$ rpki-client -vvf rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft File: WATZMgJnrePvrVaVURWF9sMl5wQ.mft (raw, json) Hash identifier: ftpgQ6/0u6eWSL1jemgJhcEYvIYnof5sxKdn2A4xavo= Subject key identifier: 73:35:6D:04:89:A7:CA:96:4B:93:71:CD:93:BD:41:C2:7C:36:70:7E Authority key identifier: 58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 Certificate issuer: /CN=A91811D8/serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft Manifest number: 28 Signing time: Fri 17 Apr 2026 08:30:58 +0000 Manifest this update: Fri 17 Apr 2026 08:30:57 +0000 Manifest next update: Fri 24 Apr 2026 08:30:57 +0000 Files and hashes: 1: WATZMgJnrePvrVaVURWF9sMl5wQ.crl (hash: oQ2vOQF1cDec9D7o6ThSFA5YhM/dozl3SYQG/O1RRe0=) 2: 35672430030A11F19BB01507153D8C67.roa (hash: ZqkwJDczIP3SqWXgDmi1JIlpUn8khhS031ocDNHD7iI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:30:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91811D8, serialNumber=5804D9320267ADE3EFAD5695511585F6C325E704 Validity Not Before: Apr 17 08:30:57 2026 GMT Not After : Apr 24 08:30:57 2026 GMT Subject: CN=69e1efc2-ce26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5a:2a:fc:b5:1b:52:6b:e2:8b:47:25:65:eb: 70:9c:5e:33:32:20:12:bc:af:d8:2f:59:18:5a:3b: 7b:fd:d8:6f:57:c3:5c:22:37:bb:49:f7:e5:ac:d8: 0a:eb:db:17:e1:8c:95:54:04:bb:ff:13:99:5e:ab: d5:bd:99:a5:9f:cb:47:8c:47:1c:66:92:85:3e:77: 06:d0:c3:22:c3:5e:1f:7f:04:42:67:c4:35:c8:fc: c4:16:2c:9d:70:c3:6d:66:29:fd:fc:f3:1e:34:87: 48:0b:12:44:47:45:c7:d3:a4:b8:6f:4f:78:a4:28: 46:f8:76:fa:b4:2a:5b:55:34:3f:c9:a8:cc:89:30: 27:82:04:24:70:ce:36:2d:7d:cc:44:d1:70:6f:0d: ab:40:49:08:a6:e3:f9:4f:70:46:e2:d2:6e:62:df: 92:c9:f2:ba:36:24:76:31:51:4e:ff:66:6c:55:9e: fc:e9:b1:96:5d:38:38:e6:83:cd:65:73:7a:68:17: e7:58:29:fd:7f:5c:b1:51:c0:c2:78:64:33:24:1d: a4:26:77:d3:e0:c6:a7:88:00:24:3f:1f:38:e8:5e: 19:03:4a:30:46:26:69:52:1f:6c:42:9a:c6:05:75: 2f:3c:2a:b7:e2:ee:24:d4:69:49:f0:24:05:30:cc: e9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:35:6D:04:89:A7:CA:96:4B:93:71:CD:93:BD:41:C2:7C:36:70:7E X509v3 Authority Key Identifier: keyid:58:04:D9:32:02:67:AD:E3:EF:AD:56:95:51:15:85:F6:C3:25:E7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WATZMgJnrePvrVaVURWF9sMl5wQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91811D8/DCE7BDE2030911F1928996D3133D8C67/WATZMgJnrePvrVaVURWF9sMl5wQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d0:28:d7:7e:9c:1e:51:93:b3:cb:c6:ec:fb:c7:9b:39:53: 4c:33:f9:bb:24:fd:49:20:21:e6:97:bc:aa:8d:e6:2b:ed:24: 65:c2:39:02:e8:55:86:88:97:d2:00:6d:17:74:1b:dd:37:f9: 26:cc:e9:34:1e:18:fc:e3:a1:1e:91:e6:dc:8a:2f:ff:64:f9: cd:d3:4d:e1:f2:e8:7d:e7:57:d3:e3:93:31:a5:a4:bc:bc:18: d0:a4:e7:7e:a9:c5:16:0e:aa:3d:f8:92:19:b9:b3:56:42:fc: 8c:ea:75:f0:7f:44:31:86:f4:df:a7:1b:e5:48:e2:79:94:2e: f5:c3:9f:cc:6a:04:26:e3:93:b7:db:b5:56:85:d3:ad:61:49: af:72:76:d7:b7:9b:49:35:f8:bd:64:18:10:17:aa:34:46:aa: eb:2f:94:91:12:6b:59:db:3b:0d:7d:50:df:c2:b3:ce:f7:ca: b3:33:db:05:77:e4:f5:e8:e9:7c:6a:8e:8b:ca:39:87:56:67: b1:4c:7b:eb:c8:a9:3a:41:69:30:09:65:53:3c:96:2f:17:84: c5:45:16:8e:85:e5:93:db:7a:17:8c:57:db:89:79:bf:e0:52: 81:5d:05:73:4f:d6:a9:eb:94:b2:1d:2a:85:a9:70:73:45:2e: d1:49:0c:4a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTFEODExMC8GA1UEBRMoNTgwNEQ5MzIwMjY3QURFM0VGQUQ1Njk1NTExNTg1RjZD MzI1RTcwNDAeFw0yNjA0MTcwODMwNTdaFw0yNjA0MjQwODMwNTdaMBgxFjAUBgNV BAMTDTY5ZTFlZmMyLWNlMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiWir8tRtSa+KLRyVl63CcXjMyIBK8r9gvWRhaO3v92G9Xw1wiN7tJ9+Ws2Arr 2xfhjJVUBLv/E5leq9W9maWfy0eMRxxmkoU+dwbQwyLDXh9/BEJnxDXI/MQWLJ1w w21mKf388x40h0gLEkRHRcfTpLhvT3ikKEb4dvq0KltVND/JqMyJMCeCBCRwzjYt fcxE0XBvDatASQim4/lPcEbi0m5i35LJ8ro2JHYxUU7/ZmxVnvzpsZZdODjmg81l c3poF+dYKf1/XLFRwMJ4ZDMkHaQmd9PgxqeIACQ/HzjoXhkDSjBGJmlSH2xCmsYF dS88Krfi7iTUaUnwJAUwzOnpAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUczVtBImn ypZLk3HNk71Bwnw2cH4wHwYDVR0jBBgwFoAUWATZMgJnrePvrVaVURWF9sMl5wQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMUQ4L0RDRTdCREUyMDMw OTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQdnJWYVZVUldGOXNNbDV3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0FUWk1nSm5yZVB2clZhVlVSV0Y5c01sNXdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx MUQ4L0RDRTdCREUyMDMwOTExRjE5Mjg5OTZEMzEzM0Q4QzY3L1dBVFpNZ0pucmVQ dnJWYVZVUldGOXNNbDV3US5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAD0CjXfpweUZOzy8bs+8ebOVNMM/m7JP1JICHml7yqjeYr7SRlwjkC6FWGiJfS AG0XdBvdN/kmzOk0Hhj846Eekebcii//ZPnN003h8uh951fT45MxpaS8vBjQpOd+ qcUWDqo9+JIZubNWQvyM6nXwf0QxhvTfpxvlSOJ5lC71w5/MagQm45O327VWhdOt YUmvcnbXt5tJNfi9ZBgQF6o0RqrrL5SREmtZ2zsNfVDfwrPO98qzM9sFd+T16Ol8 ao6LyjmHVmexTHvryKk6QWkwCWVTPJYvF4TFRRaOheWT23oXjFfbiXm/4FKBXQVz T9ap65SyHSqFqXBzRS7RSQxK -----END CERTIFICATE-----Generated at Sat Apr 18 21:08:25 2026 by rpki-client