$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: p5e6wTx0u8em5hhw1yzdTZ57U49FweOqh41eTzPxA2M= Subject key identifier: E5:95:27:C0:C2:C6:4D:D5:81:15:31:22:5D:C9:A8:36:00:7E:15:4A Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 064B Signing time: Sat 28 Feb 2026 23:13:43 +0000 Manifest this update: Sat 28 Feb 2026 23:13:43 +0000 Manifest next update: Sat 07 Mar 2026 23:13:43 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: pPe+C2EinxuhBdhXxdKtcMvuudtJXFRa79Zl6Bm3BPc=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Feb 28 23:13:43 2026 GMT Not After : Mar 7 23:13:43 2026 GMT Subject: CN=69a376a7-a59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ef:56:03:cc:b3:c3:b1:64:18:d8:00:98:71: dc:44:59:dd:81:40:66:45:00:48:e1:e5:3e:ce:ed: 8b:e3:0e:b8:cc:f1:e2:f2:c2:01:83:d5:cd:e3:8e: 1a:62:24:c3:b7:a6:b0:26:d8:ef:a3:eb:53:78:4f: 18:bd:29:f6:10:af:08:fa:a1:f8:65:bf:78:6e:35: b4:63:b3:81:d8:08:d7:75:5f:bb:4f:f4:04:95:f9: f6:74:91:20:b5:f3:de:82:e0:d3:c1:3d:1e:60:70: 24:f2:41:67:b2:d8:7b:25:b4:48:9d:d1:8f:83:fe: 0b:be:05:6e:9a:a5:9c:bd:19:5d:3b:6e:c1:e2:d8: 13:ad:d4:a3:95:bf:05:03:0d:be:f6:5c:64:a7:a4: 09:4a:67:8b:d8:3a:df:fe:a0:9f:5d:e3:fd:30:d7: 80:80:8d:35:35:af:55:31:40:05:a1:06:1f:f2:4f: 4f:4d:94:03:82:9d:54:98:a2:a6:af:a9:e2:50:18: 1c:d9:a8:2f:b3:09:f6:27:31:27:41:e6:23:62:60: 02:be:b4:f6:fa:84:c8:1a:06:37:f8:17:e8:71:bd: c3:99:91:dd:9f:00:b8:e3:50:09:dc:74:c6:89:03: 7b:3e:6d:7d:28:48:2f:43:90:48:41:f0:3a:12:95: fa:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:95:27:C0:C2:C6:4D:D5:81:15:31:22:5D:C9:A8:36:00:7E:15:4A X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a2:b0:80:be:fa:61:d3:76:c2:f1:8c:98:b6:f9:bb:83:4f: 49:1c:46:9c:31:fe:ce:18:27:c0:09:f4:55:fb:e7:df:c2:3e: 45:5a:94:5a:e7:65:67:ad:7c:e3:d3:ce:51:d5:74:4e:6f:cb: 10:6b:38:c4:23:7a:cc:7c:7d:3a:13:0f:38:8b:26:92:0d:b1: dc:bf:f6:45:ef:57:14:33:bc:d0:ae:29:b5:3a:32:81:43:66: a0:98:61:86:01:95:c2:06:63:d0:17:5e:04:af:50:d8:29:8b: 1c:54:72:c4:06:94:e9:92:19:8b:1a:20:48:e0:10:8b:d6:46: 65:3d:69:9c:86:a7:d7:87:95:2f:0b:1d:e5:d5:48:ba:42:02: 7d:f7:6d:c1:34:2e:f9:de:1c:6e:a3:a2:02:9b:91:73:7a:ee: aa:d6:31:29:31:87:26:54:25:5c:00:2d:f5:9e:23:e2:bc:33: eb:f8:3f:15:3f:eb:20:e8:e1:fb:a3:a1:46:b1:d8:d5:da:05: 63:ca:b4:06:d1:e8:0e:1f:88:df:3d:e5:20:4b:90:a0:8b:c8: bc:a1:9e:d9:03:90:02:bf:45:7b:d0:60:1a:b6:8f:05:7c:72: 79:4f:92:98:85:4d:e8:4d:66:ba:19:0a:e3:4c:41:0b:be:4b: bc:51:23:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjYwMjI4MjMxMzQzWhcNMjYwMzA3MjMxMzQzWjAYMRYwFAYD VQQDDA02OWEzNzZhNy1hNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+9WA8yzw7FkGNgAmHHcRFndgUBmRQBI4eU+zu2L4w64zPHi8sIBg9XN444a YiTDt6awJtjvo+tTeE8YvSn2EK8I+qH4Zb94bjW0Y7OB2AjXdV+7T/QElfn2dJEg tfPeguDTwT0eYHAk8kFnsth7JbRIndGPg/4LvgVumqWcvRldO27B4tgTrdSjlb8F Aw2+9lxkp6QJSmeL2Drf/qCfXeP9MNeAgI01Na9VMUAFoQYf8k9PTZQDgp1UmKKm r6niUBgc2agvswn2JzEnQeYjYmACvrT2+oTIGgY3+Bfocb3DmZHdnwC441AJ3HTG iQN7Pm19KEgvQ5BIQfA6EpX62wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOWVJ8DC xk3VgRUxIl3JqDYAfhVKMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhqKwgL76YdN2wvGMmLb5u4NPSRxGnDH+zhgnwAn0Vfvn38I+RVqUWudlZ618 49POUdV0Tm/LEGs4xCN6zHx9OhMPOIsmkg2x3L/2Re9XFDO80K4ptToygUNmoJhh hgGVwgZj0BdeBK9Q2CmLHFRyxAaU6ZIZixogSOAQi9ZGZT1pnIan14eVLwsd5dVI ukICffdtwTQu+d4cbqOiApuRc3ruqtYxKTGHJlQlXAAt9Z4j4rwz6/g/FT/rIOjh +6OhRrHY1doFY8q0BtHoDh+I3z3lIEuQoIvIvKGe2QOQAr9Fe9BgGraPBXxyeU+S mIVN6E1muhkK40xBC75LvFEjiA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:43 2026 by rpki-client