$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: e7Mcu8AHNf1j4QXgfDRwvfvp9Blak4CPzy14tYEo/ko= Subject key identifier: 87:39:08:20:25:DE:B5:14:7F:83:F2:DB:A6:FE:5F:20:EE:F0:58:08 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 21FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 21DE Signing time: Sun 22 Mar 2026 15:47:38 +0000 Manifest this update: Sun 22 Mar 2026 15:47:37 +0000 Manifest next update: Sun 29 Mar 2026 15:47:37 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: 1YaWABLfKri6RwnnVOy3D/IN0V9zvZNuXfSUmvLBYlI=) 2: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (hash: kXAepDosnfMA1DrO07uYXTdUTk5OxqtBiA3vNI2kZ1k=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: hA/fmykI3XeiZHCbiTTARBykOTtuxS/5r6lg/JS2YzU=) 4: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: 5g3UB7PkGdv29Z5SCWubN0v2fUQJ0C7K/L9HhQY3p7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8701 (0x21fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Mar 22 15:47:37 2026 GMT Not After : Mar 29 15:47:37 2026 GMT Subject: CN=69c00f1a-665d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a5:2c:fe:b8:75:a6:31:8f:e4:3f:a9:38:b4: 9d:7f:e7:c2:40:75:ed:36:f8:31:4f:5f:6e:16:62: e4:5d:3b:de:ee:12:ae:de:9f:30:05:f3:62:00:5c: a0:3e:84:3a:c6:36:77:27:e0:89:db:1e:12:25:66: 37:53:64:36:e7:18:2c:99:c1:87:0d:45:8d:d6:d3: 41:5b:24:08:7e:a4:28:0e:34:9e:dd:75:d8:c4:0e: c1:bd:ac:07:7f:9b:a8:d2:c2:3a:f1:13:a4:e1:e6: ae:30:57:70:fd:df:a2:1e:f5:ce:bf:53:38:32:75: bb:3c:c3:71:e7:7b:67:9c:46:a9:77:16:f5:77:58: a5:8a:7a:72:6c:5e:f3:20:ea:cd:96:f8:64:0a:47: ea:ac:e6:97:1e:4c:8d:75:32:61:40:48:f9:dc:ea: 6a:aa:09:c7:78:0f:b0:f2:37:c4:e6:ec:1a:8d:8b: dd:bf:98:1d:b9:0e:bb:65:eb:78:a4:1d:fc:05:45: 42:a0:81:8d:af:de:2c:89:7e:e1:55:cc:69:8f:a9: ba:22:eb:6a:79:b2:1d:a7:52:d4:ed:c9:3f:fe:5e: 18:0f:a3:78:2b:85:df:07:e9:8d:61:86:cd:5f:7f: 4d:d0:89:76:dc:ca:d1:71:42:ec:fb:7d:29:ea:fd: ee:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:39:08:20:25:DE:B5:14:7F:83:F2:DB:A6:FE:5F:20:EE:F0:58:08 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:34:7a:3b:bf:68:70:3d:ea:06:6b:4d:8e:30:44:12:af:d6: a5:f3:65:0b:bb:b9:55:55:3a:18:0d:01:b4:fb:d8:10:fe:a9: da:50:8f:bb:9f:8d:8d:c5:8b:f2:9f:e8:99:64:c5:90:6e:64: 21:5b:ad:f2:e6:d1:3b:58:dc:c0:3c:92:c4:8f:1c:19:ec:9b: fa:de:5d:c3:94:ad:4a:4a:e6:f6:ba:34:34:36:d0:3e:a8:d6: b2:9c:5d:89:41:b9:d6:10:00:e3:e2:31:46:1e:4b:d7:88:66: 38:b2:c3:9d:57:23:ca:fa:d4:c0:af:ab:c3:08:71:7f:2b:3e: dc:0b:9e:d8:8f:7d:0d:9a:ec:aa:07:cc:2a:b7:ee:e1:71:91: 89:3d:66:60:71:5e:cb:36:14:40:ba:96:cc:5e:e9:96:8e:2e: b5:15:6c:b3:31:12:81:57:0c:52:8a:70:82:7d:72:47:b7:8b: e3:f0:b1:f6:1d:0c:c2:ed:b4:5f:6e:e6:3a:7e:3d:db:1c:6b: 9d:67:9c:73:90:d8:32:a6:bf:f3:71:1d:e0:0b:d5:89:ed:33: f1:c6:d2:bc:26:78:c2:d0:56:bc:b1:9e:a7:b9:7a:2b:f9:fc: 82:a7:17:2b:e7:22:58:d7:d8:ef:fa:2e:df:68:7a:2d:f7:00: 2c:6f:21:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjYwMzIyMTU0NzM3WhcNMjYwMzI5MTU0NzM3WjAYMRYwFAYD VQQDEw02OWMwMGYxYS02NjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKUs/rh1pjGP5D+pOLSdf+fCQHXtNvgxT19uFmLkXTve7hKu3p8wBfNiAFyg PoQ6xjZ3J+CJ2x4SJWY3U2Q25xgsmcGHDUWN1tNBWyQIfqQoDjSe3XXYxA7BvawH f5uo0sI68ROk4eauMFdw/d+iHvXOv1M4MnW7PMNx53tnnEapdxb1d1ilinpybF7z IOrNlvhkCkfqrOaXHkyNdTJhQEj53OpqqgnHeA+w8jfE5uwajYvdv5gduQ67Zet4 pB38BUVCoIGNr94siX7hVcxpj6m6IutqebIdp1LU7ck//l4YD6N4K4XfB+mNYYbN X39N0Il23MrRcULs+30p6v3u+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIc5CCAl 3rUUf4Py26b+XyDu8FgIMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIzR6O79ocD3qBmtNjjBEEq/WpfNlC7u5VVU6GA0BtPvYEP6p2lCPu5+NjcWL 8p/omWTFkG5kIVut8ubRO1jcwDySxI8cGeyb+t5dw5StSkrm9ro0NDbQPqjWspxd iUG51hAA4+IxRh5L14hmOLLDnVcjyvrUwK+rwwhxfys+3Aue2I99DZrsqgfMKrfu 4XGRiT1mYHFeyzYUQLqWzF7plo4utRVsszESgVcMUopwgn1yR7eL4/Cx9h0Mwu20 X27mOn492xxrnWecc5DYMqa/83Ed4AvVie0z8cbSvCZ4wtBWvLGep7l6K/n8gqcX K+ciWNfY7/ou32h6LfcALG8hmw== -----END CERTIFICATE-----Generated at Sun Mar 22 20:16:53 2026 by rpki-client