$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: 3Ujl6fBAILLgHNvzLpKeBbY2Jvef2KwMNxGy8gDBh04= Subject key identifier: B6:8C:62:88:EE:01:34:BE:99:1F:D1:C1:EB:B4:46:A3:10:EA:7A:B6 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 0612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 0607 Signing time: Sun 19 Oct 2025 00:30:38 +0000 Manifest this update: Sun 19 Oct 2025 00:30:38 +0000 Manifest next update: Sun 26 Oct 2025 00:30:38 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: 1mIWWJ/u5xDtNRFjfdtE+XOEvv/a0SRW8wZwWzhoeHw=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1554 (0x612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Oct 19 00:30:38 2025 GMT Not After : Oct 26 00:30:38 2025 GMT Subject: CN=68f4312e-5129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7b:b7:0d:6b:c7:ef:7a:13:02:ae:38:fc:3f: 52:60:13:8b:3c:90:cf:e0:45:c7:12:12:8f:b0:ab: 03:a4:38:36:a3:b8:aa:1f:bd:c4:c0:a2:69:41:36: da:8a:4c:54:29:b7:91:a6:ca:8b:d5:d9:c5:f1:56: 22:7d:f5:08:89:a9:6d:11:b2:99:44:3a:47:19:8d: c1:ec:c9:a5:3c:eb:69:77:a2:61:9e:06:58:29:68: c7:92:6a:6a:c5:c6:ea:5f:de:8a:d9:18:73:93:bc: 04:79:ac:47:75:0e:3d:69:66:24:1f:09:38:eb:0e: 8f:80:db:69:a4:e4:28:ad:de:f9:f9:69:15:01:5b: 8e:06:9f:f0:3b:00:66:7c:ac:b3:f5:6a:b7:54:28: b8:2a:5d:64:20:f3:1a:9a:6a:fb:2e:9c:2e:ad:72: 79:f3:df:0f:62:40:c7:8c:85:92:91:d0:df:97:ba: fb:e4:38:c5:ee:2c:6c:e6:7d:ff:6d:67:87:04:33: f1:8e:31:16:b4:f6:02:81:d5:f1:9c:73:ee:a2:31: 59:ae:93:d9:88:b1:40:cb:85:30:6d:71:77:41:e2: 88:12:b4:cb:5d:80:ce:19:59:c8:a3:a8:89:f8:1f: 2a:46:de:c3:7a:f2:80:89:e3:e0:ef:4d:4b:e5:07: 8f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8C:62:88:EE:01:34:BE:99:1F:D1:C1:EB:B4:46:A3:10:EA:7A:B6 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:bd:ac:e4:34:75:9e:ef:6a:6a:ff:df:5a:ec:f2:3c:51:a4: 95:e2:62:97:f6:4d:23:3b:2a:10:1d:7b:8c:e2:4f:1f:29:2a: 88:80:23:44:30:ae:1c:b5:03:12:e3:42:9d:13:fd:a8:13:ce: 35:e2:d6:3e:d2:ce:d7:a2:d2:8b:43:02:de:33:91:8b:f7:29: 70:fa:91:ae:f1:2f:64:47:e9:6c:e1:44:9a:a8:98:c7:f9:02: 10:6b:5b:39:40:df:1c:ad:9e:9e:31:a3:33:25:92:ea:2c:46: 58:cf:47:60:62:02:48:96:fd:fa:e2:7e:e2:38:16:ad:2a:ce: 37:2e:e6:b1:a4:ba:fe:3a:40:f4:65:16:70:85:e2:68:63:1f: ce:96:1c:43:b5:72:66:2b:8e:5c:51:5b:55:82:28:92:b7:92: e4:ae:7f:df:e6:35:6a:60:d4:65:fd:37:c1:38:2c:52:bb:39: fb:d7:81:fb:69:72:23:43:cb:48:7f:cd:50:0a:92:e7:88:62: 92:9f:b7:d4:ae:aa:45:36:95:f7:9e:bb:85:95:dd:c2:9a:97: 47:ab:0c:29:89:9e:4c:20:fc:15:e4:89:92:1c:33:83:8c:62: 0d:82:a3:5a:ad:fe:c3:35:be:10:3c:9e:21:5a:24:74:45:ba: ff:59:e6:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUxMDE5MDAzMDM4WhcNMjUxMDI2MDAzMDM4WjAYMRYwFAYD VQQDEw02OGY0MzEyZS01MTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33u3DWvH73oTAq44/D9SYBOLPJDP4EXHEhKPsKsDpDg2o7iqH73EwKJpQTba ikxUKbeRpsqL1dnF8VYiffUIialtEbKZRDpHGY3B7MmlPOtpd6JhngZYKWjHkmpq xcbqX96K2Rhzk7wEeaxHdQ49aWYkHwk46w6PgNtppOQord75+WkVAVuOBp/wOwBm fKyz9Wq3VCi4Kl1kIPMammr7LpwurXJ5898PYkDHjIWSkdDfl7r75DjF7ixs5n3/ bWeHBDPxjjEWtPYCgdXxnHPuojFZrpPZiLFAy4UwbXF3QeKIErTLXYDOGVnIo6iJ +B8qRt7DevKAiePg701L5QePbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaMYoju ATS+mR/Rweu0RqMQ6nq2MB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPvazkNHWe72pq/99a7PI8UaSV4mKX9k0jOyoQHXuM4k8fKSqIgCNE MK4ctQMS40KdE/2oE8414tY+0s7XotKLQwLeM5GL9ylw+pGu8S9kR+ls4USaqJjH +QIQa1s5QN8crZ6eMaMzJZLqLEZYz0dgYgJIlv364n7iOBatKs43LuaxpLr+OkD0 ZRZwheJoYx/OlhxDtXJmK45cUVtVgiiSt5Lkrn/f5jVqYNRl/TfBOCxSuzn714H7 aXIjQ8tIf81QCpLniGKSn7fUrqpFNpX3nruFld3CmpdHqwwpiZ5MIPwV5ImSHDOD jGINgqNarf7DNb4QPJ4hWiR0Rbr/WeYS -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:05 2025 by rpki-client