$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: M1aPvn+7wl4weSb8rsSjaW9hBx5RoFYOF9Mh892WFos= Subject key identifier: C1:74:53:20:6D:A1:D4:50:EA:86:F0:43:5D:4D:9A:C4:4C:A0:28:C9 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 0672 Signing time: Tue 12 May 2026 22:40:44 +0000 Manifest this update: Tue 12 May 2026 22:40:43 +0000 Manifest next update: Tue 19 May 2026 22:40:43 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: Pg7DzTY+kGDD+L9v8i4hyNAyRupe6Kk32sfoYNHg/SU=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W1AZdRPnUqP6po+2nyCEliB/EeCDTXtY0YkQggT0wxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: May 12 22:40:43 2026 GMT Not After : May 19 22:40:43 2026 GMT Subject: CN=6a03ac6c-b4a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c2:cd:26:81:4e:fa:c0:5f:b2:1a:1c:19:7a: 26:f1:ca:de:2e:1e:9e:bf:41:5d:2c:7d:35:ab:95: e5:05:14:e6:cb:09:e3:04:30:b3:1e:91:37:f7:b6: 78:b6:29:d2:a0:89:85:6c:c7:98:04:af:26:a2:25: 59:90:3d:aa:22:79:75:19:7c:e8:0d:ff:98:b5:30: 5d:25:01:9e:37:b7:7f:10:7f:be:ae:61:f8:9a:aa: bd:d3:1b:1c:bb:13:ff:86:33:b3:eb:4e:b2:d8:f3: fe:9f:e0:37:6d:ab:ed:df:6d:de:70:2f:ea:29:d7: a0:b8:ff:2d:50:03:68:9d:f1:62:b9:bb:44:70:06: 3a:a4:56:1d:0f:08:a3:9b:5b:ea:fa:e2:00:f9:b0: 25:8d:87:60:b7:b4:fd:b6:45:ab:80:71:0d:02:97: b4:95:e4:46:4a:44:47:c1:c2:fd:37:fb:b9:e5:30: 4e:d7:1b:81:e4:2f:d7:8f:de:2f:fc:6e:74:e9:06: d5:71:bd:ce:45:f7:40:53:8b:53:2d:68:aa:be:1c: 14:fc:94:1a:d5:79:ac:6e:d4:87:70:08:b1:c4:ca: 7c:22:66:fe:55:91:7e:c2:89:ae:d0:ad:8c:fe:89: f5:00:49:99:aa:02:ee:ad:d6:5f:20:19:ab:bf:08: 9c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:74:53:20:6D:A1:D4:50:EA:86:F0:43:5D:4D:9A:C4:4C:A0:28:C9 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:4d:5a:08:6a:61:e1:55:66:eb:7d:6f:4c:6c:23:5b:e0:1f: 56:c9:de:52:ed:12:d6:70:3e:c2:bc:eb:a0:7a:01:0a:aa:a4: 0d:00:69:a0:06:62:93:2e:85:09:47:10:4c:92:ad:48:be:4f: 42:e4:74:b5:ca:76:b6:d1:58:01:d2:0c:09:fe:6e:1a:89:f6: bb:f2:6c:6b:eb:8c:80:39:a1:ea:e7:8a:5d:24:dd:4e:ae:b2: bf:e9:d4:33:54:3f:d3:e9:33:0b:f9:26:a5:cc:79:29:14:39: cf:44:75:d6:34:3d:2b:e8:f9:f3:25:8f:40:19:ed:cd:70:64: a3:b5:7b:f9:66:15:98:08:63:3b:fb:fb:d6:36:02:94:1d:23: f8:33:0f:d8:4d:d4:ff:bb:08:ca:84:13:50:e8:ed:ce:46:00: 6f:6b:fc:ad:8b:61:29:0e:e1:72:8e:86:d8:29:8b:a2:af:c0: cc:cc:ef:46:23:b6:b9:c5:2d:f1:0a:c8:38:78:87:60:f1:ab: 1c:93:e1:f7:79:ee:e7:8e:d9:53:c7:9b:37:2e:43:e2:26:cd: 47:2f:ff:8b:b2:c7:de:e2:f9:38:0b:0e:25:c2:bf:69:d7:21: 8e:4f:b6:b6:a8:70:13:bb:94:e0:3f:ba:f3:77:df:7b:2b:8f: 29:35:21:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjYwNTEyMjI0MDQzWhcNMjYwNTE5MjI0MDQzWjAYMRYwFAYD VQQDEw02YTAzYWM2Yy1iNGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMLNJoFO+sBfshocGXom8creLh6ev0FdLH01q5XlBRTmywnjBDCzHpE397Z4 tinSoImFbMeYBK8moiVZkD2qInl1GXzoDf+YtTBdJQGeN7d/EH++rmH4mqq90xsc uxP/hjOz606y2PP+n+A3bavt323ecC/qKdeguP8tUANonfFiubtEcAY6pFYdDwij m1vq+uIA+bAljYdgt7T9tkWrgHENApe0leRGSkRHwcL9N/u55TBO1xuB5C/Xj94v /G506QbVcb3ORfdAU4tTLWiqvhwU/JQa1XmsbtSHcAixxMp8Imb+VZF+womu0K2M /on1AEmZqgLurdZfIBmrvwicOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMF0UyBt odRQ6obwQ11NmsRMoCjJMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdE1aCGph4VVm631vTGwjW+AfVsneUu0S1nA+wrzroHoBCqqkDQBpoAZiky6F CUcQTJKtSL5PQuR0tcp2ttFYAdIMCf5uGon2u/Jsa+uMgDmh6ueKXSTdTq6yv+nU M1Q/0+kzC/kmpcx5KRQ5z0R11jQ9K+j58yWPQBntzXBko7V7+WYVmAhjO/v71jYC lB0j+DMP2E3U/7sIyoQTUOjtzkYAb2v8rYthKQ7hco6G2CmLoq/AzMzvRiO2ucUt 8QrIOHiHYPGrHJPh93nu547ZU8ebNy5D4ibNRy//i7LH3uL5OAsOJcK/adchjk+2 tqhwE7uU4D+683ffeyuPKTUhbA== -----END CERTIFICATE-----Generated at Wed May 13 03:35:07 2026 by rpki-client