e1:57:14:e3:68:0c:3d:4c:f6: a3:7d:11:26:d8:e4:bf:14:0b:57:a8:5a:87:19:86: 82:d2:5f:a3:8d:f6:0c:11:7f:57:03:63:4e:15:7a: b2:85:e8:7f:7d:55:cc:de:34:b5:f6:47:28:35:7a: e6:ae:3e:de:03:52:da:45:54:7f:c2:96:51:13:6b: 63:d6:07:7f:1f:cc:4d:b7:3a:af:43:86:e1:4c:17: 66:58:0e:ac:d4:fe:52:a1:c0:42:e5:95:f5:a2:67: 89:58:e2:e3:6d:f8:08:46:eb:0d:f1:4f:a0:d4:73: 5e:6a:ee:f9:2c:b7:bc:e8:a4:3f:31:d4:c9:eb:cc: 71:d8:d4:98:c1:f7:6b:ae:b6:f2:f0:6b:8f:cb:97: ad:7e:78:11:b6:fc:35:8c:54:91:71:d0:8c:fa:f1: 02:5d:fc:a1:30:1d:60:09:22:ba:fb:80:9d:5c:9d: ef:b2:4d:be:67:ae:9b:13:46:df:98:a4:5a:88:95: 05:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2E:30:B9:96:F6:79:92:A5:B2:1D:EA:08:8A:50:2E:6E:00:BC:61 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:07:e0:f0:1e:61:4a:1a:f4:95:ca:41:cf:75:8e:bf:1d:0b: a8:79:e9:fa:91:9f:5a:b5:7a:cd:c3:8c:aa:da:51:9d:2c:82: b2:8c:31:c4:40:12:c2:83:05:48:f2:3f:86:38:e4:86:fe:81: 85:2e:52:de:21:99:6a:c9:15:5d:a0:09:68:6b:8e:40:4a:f5: 3e:93:09:c3:b8:01:77:e0:5c:08:6d:64:b9:63:a1:6a:b6:0c: b1:2c:8f:fe:b5:3b:12:a5:41:bc:5e:20:2b:d9:e3:98:07:f9: 68:68:d9:54:aa:78:86:28:2f:95:18:b0:ee:ff:34:c5:be:c8: f4:b6:09:97:33:f6:c8:e8:40:4d:c5:45:33:fc:e2:7b:0d:6c: b9:47:c5:9b:d5:06:d7:04:74:9d:a4:70:f2:cf:c3:1d:d8:04: 11:69:d5:a5:e9:be:f5:f7:0d:73:55:e9:8b:81:54:39:a9:74: a7:e5:f5:44:78:9f:43:74:bb:14:0c:d2:a2:ee:04:5d:0d:5d: 4d:75:5e:f1:b6:af:27:d5:0e:ad:46:e2:78:b3:c0:11:25:77: 1d:c0:4f:ce:6a:ee:06:d6:c4:5d:0b:c4:ff:aa:d6:0c:91:20: a0:f9:4f:4c:e1:23:ea:5c:9c:4a:1a:7a:60:ef:7b:97:86:49: 21:8a:11:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUxMTAyMTU1NTI0WhcNMjUxMTA5MTU1NTI0WjAYMRYwFAYD VQQDEw02OTA3N2VlZC02NmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUyhlGnJVtDrA1onPWL/0RFXc+qRmtpr9YkALQJFO9kB2j+N6KH2mz732c6N PifvUAFkA8Lnd3nNByNMGMvcPgThVxTjaAw9TPajfREm2OS/FAtXqFqHGYaC0l+j jfYMEX9XA2NOFXqyheh/fVXM3jS19kcoNXrmrj7eA1LaRVR/wpZRE2tj1gd/H8xN tzqvQ4bhTBdmWA6s1P5SocBC5ZX1omeJWOLjbfgIRusN8U+g1HNeau75LLe86KQ/ MdTJ68xx2NSYwfdrrrby8GuPy5etfngRtvw1jFSRcdCM+vECXfyhMB1gCSK6+4Cd XJ3vsk2+Z66bE0bfmKRaiJUFVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMuMLmW 9nmSpbId6giKUC5uALxhMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWB+DwHmFKGvSVykHPdY6/HQuoeen6kZ9atXrNw4yq2lGdLIKyjDHE QBLCgwVI8j+GOOSG/oGFLlLeIZlqyRVdoAloa45ASvU+kwnDuAF34FwIbWS5Y6Fq tgyxLI/+tTsSpUG8XiAr2eOYB/loaNlUqniGKC+VGLDu/zTFvsj0tgmXM/bI6EBN xUUz/OJ7DWy5R8Wb1QbXBHSdpHDyz8Md2AQRadWl6b719w1zVemLgVQ5qXSn5fVE eJ9DdLsUDNKi7gRdDV1NdV7xtq8n1Q6tRuJ4s8ARJXcdwE/Oau4G1sRdC8T/qtYM kSCg+U9M4SPqXJxKGnpg73uXhkkhihEV -----END CERTIFICATE-----Generated at Mon Nov 3 10:16:45 2025 by rpki-client