$ rpki-client -vvf rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft File: WATZMgJnrePvrVaVURWF9sMl5wQ.mft (raw, json) Hash identifier: h2k65uaGF0SLtXdXgBsqU9FtXj36ZKb2T+AjCKrmhYw= Subject key identifier: 51:DC:CE:82:6D:C8:8E:55:A2:D6:F1:AB:32:1F:21:26:F0:07:0B:6B Authority key identifier: 58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 Certificate issuer: /CN=A91811D8/serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft Manifest number: 11 Signing time: Tue 03 Mar 2026 08:46:02 +0000 Manifest this update: Tue 03 Mar 2026 08:46:02 +0000 Manifest next update: Tue 10 Mar 2026 08:46:02 +0000 Files and hashes: 1: WATZMgJnrePvrVaVURWF9sMl5wQ.crl (hash: wOUs99OjVsmrZhCmNrZbjt7KQflZLFICKLfbSHwFxcI=) 2: 35672430030A11F19BB01507153D8C67.roa (hash: ZqkwJDczIP3SqWXgDmi1JIlpUn8khhS031ocDNHD7iI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91811D8, serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Validity Not Before: Mar 3 08:46:02 2026 GMT Not After : Mar 10 08:46:02 2026 GMT Subject: CN=69a69fca-d93b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:44:98:67:d7:60:56:99:91:17:00:79:cb:5c: b6:93:b7:35:32:1b:33:e5:92:b3:f5:7c:c9:bf:24: e3:b5:b4:ec:b7:04:7d:28:67:35:4e:18:80:a5:a0: d3:4b:c1:c2:c8:c2:0a:0f:b2:93:ab:39:62:b0:57: 17:a0:e6:0e:e0:d3:f5:9b:33:a4:72:18:b8:af:d0: 8c:53:90:33:13:c5:60:8f:f7:3b:bd:91:50:87:f7: cf:b0:24:47:8d:ce:80:1d:2e:7e:c1:18:fa:4b:6d: 8d:b7:2c:30:7a:bc:7b:a9:b9:35:07:93:72:a5:0e: c0:08:53:d3:03:2a:6f:1a:08:9a:c7:9c:2c:b2:26: ec:09:76:4b:97:41:bd:14:ad:e7:e7:2e:50:24:48: ce:33:f0:ab:88:96:7e:ee:fa:02:dd:f7:93:af:0d: 73:28:c0:b2:fa:59:d1:db:81:b7:d0:3e:de:7a:cd: c8:16:6d:db:aa:26:9e:67:ea:bd:02:0a:6f:fe:6c: 0b:c9:9a:3e:ce:d7:08:23:d3:46:bd:03:e7:84:18: d5:84:ea:9e:59:4c:1c:8a:27:b1:6b:e8:62:72:a3: f9:26:cc:2e:1b:71:e0:79:e6:ad:ed:71:e0:ee:81: ba:1a:c7:49:1d:06:d3:c2:41:14:e5:e7:86:3f:01: ba:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:DC:CE:82:6D:C8:8E:55:A2:D6:F1:AB:32:1F:21:26:F0:07:0B:6B X509v3 Authority Key Identifier: keyid:58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:2e:69:da:b4:cd:0a:61:c8:16:7a:6c:4e:f1:4f:f7:bf:40: 67:3a:09:ec:c0:5b:88:d6:72:82:d2:03:70:b2:30:dd:70:13: 8c:3f:0d:2a:fa:c5:49:03:ae:9b:ae:dc:1f:1a:18:48:a1:cc: 5e:62:97:d7:b6:45:72:ee:ac:16:f3:df:25:da:d4:4f:6b:13: c1:ed:7f:b0:72:67:a0:a9:d7:d0:d9:dc:fa:21:09:a3:da:9b: c9:7f:a2:92:b8:cc:1c:93:1d:5d:6e:83:ec:73:cb:02:10:08: 06:6c:cb:b4:92:d3:f6:a1:9d:35:2f:c3:53:30:24:f8:8e:f5: 35:57:04:e0:46:57:8d:b2:be:8e:14:d3:1c:08:5f:b3:74:d8: 4f:4e:ad:47:03:a1:87:f1:36:b3:82:a5:e6:f1:07:f1:4e:d5: b2:b9:ac:51:89:7c:aa:eb:6f:fe:69:54:c8:d3:33:a2:40:38: 45:82:fa:f1:c1:5a:64:13:67:80:2f:0d:af:ea:db:d8:75:00: cb:f8:16:66:ec:fe:f6:72:29:87:9b:d4:0b:41:8b:1b:34:85: 7f:3b:32:4c:7a:93:39:ee:53:1b:a6:78:27:13:dd:ad:0a:82: 75:05:5a:15:44:43:f0:8e:9f:47:d4:0f:f8:55:0b:30:c1:13: e6:19:fb:83 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTFEODExMC8GA1UEBRMoNTgwNEQ5MzIwMjY3QURFM0VGQUQ1Njk1NTExNTg1RjZD MzI1RTcwNDAeFw0yNjAzMDMwODQ2MDJaFw0yNjAzMTAwODQ2MDJaMBgxFjAUBgNV BAMTDTY5YTY5ZmNhLWQ5M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjRJhn12BWmZEXAHnLXLaTtzUyGzPlkrP1fMm/JOO1tOy3BH0oZzVOGICloNNL wcLIwgoPspOrOWKwVxeg5g7g0/WbM6RyGLiv0IxTkDMTxWCP9zu9kVCH98+wJEeN zoAdLn7BGPpLbY23LDB6vHupuTUHk3KlDsAIU9MDKm8aCJrHnCyyJuwJdkuXQb0U refnLlAkSM4z8KuIln7u+gLd95OvDXMowLL6WdHbgbfQPt56zcgWbduqJp5n6r0C Cm/+bAvJmj7O1wgj00a9A+eEGNWE6p5ZTByKJ7Fr6GJyo/kmzC4bceB55q3tceDu gboax0kdBtPCQRTl54Y/AbrrAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUUdzOgm3I jlWi1vGrMh8hJvAHC2swHwYDVR0jBBgwFoAUWATZMgJnrePvrVaVURWF9sMl5wQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMUQ4L0RDRTdCREUyMDMw OTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQdnJWYVZVUldGOXNNbDV3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0FUWk1nSm5yZVB2clZhVlVSV0Y5c01sNXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx MUQ4L0RDRTdCREUyMDMwOTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQ dnJWYVZVUldGOXNNbDV3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA5LmnatM0KYcgWemxO8U/3v0BnOgnswFuI1nKC0gNwsjDdcBOMPw0q+sVJA66b rtwfGhhIocxeYpfXtkVy7qwW898l2tRPaxPB7X+wcmegqdfQ2dz6IQmj2pvJf6KS uMwckx1dboPsc8sCEAgGbMu0ktP2oZ01L8NTMCT4jvU1VwTgRleNsr6OFNMcCF+z dNhPTq1HA6GH8TazgqXm8QfxTtWyuaxRiXyq62/+aVTI0zOiQDhFgvrxwVpkE2eA Lw2v6tvYdQDL+BZm7P72cimHm9QLQYsbNIV/OzJMepM57lMbpngnE92tCoJ1BVoV REPwjp9H1A/4VQswwRPmGfuD -----END CERTIFICATE-----Generated at Wed Mar 4 08:16:36 2026 by rpki-client