$ rpki-client -vvf rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft File: WATZMgJnrePvrVaVURWF9sMl5wQ.mft (raw, json) Hash identifier: 49SkeyPrF+FL57nO53uM8ukLQNwZrQeLcz464XdPI5k= Subject key identifier: 6B:37:D8:4F:00:3C:AA:49:8F:D2:92:5B:6B:13:36:CC:4B:6B:E7:37 Authority key identifier: 58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 Certificate issuer: /CN=A91811D8/serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft Manifest number: 3F Signing time: Mon 01 Jun 2026 09:20:12 +0000 Manifest this update: Mon 01 Jun 2026 09:20:12 +0000 Manifest next update: Mon 08 Jun 2026 09:20:12 +0000 Files and hashes: 1: WATZMgJnrePvrVaVURWF9sMl5wQ.crl (hash: FG3J5x9Xi+6xknzljAXEOpkpao0MRmzFejSruQwrNwU=) 2: 35672430030A11F19BB01507153D8C67.roa (hash: ZqkwJDczIP3SqWXgDmi1JIlpUn8khhS031ocDNHD7iI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 09:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91811D8, serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Validity Not Before: Jun 1 09:20:12 2026 GMT Not After : Jun 8 09:20:12 2026 GMT Subject: CN=6a1d4ecc-9f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:87:4c:26:a6:71:5e:b5:56:a3:d9:c0:42:7b: 15:e5:dc:a6:55:85:0d:33:7e:b5:e3:76:e2:8e:c7: f8:5b:6a:fc:fd:d4:5f:04:fd:f5:fa:5b:4b:ee:ed: 2a:9c:e3:04:bb:10:28:d6:21:3c:d6:75:f6:c0:cd: f2:aa:7d:70:02:a3:4b:59:fc:c9:6e:80:ea:c0:e8: f5:9a:a1:74:82:a4:d5:7c:b9:44:3e:55:10:08:7f: 4f:ce:3b:fe:b7:fa:18:e0:7f:f9:99:14:d5:ed:34: 27:00:ad:f5:14:ee:ac:ec:31:4a:c4:a3:5e:e4:22: 08:b6:dc:43:60:22:d6:a4:f3:59:ce:02:bf:72:a5: af:e0:25:1d:4d:ff:4e:b6:aa:a6:37:d3:0f:66:26: 82:4c:d2:3a:e0:bf:2a:fd:31:7c:d9:ff:52:c9:1f: d0:15:38:59:1c:10:74:6a:cf:ae:9b:7e:55:6b:d0: 6c:dd:16:6a:78:aa:99:5f:ac:91:fe:99:97:ed:88: 8e:d8:9c:c3:d0:e8:ae:5f:19:2c:c8:b4:91:ff:2c: 63:d6:58:5b:19:82:cb:63:fa:35:e6:a7:c6:e9:d6: b6:8f:fe:cf:b5:b1:cf:cf:c2:71:6e:ed:73:ae:fc: 27:40:91:0b:e7:f3:57:3a:14:0f:94:44:95:2f:09: 2b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:37:D8:4F:00:3C:AA:49:8F:D2:92:5B:6B:13:36:CC:4B:6B:E7:37 X509v3 Authority Key Identifier: keyid:58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f2:64:6f:e7:21:59:e8:06:4e:86:09:a9:59:9b:78:a0:8e: d6:d4:b7:fe:1b:38:60:7f:b4:8b:81:af:6d:11:f9:60:cb:c0: 51:e1:17:cc:f2:05:54:24:a6:e6:2f:67:fa:01:de:98:4f:fe: c8:15:4d:5d:b6:ba:e0:ca:f3:b6:a9:fa:af:bf:f6:99:f1:6e: fd:d0:05:f1:71:2e:d0:84:07:19:65:0b:f3:e7:3d:4c:62:c4: 14:5e:a9:e4:16:dd:1e:08:ee:de:a5:0c:3a:35:9a:4c:aa:91: 67:81:7f:e1:b3:3a:94:3b:8b:43:a6:de:be:5e:b8:17:b0:3e: ed:7f:61:37:9a:2f:b3:c5:52:ce:46:c8:be:cd:c2:15:c5:b1: 1d:14:40:a7:4d:5e:d0:55:b2:c6:ed:c7:0a:94:39:13:50:fb: ac:0a:00:96:a8:34:d0:8e:37:c6:b4:56:2b:09:10:65:19:cb: f8:73:ef:78:0c:e2:59:f7:b8:63:93:18:b3:ce:17:72:64:4e: df:cc:be:a4:ae:5c:8a:e0:a9:dd:98:88:a0:fe:6d:e1:d0:c2: 69:d8:9c:2c:b5:e2:dc:f1:45:c3:92:24:f9:cf:70:cb:1b:68: 81:95:18:70:37:36:3b:32:a3:64:f4:a2:b4:f3:f1:a4:19:3e: 71:78:c3:1b -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTFEODExMC8GA1UEBRMoNTgwNEQ5MzIwMjY3QURFM0VGQUQ1Njk1NTExNTg1RjZD MzI1RTcwNDAeFw0yNjA2MDEwOTIwMTJaFw0yNjA2MDgwOTIwMTJaMBgxFjAUBgNV BAMTDTZhMWQ0ZWNjLTlmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYh0wmpnFetVaj2cBCexXl3KZVhQ0zfrXjduKOx/hbavz91F8E/fX6W0vu7Sqc 4wS7ECjWITzWdfbAzfKqfXACo0tZ/MlugOrA6PWaoXSCpNV8uUQ+VRAIf0/OO/63 +hjgf/mZFNXtNCcArfUU7qzsMUrEo17kIgi23ENgItak81nOAr9ypa/gJR1N/062 qqY30w9mJoJM0jrgvyr9MXzZ/1LJH9AVOFkcEHRqz66bflVr0GzdFmp4qplfrJH+ mZftiI7YnMPQ6K5fGSzItJH/LGPWWFsZgstj+jXmp8bp1raP/s+1sc/PwnFu7XOu /CdAkQvn81c6FA+URJUvCSsVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUazfYTwA8 qkmP0pJbaxM2zEtr5zcwHwYDVR0jBBgwFoAUWATZMgJnrePvrVaVURWF9sMl5wQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMUQ4L0RDRTdCREUyMDMw OTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQdnJWYVZVUldGOXNNbDV3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0FUWk1nSm5yZVB2clZhVlVSV0Y5c01sNXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx MUQ4L0RDRTdCREUyMDMwOTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQ dnJWYVZVUldGOXNNbDV3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAl8mRv5yFZ6AZOhgmpWZt4oI7W1Lf+Gzhgf7SLga9tEflgy8BR4RfM8gVUJKbm L2f6Ad6YT/7IFU1dtrrgyvO2qfqvv/aZ8W790AXxcS7QhAcZZQvz5z1MYsQUXqnk Ft0eCO7epQw6NZpMqpFngX/hszqUO4tDpt6+XrgXsD7tf2E3mi+zxVLORsi+zcIV xbEdFECnTV7QVbLG7ccKlDkTUPusCgCWqDTQjjfGtFYrCRBlGcv4c+94DOJZ97hj kxizzhdyZE7fzL6krlyK4KndmIig/m3h0MJp2JwsteLc8UXDkiT5z3DLG2iBlRhw NzY7MqNk9KK08/GkGT5xeMMb -----END CERTIFICATE-----Generated at Tue Jun 2 21:23:49 2026 by rpki-client