$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: Di4z9wRTYnTabUwMgv9pI+I/of3hKx05a0Ws0hMIm1E= Subject key identifier: DF:A5:45:79:30:5B:21:BA:9B:77:F4:99:18:AE:A1:E8:57:16:2C:68 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 061A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 060F Signing time: Tue 04 Nov 2025 22:57:08 +0000 Manifest this update: Tue 04 Nov 2025 22:57:08 +0000 Manifest next update: Tue 11 Nov 2025 22:57:08 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: PEGBoXPkjO1x3iZek0mxoz5+vE4CGE/2Dgsuc40d/to=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Nov 4 22:57:08 2025 GMT Not After : Nov 11 22:57:08 2025 GMT Subject: CN=690a84c4-1c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c2:b0:76:bc:33:16:14:7a:11:c4:67:50:66: 73:f3:f5:21:5c:4f:9b:69:92:4c:3f:83:60:e7:e4: 6b:4a:64:2b:31:59:17:ea:98:ca:1e:bd:f4:fb:30: e9:67:cf:53:d2:8b:9d:a7:87:07:78:ae:48:1a:31: 82:20:46:4f:ff:44:df:96:b2:4b:1f:87:89:4f:a1: f8:ca:1d:7e:9b:e8:9b:55:53:b1:d0:76:48:73:90: e4:4d:10:90:bc:fd:6b:88:bb:ee:1f:c9:32:b2:bc: d4:a0:fc:3b:37:c1:73:60:d5:1a:71:7f:f5:48:68: f4:51:f0:db:15:5f:bd:ca:55:4f:11:f0:3a:b6:db: 33:2c:97:ac:4e:60:f2:86:8a:5a:e0:13:1e:95:61: 84:72:d7:3e:7b:9b:8f:7e:64:54:e5:9d:17:3e:3c: 95:55:56:e6:c3:58:49:2a:29:42:d1:cd:42:56:88: fe:0c:c9:99:53:92:5e:25:01:59:ee:58:3d:8b:00: c6:61:11:ce:ae:b1:51:c9:75:b2:aa:7b:6c:8c:e6: 0e:cb:69:c7:45:d4:83:20:0c:04:75:e4:b5:d6:35: 8e:9e:84:26:be:10:60:dd:dd:f2:50:43:bb:65:9c: 05:1b:09:c1:c3:cb:67:ab:43:a6:44:57:61:1f:65: 51:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A5:45:79:30:5B:21:BA:9B:77:F4:99:18:AE:A1:E8:57:16:2C:68 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:48:55:18:f3:08:a1:fb:53:94:fb:d3:f0:2d:61:6d:76:74: 3f:f2:da:63:0b:03:44:8a:33:de:c9:7d:fa:d4:af:f1:ca:06: 91:49:05:1b:e5:4c:41:bd:65:3b:fe:db:ec:d7:f8:3b:eb:8a: 86:a8:0f:92:12:0d:e2:1f:e5:4b:86:f7:d7:aa:52:c2:0b:d2: 09:a2:57:c5:fc:de:6c:7c:41:db:81:e1:78:0f:43:5c:1e:73: ab:76:17:0a:75:9d:f3:b4:0a:e9:c1:c5:33:22:ff:39:05:71: 8e:a7:94:8e:e7:b6:7a:f6:6d:3c:24:98:74:cc:6a:79:96:8b: 97:16:7d:ef:95:86:1d:0d:f7:8c:94:c1:50:c4:4c:39:a7:86: ea:0a:1f:44:a0:aa:03:c6:de:1c:20:49:96:46:36:fc:73:3d: 82:06:0f:01:7e:bb:51:90:89:d0:08:c0:eb:b3:73:9f:0a:7d: a2:d1:06:3c:19:1c:f2:dc:43:b0:2f:7e:88:66:14:ed:85:00: 4c:4f:98:3e:80:14:36:ae:17:50:b3:ce:d8:fc:9e:67:7a:80: fb:f0:21:fb:66:35:a7:3c:f5:ab:c0:8d:86:3a:64:27:8b:69: 78:1b:f5:de:9b:95:1b:77:8b:e5:e6:68:25:65:53:24:09:b9: 45:71:eb:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUxMTA0MjI1NzA4WhcNMjUxMTExMjI1NzA4WjAYMRYwFAYD VQQDEw02OTBhODRjNC0xYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcKwdrwzFhR6EcRnUGZz8/UhXE+baZJMP4Ng5+RrSmQrMVkX6pjKHr30+zDp Z89T0oudp4cHeK5IGjGCIEZP/0TflrJLH4eJT6H4yh1+m+ibVVOx0HZIc5DkTRCQ vP1riLvuH8kysrzUoPw7N8FzYNUacX/1SGj0UfDbFV+9ylVPEfA6ttszLJesTmDy hopa4BMelWGEctc+e5uPfmRU5Z0XPjyVVVbmw1hJKilC0c1CVoj+DMmZU5JeJQFZ 7lg9iwDGYRHOrrFRyXWyqntsjOYOy2nHRdSDIAwEdeS11jWOnoQmvhBg3d3yUEO7 ZZwFGwnBw8tnq0OmRFdhH2VRUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+lRXkw WyG6m3f0mRiuoehXFixoMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvSFUY8wih+1OU+9PwLWFtdnQ/8tpjCwNEijPeyX361K/xygaRSQUb 5UxBvWU7/tvs1/g764qGqA+SEg3iH+VLhvfXqlLCC9IJolfF/N5sfEHbgeF4D0Nc HnOrdhcKdZ3ztArpwcUzIv85BXGOp5SO57Z69m08JJh0zGp5louXFn3vlYYdDfeM lMFQxEw5p4bqCh9EoKoDxt4cIEmWRjb8cz2CBg8BfrtRkInQCMDrs3OfCn2i0QY8 GRzy3EOwL36IZhTthQBMT5g+gBQ2rhdQs87Y/J5neoD78CH7ZjWnPPWrwI2GOmQn i2l4G/Xem5Ubd4vl5mglZVMkCblFces3 -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:29 2025 by rpki-client