$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: 2qqf4Aw5WdsUELJHWTLtSxiWF8/gywFHOzEpr92x9Hk= Subject key identifier: 31:DC:53:88:DA:85:92:36:59:65:6D:61:6B:21:A1:B1:BB:CC:71:EB Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 0682 Signing time: Fri 12 Jun 2026 22:35:04 +0000 Manifest this update: Fri 12 Jun 2026 22:35:03 +0000 Manifest next update: Fri 19 Jun 2026 22:35:03 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: 8MdNaYYFTIkUm3eecEGsotFMK9anI9A+VNg+y5DeHXA=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W1AZdRPnUqP6po+2nyCEliB/EeCDTXtY0YkQggT0wxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 22:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jun 12 22:35:03 2026 GMT Not After : Jun 19 22:35:03 2026 GMT Subject: CN=6a2c8998-d31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2f:e4:12:7a:b5:f2:e1:04:cd:cc:5b:9d:aa: 91:ee:7c:1b:b1:f8:11:54:71:14:60:3b:83:48:02: ce:49:46:15:42:ab:fa:aa:82:86:0e:1a:44:11:c3: 65:7a:d9:6e:df:62:bd:fb:c0:b1:e5:3d:25:36:23: 2a:2a:46:c0:3b:e3:a6:cd:07:78:5b:0f:de:ed:6b: d7:f1:c7:a3:e5:63:09:34:6a:b1:1d:0a:29:25:f7: ba:ae:fe:b3:b4:aa:b9:f1:88:84:2f:e9:3a:aa:03: 87:43:b2:3e:28:d1:3b:20:4e:74:5b:76:dc:0b:5a: 62:3a:c2:96:9e:0a:ca:05:62:bd:a2:f2:f3:81:83: 84:a3:5d:0c:9b:7b:ae:b5:35:b2:83:d1:95:ca:c0: 03:0e:0d:6e:30:f4:e2:bf:be:2a:96:8e:a1:02:7d: 7e:ec:7b:de:a8:3f:a9:36:2d:63:84:33:d4:ff:ec: db:47:18:02:74:8a:61:2c:d8:ee:e7:67:fe:2d:b7: 53:c1:63:59:2e:5b:b0:7a:b7:a6:0d:00:7b:c6:23: 14:77:6b:68:be:77:98:f2:65:1a:23:bb:14:0b:3f: 3d:73:5a:f8:30:60:c5:07:ca:1c:01:17:ec:23:2c: c7:43:2a:00:46:1a:64:33:b9:54:61:02:3a:07:96: 02:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:DC:53:88:DA:85:92:36:59:65:6D:61:6B:21:A1:B1:BB:CC:71:EB X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c2:18:7b:66:4f:75:55:65:88:48:0f:0a:41:79:b3:6d:49: e4:24:d4:bc:0f:f6:c2:1c:53:65:64:26:c8:36:b4:c5:58:3f: 46:65:e1:1a:6c:cc:0a:8b:b8:96:6f:3d:ff:3c:a7:a9:04:1d: 71:7c:d6:17:73:9a:43:e6:30:5f:fc:a3:f3:73:74:dc:11:43: e5:77:75:34:a6:b3:07:92:86:89:b4:6f:2e:d0:49:4d:46:d0: 2f:c1:8f:9e:62:81:3f:b3:d0:76:cf:1d:3e:cd:52:4c:b5:fc: ef:06:de:75:54:42:9e:4b:9e:fa:3d:59:09:e1:e1:2d:17:d2: 7f:a9:ef:ec:af:6f:a9:85:4c:0e:d3:18:4c:19:8b:57:ee:07: 04:0e:5d:4c:1c:c6:1b:4a:7b:3c:e5:01:66:fa:ba:b3:28:61: 70:6c:f8:ec:f2:6a:31:25:e4:6e:81:21:0a:dd:11:8b:1d:23: 5b:c0:0c:04:4c:ca:50:c5:74:e0:18:f6:13:e6:f8:c3:97:00: 6e:5e:bf:4c:ee:ea:74:91:d5:95:34:1f:06:87:91:14:a6:c7: b2:76:ce:dc:b6:ca:80:23:83:f3:81:81:2d:80:39:f6:0e:77: 08:0c:e2:80:72:9b:cc:47:c3:13:fe:32:c8:12:89:1e:88:8c: 7e:bc:4f:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjYwNjEyMjIzNTAzWhcNMjYwNjE5MjIzNTAzWjAYMRYwFAYD VQQDEw02YTJjODk5OC1kMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwS/kEnq18uEEzcxbnaqR7nwbsfgRVHEUYDuDSALOSUYVQqv6qoKGDhpEEcNl etlu32K9+8Cx5T0lNiMqKkbAO+OmzQd4Ww/e7WvX8cej5WMJNGqxHQopJfe6rv6z tKq58YiEL+k6qgOHQ7I+KNE7IE50W3bcC1piOsKWngrKBWK9ovLzgYOEo10Mm3uu tTWyg9GVysADDg1uMPTiv74qlo6hAn1+7HveqD+pNi1jhDPU/+zbRxgCdIphLNju 52f+LbdTwWNZLluweremDQB7xiMUd2tovneY8mUaI7sUCz89c1r4MGDFB8ocARfs IyzHQyoARhpkM7lUYQI6B5YCPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDHcU4ja hZI2WWVtYWshobG7zHHrMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEcIYe2ZPdVVliEgPCkF5s21J5CTUvA/2whxTZWQmyDa0xVg/RmXhGmzMCou4 lm89/zynqQQdcXzWF3OaQ+YwX/yj83N03BFD5Xd1NKazB5KGibRvLtBJTUbQL8GP nmKBP7PQds8dPs1STLX87wbedVRCnkue+j1ZCeHhLRfSf6nv7K9vqYVMDtMYTBmL V+4HBA5dTBzGG0p7POUBZvq6syhhcGz47PJqMSXkboEhCt0Rix0jW8AMBEzKUMV0 4Bj2E+b4w5cAbl6/TO7qdJHVlTQfBoeRFKbHsnbO3LbKgCOD84GBLYA59g53CAzi gHKbzEfDE/4yyBKJHoiMfrxPoA== -----END CERTIFICATE-----Generated at Sat Jun 13 08:23:07 2026 by rpki-client