$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: it8aI0m793R8dJYj7Dt1rZpC9lK/35IBgyxEI35YQHA= Subject key identifier: 91:36:16:E5:C2:22:33:00:CB:A3:AB:7D:EA:BE:BE:A5:EE:D8:7F:B7 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 215E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2143 Signing time: Fri 30 May 2025 16:06:27 +0000 Manifest this update: Fri 30 May 2025 16:06:26 +0000 Manifest next update: Fri 06 Jun 2025 16:06:26 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: pKXfLqdCuFC+rwkDOKsubI8Xwe/uhdwTxaHA3xfddFw=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8542 (0x215e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: May 30 16:06:26 2025 GMT Not After : Jun 6 16:06:26 2025 GMT Subject: CN=6839d783-8284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d6:2f:54:1f:53:a6:56:05:ac:5a:a8:a7:a6: 81:c0:24:e2:f7:61:59:fd:e8:32:94:13:0c:3a:99: b7:54:5f:0b:7b:0f:e1:bd:ee:42:4c:b1:67:7f:13: 7f:d5:76:eb:c1:7d:00:b1:79:48:70:02:0c:95:58: 36:0d:84:32:c1:45:4d:5f:39:65:ab:a9:7a:38:53: fe:52:3d:3e:b7:2d:4f:5e:23:b1:88:3d:1b:27:07: 4f:f6:08:fe:12:d1:b1:bd:70:5b:73:2a:48:72:9b: 5d:e8:83:36:1b:68:4a:15:a3:15:84:43:40:7b:2e: 8c:f6:ec:82:d2:f6:03:b2:96:f9:36:df:c0:20:a3: 5d:d2:b8:2b:7b:fd:a4:1f:14:82:3a:43:fd:74:b4: 6d:ac:d1:51:a5:d9:af:d3:ed:37:23:e5:a2:95:0f: b3:db:9d:bf:07:57:d5:72:19:ef:d9:15:cd:d7:97: ab:48:13:ed:4b:62:28:66:21:bd:cb:b3:de:d0:1c: a5:0c:da:ce:58:53:b2:09:6b:92:c5:28:dc:4f:75: f1:c7:91:1f:ba:31:86:7b:1b:ff:6a:72:2f:29:00: 33:79:ff:ad:3d:e7:78:16:c6:6f:94:79:ec:9b:e9: 27:a9:0a:2d:6f:15:d3:40:f7:21:ed:65:cb:9f:a6: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:36:16:E5:C2:22:33:00:CB:A3:AB:7D:EA:BE:BE:A5:EE:D8:7F:B7 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:3a:1c:1e:6c:56:1c:61:37:f4:4d:c0:ad:1d:5a:c5:db:96: c9:09:94:c5:87:4b:2e:28:a5:f8:e1:d5:41:4e:69:19:c2:bf: c0:82:c5:b0:1f:9e:8e:d6:d5:c4:72:0f:03:33:2f:b8:f0:69: 86:9e:3a:34:d7:0d:4c:1f:e4:db:1d:79:6c:02:64:03:cc:5a: 17:aa:9e:00:08:3d:18:d9:8b:1c:cb:02:dc:fe:83:f6:b2:fc: 2f:08:06:00:15:fc:88:1d:a2:cf:65:21:56:92:17:bc:4d:3a: d5:e5:a0:a9:d0:10:c9:e3:d7:9c:79:bd:6e:31:a8:05:49:89: d5:c7:a7:95:32:3b:70:2c:d4:8f:24:54:ae:8f:47:73:bb:b9: 16:62:51:6b:76:c0:eb:97:b2:40:0e:95:87:b7:09:3b:1f:e5: 97:58:ec:1c:5b:13:f2:4c:ae:b3:87:69:da:76:ca:95:b4:3e: 8c:40:d2:e3:11:33:db:10:c4:31:9b:73:d4:09:33:c3:9c:b0: 92:0b:9c:b7:86:be:c9:09:ed:e2:14:29:6d:0b:74:b8:e4:2e: 31:82:48:a2:e7:72:f6:51:09:6e:f3:4f:64:32:67:a8:2e:ba: 9d:97:f7:54:f9:49:df:08:6c:0c:a0:c0:db:50:fb:81:85:24: c4:95:f9:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUwNTMwMTYwNjI2WhcNMjUwNjA2MTYwNjI2WjAYMRYwFAYD VQQDEw02ODM5ZDc4My04Mjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09YvVB9TplYFrFqop6aBwCTi92FZ/egylBMMOpm3VF8Lew/hve5CTLFnfxN/ 1XbrwX0AsXlIcAIMlVg2DYQywUVNXzllq6l6OFP+Uj0+ty1PXiOxiD0bJwdP9gj+ EtGxvXBbcypIcptd6IM2G2hKFaMVhENAey6M9uyC0vYDspb5Nt/AIKNd0rgre/2k HxSCOkP9dLRtrNFRpdmv0+03I+WilQ+z252/B1fVchnv2RXN15erSBPtS2IoZiG9 y7Pe0BylDNrOWFOyCWuSxSjcT3Xxx5EfujGGexv/anIvKQAzef+tPed4FsZvlHns m+knqQotbxXTQPch7WXLn6bTpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE2FuXC IjMAy6Orfeq+vqXu2H+3MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlOhwebFYcYTf0TcCtHVrF25bJCZTFh0suKKX44dVBTmkZwr/AgsWw H56O1tXEcg8DMy+48GmGnjo01w1MH+TbHXlsAmQDzFoXqp4ACD0Y2YscywLc/oP2 svwvCAYAFfyIHaLPZSFWkhe8TTrV5aCp0BDJ49eceb1uMagFSYnVx6eVMjtwLNSP JFSuj0dzu7kWYlFrdsDrl7JADpWHtwk7H+WXWOwcWxPyTK6zh2nadsqVtD6MQNLj ETPbEMQxm3PUCTPDnLCSC5y3hr7JCe3iFCltC3S45C4xgkii53L2UQlu809kMmeo Lrqdl/dU+UnfCGwMoMDbUPuBhSTElfk9 -----END CERTIFICATE-----Generated at Sat May 31 17:03:32 2025 by rpki-client