$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: eHmfWmNJajmeRSYA6YAMvefcMjSnNy8ndslFyKVfL7Q= Subject key identifier: D0:F9:DF:BC:60:C2:6E:34:08:12:57:88:64:50:F7:26:AE:8A:A6:0B Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 214E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 2133 Signing time: Mon 28 Apr 2025 16:02:20 +0000 Manifest this update: Mon 28 Apr 2025 16:02:19 +0000 Manifest next update: Mon 05 May 2025 16:02:19 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: nLGss3bJwuEGO0aAJvr4LzMnQJ7Rw68ksHH4eoj/jyI=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: Ms90FxESevmJJSUHqdATBiDii797QEYyZU7sr0gTu+4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: Y1Cpa5UdPfcspNdJq+tFu9S//D6d+al37ZNPf+vz/uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8526 (0x214e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Apr 28 16:02:19 2025 GMT Not After : May 5 16:02:19 2025 GMT Subject: CN=680fa68c-ca5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3c:84:67:83:7c:92:bb:eb:e0:68:1f:7a:78: f1:75:21:a5:40:83:50:f9:9e:9d:1a:df:4e:cb:42: 4f:bf:ff:5c:eb:f5:32:2d:ba:f7:da:5c:d1:cb:7d: 43:12:e3:e4:80:be:7d:4a:09:7c:9d:82:86:7c:54: 8b:01:79:94:51:ac:7e:f9:8e:99:6c:ff:69:27:78: 33:68:09:cc:5a:7c:86:9f:a9:61:73:a8:f6:23:55: 15:9d:d7:47:64:68:3e:bd:52:b6:70:df:b2:60:8c: 9c:5a:26:28:73:5c:2a:d7:bb:fa:3d:1b:05:7a:e2: d2:f3:cd:f0:47:67:53:11:78:dd:d4:fe:15:3e:32: 63:bd:1d:ee:96:73:f5:84:d3:73:27:e1:5c:e1:3e: 47:50:60:f7:a0:0a:99:62:78:92:b7:ad:c3:5b:2b: a6:f6:81:fe:87:20:23:4e:60:e7:c7:2c:83:ec:8e: 13:02:10:c2:fa:a6:f3:85:d3:7e:c6:af:42:5b:c0: 24:14:35:24:98:5c:28:f1:c8:7b:ab:66:cc:82:c1: be:0d:58:b5:98:5f:d6:32:a4:a2:88:3d:83:be:bd: 42:12:fe:29:f5:cd:9d:22:f1:e9:06:45:37:bf:6f: 62:da:d4:d8:67:52:12:49:9f:d5:a3:38:69:77:94: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F9:DF:BC:60:C2:6E:34:08:12:57:88:64:50:F7:26:AE:8A:A6:0B X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:9a:29:c7:cf:37:03:c9:ac:8e:e7:55:50:db:89:8c:a0:79: 77:ed:05:38:e8:57:ec:0a:8a:70:7f:ed:3c:6a:bd:1f:41:75: 52:6d:b1:97:2d:72:ef:17:49:30:5d:8e:41:11:57:3c:88:0f: b3:ba:24:50:1b:2e:d7:53:e9:6e:b1:ea:3f:fb:c8:99:4b:86: ea:c3:f7:ff:26:d1:52:c7:5b:15:41:0d:e6:9e:98:ee:7d:86: cc:0e:33:39:bc:ac:e6:19:48:29:ae:e4:29:b7:44:3b:72:f8: 44:f6:ff:b8:3e:81:bc:77:e9:49:c1:56:65:ed:81:22:ce:a7: f6:25:d9:22:a1:76:9b:84:7b:2d:a8:7f:c8:2e:73:b1:a2:78: f8:e6:fa:bd:16:3b:a6:14:b5:bc:36:52:ce:a4:86:12:af:43: 92:8b:e0:1a:89:92:55:6f:16:2d:ac:ee:52:17:77:83:88:da: 2f:b6:11:fd:6b:ad:90:fb:d0:a7:f8:80:9e:2b:01:e6:83:12: c8:78:e7:f0:1a:0d:12:a6:e8:7c:01:41:8b:27:b7:fa:56:15: ca:74:df:dd:35:57:1e:e7:6e:1b:10:26:a9:08:e5:89:06:c6: 3d:0d:11:10:86:b8:46:e5:9a:73:aa:ec:0f:ac:67:e4:d1:47: 8b:f7:40:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUwNDI4MTYwMjE5WhcNMjUwNTA1MTYwMjE5WjAYMRYwFAYD VQQDEw02ODBmYTY4Yy1jYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTyEZ4N8krvr4GgfenjxdSGlQINQ+Z6dGt9Oy0JPv/9c6/UyLbr32lzRy31D EuPkgL59Sgl8nYKGfFSLAXmUUax++Y6ZbP9pJ3gzaAnMWnyGn6lhc6j2I1UVnddH ZGg+vVK2cN+yYIycWiYoc1wq17v6PRsFeuLS883wR2dTEXjd1P4VPjJjvR3ulnP1 hNNzJ+Fc4T5HUGD3oAqZYniSt63DWyum9oH+hyAjTmDnxyyD7I4TAhDC+qbzhdN+ xq9CW8AkFDUkmFwo8ch7q2bMgsG+DVi1mF/WMqSiiD2Dvr1CEv4p9c2dIvHpBkU3 v29i2tTYZ1ISSZ/Vozhpd5SafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND537xg wm40CBJXiGRQ9yauiqYLMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChminHzzcDyayO51VQ24mMoHl37QU46FfsCopwf+08ar0fQXVSbbGX LXLvF0kwXY5BEVc8iA+zuiRQGy7XU+luseo/+8iZS4bqw/f/JtFSx1sVQQ3mnpju fYbMDjM5vKzmGUgpruQpt0Q7cvhE9v+4PoG8d+lJwVZl7YEizqf2JdkioXabhHst qH/ILnOxonj45vq9FjumFLW8NlLOpIYSr0OSi+AaiZJVbxYtrO5SF3eDiNovthH9 a62Q+9Cn+ICeKwHmgxLIeOfwGg0Spuh8AUGLJ7f6VhXKdN/dNVce524bECapCOWJ BsY9DREQhrhG5ZpzquwPrGfk0UeL90Bn -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net