$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: 0qltJ8Zla4AYI+dMAAQ9gxYywUUUDH5Zr6quzmDtAKU= Subject key identifier: 27:85:B4:CF:4D:B4:74:21:22:2A:C3:D3:60:F1:85:0F:9B:40:6F:B6 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 0665 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 0659 Signing time: Tue 24 Mar 2026 22:21:41 +0000 Manifest this update: Tue 24 Mar 2026 22:21:40 +0000 Manifest next update: Tue 31 Mar 2026 22:21:40 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: 8oHyicGadzfEmzjollkXTyUS1kZr5mMnvCZrqc5P1P0=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W1AZdRPnUqP6po+2nyCEliB/EeCDTXtY0YkQggT0wxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Mar 24 22:21:40 2026 GMT Not After : Mar 31 22:21:40 2026 GMT Subject: CN=69c30e75-6bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:eb:4d:e4:cf:be:2f:2b:e3:38:dd:86:d7:84: 89:be:ab:3e:84:17:57:73:21:d6:22:04:91:b8:6c: a8:c4:7d:e3:2c:2d:d6:19:0d:3b:10:61:04:5e:ba: 98:06:a3:4d:f8:05:fc:94:ed:e4:c6:9e:2d:60:05: 3c:e8:7d:7d:51:17:e0:19:85:70:55:64:50:6f:5d: f0:e4:40:f2:21:d4:b8:3b:ac:58:c0:0c:c0:e5:f6: 51:d9:a0:55:7c:04:0c:ad:3e:8c:83:ab:bf:2a:e3: 7e:cc:50:fa:c6:41:a3:7a:99:da:d3:0c:ac:1c:ea: 18:ac:2a:88:29:fc:5e:50:2c:3a:b8:e7:5d:ec:66: d1:7c:97:10:46:ce:e2:5c:4c:f5:47:83:df:19:35: 11:60:21:31:a0:0e:d9:13:40:43:04:19:e6:24:ea: 29:0a:97:f7:4c:f4:12:27:c0:4f:6c:40:0e:ff:db: 67:4e:41:a3:d9:18:9a:55:3a:60:a8:56:43:62:89: d8:40:22:00:94:bb:b6:05:bb:a1:cd:28:ac:cd:62: 0d:d6:3f:f1:14:d1:9a:ef:35:cf:27:d8:4f:69:d2: 9b:ce:2c:98:87:df:56:aa:bf:9a:6e:ac:64:0d:59: 56:a1:3c:a2:c0:2a:73:ed:90:0f:a1:1a:87:bc:e4: 72:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:85:B4:CF:4D:B4:74:21:22:2A:C3:D3:60:F1:85:0F:9B:40:6F:B6 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:91:61:a4:83:21:25:5e:a6:82:97:10:60:03:57:07:ef:50: a1:04:d1:2f:ee:45:25:fe:10:b2:8e:dd:fa:2c:f9:f2:23:37: 64:69:38:0b:1f:ff:e2:86:c7:7a:a6:60:e4:02:de:30:fa:a4: e1:b9:cc:55:37:d7:70:d1:7c:c6:34:e0:a3:7c:db:96:5c:cd: 48:7a:0c:3a:a5:45:da:1f:73:75:04:58:01:ba:8f:5a:0a:f1: a4:85:93:95:b3:2f:05:28:b3:71:4b:07:15:5f:19:f5:2e:fa: a1:22:b1:3c:2a:a2:84:e2:43:4a:ca:c6:91:df:19:a1:f8:a2: ad:d7:47:84:85:f4:1f:d3:ee:29:c9:0f:74:83:da:79:31:1e: 9e:3a:78:60:71:56:2e:67:bd:ef:3c:45:34:ef:c4:16:03:42: d2:5e:e3:37:43:2f:61:82:08:84:f7:1a:fd:e4:99:9a:37:b7: 76:57:06:0b:da:17:0c:1e:83:43:7c:14:e5:4f:fa:89:20:fb: 38:c0:98:26:0d:66:40:b6:3b:dd:d4:ca:ba:f6:ec:0a:66:24: 8a:21:f3:4c:88:ea:33:c8:01:08:68:d5:42:a2:3a:63:0c:1b: a6:30:a6:42:c8:6e:92:2f:47:0c:82:d1:74:33:86:2a:63:ef: 02:59:7c:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjYwMzI0MjIyMTQwWhcNMjYwMzMxMjIyMTQwWjAYMRYwFAYD VQQDEw02OWMzMGU3NS02YmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApetN5M++LyvjON2G14SJvqs+hBdXcyHWIgSRuGyoxH3jLC3WGQ07EGEEXrqY BqNN+AX8lO3kxp4tYAU86H19URfgGYVwVWRQb13w5EDyIdS4O6xYwAzA5fZR2aBV fAQMrT6Mg6u/KuN+zFD6xkGjepna0wysHOoYrCqIKfxeUCw6uOdd7GbRfJcQRs7i XEz1R4PfGTURYCExoA7ZE0BDBBnmJOopCpf3TPQSJ8BPbEAO/9tnTkGj2RiaVTpg qFZDYonYQCIAlLu2BbuhzSiszWIN1j/xFNGa7zXPJ9hPadKbziyYh99Wqr+abqxk DVlWoTyiwCpz7ZAPoRqHvORyYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCeFtM9N tHQhIirD02DxhQ+bQG+2MB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAipFhpIMhJV6mgpcQYANXB+9QoQTRL+5FJf4Qso7d+iz58iM3ZGk4Cx//4obH eqZg5ALeMPqk4bnMVTfXcNF8xjTgo3zbllzNSHoMOqVF2h9zdQRYAbqPWgrxpIWT lbMvBSizcUsHFV8Z9S76oSKxPCqihOJDSsrGkd8ZofiirddHhIX0H9PuKckPdIPa eTEenjp4YHFWLme97zxFNO/EFgNC0l7jN0MvYYIIhPca/eSZmje3dlcGC9oXDB6D Q3wU5U/6iSD7OMCYJg1mQLY73dTKuvbsCmYkiiHzTIjqM8gBCGjVQqI6YwwbpjCm Qshuki9HDILRdDOGKmPvAll8Jg== -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:22 2026 by rpki-client