
$ rpki-client -vvf rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
File: WATZMgJnrePvrVaVURWF9sMl5wQ.mft (raw, json)
Hash identifier: 5fkZtUdkDZlYdmgnsD6XeMqdik+pxFon6MUTNYcFi74=
Subject key identifier: 60:41:47:58:E9:D4:77:40:F8:3A:5A:82:F2:73:E0:64:9E:8A:BB:14
Authority key identifier: 58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04
Certificate issuer: /CN=A91811D8/serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704
Certificate serial: 57
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
Manifest number: 55
Signing time: Fri 17 Jul 2026 09:33:08 +0000
Manifest this update: Fri 17 Jul 2026 09:33:08 +0000
Manifest next update: Fri 24 Jul 2026 09:33:08 +0000
Files and hashes: 1: WATZMgJnrePvrVaVURWF9sMl5wQ.crl (hash: eECc6l2Uptxl4Q1rso+WUEkI1DylUu9XMyroskWTUiQ=)
2: 35672430030A11F19BB01507153D8C67.roa (hash: ZqkwJDczIP3SqWXgDmi1JIlpUn8khhS031ocDNHD7iI=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl
rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 09:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91811D8, serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704
Validity
Not Before: Jul 17 09:33:08 2026 GMT
Not After : Jul 24 09:33:08 2026 GMT
Subject: CN=6a59f6d4-5eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:27:9e:16:e5:32:c1:4f:5a:d7:b9:05:e2:20:
6c:2e:91:b1:35:b3:bd:b8:9b:3b:e6:bc:58:1c:94:
f3:d3:b7:65:68:62:60:35:1e:b1:0a:56:aa:66:ae:
b2:99:2d:01:18:16:f3:1c:68:13:95:1c:2b:af:52:
72:2c:58:83:2e:47:6c:76:ce:2c:a7:1f:5d:59:b7:
31:2b:ed:ef:0d:aa:8e:07:38:52:e4:f9:7f:71:38:
69:51:1c:ed:7f:5a:be:0d:9d:0d:47:fb:71:c0:df:
8d:61:31:89:19:f2:32:45:c8:7e:da:87:51:e2:aa:
8e:67:5c:52:08:65:21:32:70:75:fe:75:5c:1e:94:
aa:42:ed:a5:9e:dd:90:64:59:f7:0f:72:b2:d0:98:
c1:32:63:14:b4:39:ff:d9:89:e9:cd:c5:87:4f:0a:
e2:af:5e:44:b2:ca:91:d8:81:0b:f1:3d:f6:88:c1:
36:50:7c:00:62:bf:ac:19:47:5c:b8:2a:46:77:ac:
91:00:7a:b6:7d:ee:4c:84:59:0d:5a:bb:3d:35:c4:
ac:1a:ba:44:20:d2:aa:5c:c9:b1:f3:0d:71:65:99:
c3:c1:ca:c1:3a:fe:bd:45:27:b2:19:d8:b0:5b:df:
21:04:16:a1:45:c7:cd:7a:c9:f6:ef:11:2c:76:76:
8b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:41:47:58:E9:D4:77:40:F8:3A:5A:82:F2:73:E0:64:9E:8A:BB:14
X509v3 Authority Key Identifier:
keyid:58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4e:22:23:9f:a7:05:83:a3:34:c3:39:43:51:6b:11:6d:a2:99:
4e:34:a6:2e:f5:2d:f6:10:89:e8:ba:44:72:4e:40:99:46:59:
36:90:b2:88:b0:a5:74:0e:dd:c1:41:c9:2b:2c:00:13:2b:9a:
ce:76:3b:39:4c:e7:bd:a2:a8:48:c0:1d:05:4f:41:b4:6d:3b:
aa:b4:ed:f6:96:c6:76:4f:88:9f:bb:d1:cc:73:db:21:27:fe:
03:61:92:9a:09:e7:d3:50:fb:f5:88:3b:0f:51:3a:68:b1:1a:
44:4d:9e:64:5b:37:31:d1:bc:3b:39:81:f5:ad:db:e2:60:9e:
45:81:6a:98:c8:37:23:d2:57:af:f2:dc:e4:26:a2:ee:b3:a4:
72:64:a4:aa:7b:7b:64:9f:a2:0b:63:5a:ea:fd:70:6b:6f:41:
62:a2:cf:6a:d4:fb:2f:b0:3d:1d:d0:77:c7:66:85:03:6c:4a:
09:4c:4c:32:4a:48:06:a1:72:53:33:49:c6:2b:e7:e4:63:0d:
77:90:03:a2:1f:ad:34:b8:aa:5e:a9:02:2d:76:80:84:27:4c:
d9:2f:ce:38:7a:79:d8:ea:f0:97:0e:aa:90:da:b4:87:d6:d5:
57:9a:eb:df:73:81:82:01:5f:2a:32:24:7e:7f:be:61:42:5a:
73:15:ad:a4
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
MTFEODExMC8GA1UEBRMoNTgwNEQ5MzIwMjY3QURFM0VGQUQ1Njk1NTExNTg1RjZD
MzI1RTcwNDAeFw0yNjA3MTcwOTMzMDhaFw0yNjA3MjQwOTMzMDhaMBgxFjAUBgNV
BAMTDTZhNTlmNmQ0LTVlZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC5J54W5TLBT1rXuQXiIGwukbE1s724mzvmvFgclPPTt2VoYmA1HrEKVqpmrrKZ
LQEYFvMcaBOVHCuvUnIsWIMuR2x2ziynH11ZtzEr7e8Nqo4HOFLk+X9xOGlRHO1/
Wr4NnQ1H+3HA341hMYkZ8jJFyH7ah1Hiqo5nXFIIZSEycHX+dVwelKpC7aWe3ZBk
WfcPcrLQmMEyYxS0Of/ZienNxYdPCuKvXkSyypHYgQvxPfaIwTZQfABiv6wZR1y4
KkZ3rJEAerZ97kyEWQ1auz01xKwaukQg0qpcybHzDXFlmcPBysE6/r1FJ7IZ2LBb
3yEEFqFFx816yfbvESx2dothAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUYEFHWOnU
d0D4OlqC8nPgZJ6KuxQwHwYDVR0jBBgwFoAUWATZMgJnrePvrVaVURWF9sMl5wQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMUQ4L0RDRTdCREUyMDMw
OTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQdnJWYVZVUldGOXNNbDV3
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvV0FUWk1nSm5yZVB2clZhVlVSV0Y5c01sNXdRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx
MUQ4L0RDRTdCREUyMDMwOTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQ
dnJWYVZVUldGOXNNbDV3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr
BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB
AQBOIiOfpwWDozTDOUNRaxFtoplONKYu9S32EInoukRyTkCZRlk2kLKIsKV0Dt3B
QckrLAATK5rOdjs5TOe9oqhIwB0FT0G0bTuqtO32lsZ2T4ifu9HMc9shJ/4DYZKa
CefTUPv1iDsPUTposRpETZ5kWzcx0bw7OYH1rdviYJ5FgWqYyDcj0lev8tzkJqLu
s6RyZKSqe3tkn6ILY1rq/XBrb0Fios9q1PsvsD0d0HfHZoUDbEoJTEwySkgGoXJT
M0nGK+fkYw13kAOiH600uKpeqQItdoCEJ0zZL844ennY6vCXDqqQ2rSH1tVXmuvf
c4GCAV8qMiR+f75hQlpzFa2k
-----END CERTIFICATE-----
Generated at Sat Jul 18 04:34:53 2026 by rpki-client