$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: cstz+edpiWfRUHMrcf0qSXEposr/i9uvq4JAGN4Zyts= Subject key identifier: DB:2A:D7:5D:B9:5F:82:69:CD:7B:CC:2D:F4:DF:AE:F1:F6:CF:C9:1A Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 2230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 220E Signing time: Sat 20 Jun 2026 15:49:45 +0000 Manifest this update: Sat 20 Jun 2026 15:49:44 +0000 Manifest next update: Sat 27 Jun 2026 15:49:44 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: 7X+c1VBu0hJxhTJ69dpQ3WwWnBdRNLP3gHZbqVBqrcA=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: PFFhqDUXgOwHYlXLP448JNGm2ge+CUxQd0U8hOPUQgY=) 3: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (hash: qtDGFMhOJ0VDlUc12bIr/PPNosh512QuOLF2MOl6QGc=) 4: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: +kDsd0MsrUW9X5xLDAdvHx0LSDWy4PnbmaV19ILgdxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Jun 2026 15:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8752 (0x2230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Jun 20 15:49:44 2026 GMT Not After : Jun 27 15:49:44 2026 GMT Subject: CN=6a36b699-5c88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:36:4b:5d:60:8d:e1:51:a0:5a:c0:04:35: b3:6b:a2:6c:65:20:93:1e:0c:61:8f:8d:f7:e2:20: 84:a5:74:6f:49:e6:2f:31:52:39:b8:88:b6:b3:16: ca:45:94:64:be:8a:69:b2:cd:fe:a5:f6:1c:fb:96: 94:c9:6e:8b:7d:dd:c6:d6:76:2b:e1:ae:0c:f3:1b: 71:41:4a:af:ad:d5:2d:19:b0:54:d3:cb:b9:9f:a0: bd:27:98:12:0b:06:29:15:29:3c:6d:09:49:38:3c: 27:7a:71:77:35:a1:7f:6d:ce:e4:05:43:0a:9a:3f: 42:e2:5c:6b:69:66:6f:92:d7:71:4c:8d:7d:07:36: 31:de:b8:df:58:03:06:a9:a9:f5:32:2f:53:cf:29: 64:fd:08:d6:c5:90:e3:4c:7c:1b:c3:57:c2:93:8e: fa:87:0d:6d:90:df:fa:46:61:79:ec:3a:53:69:ff: 3a:f9:48:81:48:0d:99:37:36:be:15:27:ad:fb:12: f9:ba:cf:d7:33:68:9a:50:06:87:39:61:18:08:9d: 4d:ca:e2:3f:22:95:cd:ca:f2:ac:57:f1:e2:73:5b: c3:a3:09:5f:03:a4:de:7b:cc:cc:f3:3b:ab:ac:d9: 3a:ff:a2:61:70:dd:10:b5:73:bd:3a:55:00:71:44: f6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:2A:D7:5D:B9:5F:82:69:CD:7B:CC:2D:F4:DF:AE:F1:F6:CF:C9:1A X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:54:37:c6:30:e0:f3:58:47:05:0e:2f:ad:83:e2:fe:d1:d0: a7:db:76:a6:8b:32:dd:ba:90:fd:2d:6c:d4:c3:87:86:45:9a: ad:d1:74:41:f8:f2:c7:a0:19:b1:83:82:85:fb:c0:a3:fd:a9: 4d:e2:ad:8e:1d:e6:f2:77:42:21:a7:e7:47:0e:cb:05:11:52: 21:cb:44:08:e5:95:74:e7:8c:41:ad:8b:b0:09:80:d1:90:41: 62:dc:97:f3:e9:16:48:98:2e:2e:60:20:0d:96:61:49:25:55: 63:d4:85:2e:37:64:63:6a:45:43:0b:1d:fd:ba:49:01:07:8d: f7:9b:b7:0b:e7:24:7a:1f:29:71:71:9b:c8:86:ff:9b:fb:4b: ca:29:23:d7:cb:7b:58:d1:08:46:89:c1:a0:2e:96:ab:ef:ac: f4:30:8a:13:43:62:60:be:82:25:70:df:cd:ef:69:e3:ea:c0: 18:14:dd:45:d4:69:5f:3e:2a:d1:6b:ef:0b:3a:e7:c2:2b:78: 0e:9b:9b:73:40:34:9c:96:a2:6d:08:b8:1d:0e:4a:63:41:2d: 2a:e7:9d:f5:5d:48:4f:68:fb:01:1b:28:14:d2:dc:d6:db:e8: 7c:8c:be:95:d1:a2:e7:7f:6b:f2:ef:9f:da:cb:61:a7:33:d6: 05:a2:27:6c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjYwNjIwMTU0OTQ0WhcNMjYwNjI3MTU0OTQ0WjAYMRYwFAYD VQQDEw02YTM2YjY5OS01Yzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbI2S11gjeFRoFrABDWza6JsZSCTHgxhj4334iCEpXRvSeYvMVI5uIi2sxbK RZRkvoppss3+pfYc+5aUyW6Lfd3G1nYr4a4M8xtxQUqvrdUtGbBU08u5n6C9J5gS CwYpFSk8bQlJODwnenF3NaF/bc7kBUMKmj9C4lxraWZvktdxTI19BzYx3rjfWAMG qan1Mi9Tzylk/QjWxZDjTHwbw1fCk476hw1tkN/6RmF57DpTaf86+UiBSA2ZNza+ FSet+xL5us/XM2iaUAaHOWEYCJ1NyuI/IpXNyvKsV/Hic1vDowlfA6Tee8zM8zur rNk6/6JhcN0QtXO9OlUAcUT2BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNsq1125 X4JpzXvMLfTfrvH2z8kaMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAx1Q3xjDg81hHBQ4vrYPi/tHQp9t2posy3bqQ/S1s1MOHhkWardF0Qfjyx6AZ sYOChfvAo/2pTeKtjh3m8ndCIafnRw7LBRFSIctECOWVdOeMQa2LsAmA0ZBBYtyX 8+kWSJguLmAgDZZhSSVVY9SFLjdkY2pFQwsd/bpJAQeN95u3C+ckeh8pcXGbyIb/ m/tLyikj18t7WNEIRonBoC6Wq++s9DCKE0NiYL6CJXDfze9p4+rAGBTdRdRpXz4q 0WvvCzrnwit4Dpubc0A0nJaibQi4HQ5KY0EtKued9V1IT2j7ARsoFNLc1tvofIy+ ldGi539r8u+f2sthpzPWBaInbA== -----END CERTIFICATE-----Generated at Mon Jun 22 11:50:12 2026 by rpki-client