$ rpki-client -vvf rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft File: bXwian3LhfL0kha367ANXwOmBcM.mft (raw, json) Hash identifier: hoyWnAqXjkCAj2GPVFAw/TQ617zk8W0iKZORvugcOQI= Subject key identifier: 50:C8:3E:E1:08:B1:60:E2:C3:CC:39:1E:03:45:A0:66:1B:E4:CA:F4 Authority key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 Certificate issuer: /CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Certificate serial: 1432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft Manifest number: 1403 Signing time: Tue 24 Mar 2026 16:50:33 +0000 Manifest this update: Tue 24 Mar 2026 16:50:32 +0000 Manifest next update: Tue 31 Mar 2026 16:50:32 +0000 Files and hashes: 1: bXwian3LhfL0kha367ANXwOmBcM.crl (hash: 7WBCIEPAKCA4x4m3leCLHL0DkogjvujMULcdPp8S+Ac=) 2: 3DC8B712E14411EFBECFB90BC4F9AE02.roa (hash: /opDjyqnkzPqfLmMUvw/7EQ9PTKNpIy/7L1DfTTvO0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5170 (0x1432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91809AD, serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Validity Not Before: Mar 24 16:50:32 2026 GMT Not After : Mar 31 16:50:32 2026 GMT Subject: CN=69c2c0d9-18d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:14:ce:9f:b1:91:98:04:0a:16:2c:3a:c9:9f: f3:4f:db:a8:82:97:f6:d0:77:00:ec:82:26:15:4c: 4c:da:df:c2:4a:b8:27:28:e4:20:da:af:d6:be:c4: 22:ed:42:7e:75:19:9c:fc:d5:80:82:a0:37:3f:dd: 02:fa:dd:27:b0:8c:95:9d:c0:dd:9c:de:3e:48:a9: 24:56:24:51:42:d1:5a:ab:0e:16:f5:b4:84:9a:7d: b4:be:77:d1:89:58:57:74:ea:3a:a1:83:1c:d4:72: 2d:cb:0f:c4:bb:51:f2:08:70:3e:03:22:d3:a4:52: 75:0b:3f:f8:f7:b1:55:88:7d:7d:98:9e:68:4e:53: 50:94:6f:af:a0:c8:04:3c:53:2f:7e:f8:6b:3a:4a: fd:a2:06:b6:f4:56:2f:5a:45:87:e6:5e:e0:cf:36: bc:3c:b2:7b:00:d1:62:06:91:62:d5:96:86:34:e3: a7:93:67:7d:a4:6d:73:5f:ec:c6:dc:82:cd:2a:be: 51:a5:aa:0a:ca:64:e8:a4:d1:35:4c:4f:a8:ca:6a: a1:bc:e7:38:38:b1:f1:10:e7:ee:43:44:78:6f:79: 2d:c8:71:3c:f9:be:d7:3b:43:66:9b:74:3d:af:ca: b2:37:c0:33:a1:3f:44:e0:8a:a9:41:2c:ed:e7:48: 9a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C8:3E:E1:08:B1:60:E2:C3:CC:39:1E:03:45:A0:66:1B:E4:CA:F4 X509v3 Authority Key Identifier: keyid:6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b0:48:72:a5:52:59:e7:c8:ff:f3:ba:c3:f8:2f:87:e8:83: d6:35:39:f3:6e:7e:1f:01:68:36:61:1e:59:fb:3e:bf:4e:ef: e1:8e:c0:a9:1f:96:0e:62:69:82:8e:db:b1:d7:33:f4:e9:8d: e8:dd:d7:c8:e0:26:a6:9e:81:56:7a:c1:39:05:40:59:86:7e: 1c:9f:b4:dd:28:7b:52:16:6e:3c:5a:6a:7c:6a:03:39:19:70: 9e:0e:cb:00:c1:48:13:b5:a8:8d:62:67:45:69:c6:9b:29:cd: 6e:85:b9:61:56:d7:0b:86:52:d5:fb:91:49:d3:be:21:05:f8: d1:be:da:16:9d:fd:b6:88:f5:9a:9d:13:ba:e4:9f:ab:6e:db: c0:61:20:fc:f0:a1:37:74:33:e6:a0:e6:2a:b0:e1:20:89:a3: 8d:52:2b:68:55:b1:c4:5b:67:53:e9:29:35:9b:7e:5e:04:12: a9:4f:d3:a4:19:fa:34:e9:0f:e1:d5:c0:51:dd:58:f7:3c:f2: 1a:8d:80:65:41:ed:53:bc:b6:9f:f8:05:f0:fd:86:52:8a:37: 8a:74:2a:e2:1b:f4:b1:4e:22:31:ad:ae:ea:cf:69:6a:48:26: f4:6b:5a:af:a8:7e:7a:40:27:6c:19:11:31:15:dd:a0:f0:fb: 72:92:43:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA5QUQxMTAvBgNVBAUTKDZEN0MyMjZBN0RDQjg1RjJGNDkyMTZCN0VCQjAwRDVG MDNBNjA1QzMwHhcNMjYwMzI0MTY1MDMyWhcNMjYwMzMxMTY1MDMyWjAYMRYwFAYD VQQDEw02OWMyYzBkOS0xOGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxTOn7GRmAQKFiw6yZ/zT9uogpf20HcA7IImFUxM2t/CSrgnKOQg2q/WvsQi 7UJ+dRmc/NWAgqA3P90C+t0nsIyVncDdnN4+SKkkViRRQtFaqw4W9bSEmn20vnfR iVhXdOo6oYMc1HItyw/Eu1HyCHA+AyLTpFJ1Cz/497FViH19mJ5oTlNQlG+voMgE PFMvfvhrOkr9oga29FYvWkWH5l7gzza8PLJ7ANFiBpFi1ZaGNOOnk2d9pG1zX+zG 3ILNKr5RpaoKymTopNE1TE+oymqhvOc4OLHxEOfuQ0R4b3ktyHE8+b7XO0Nmm3Q9 r8qyN8AzoT9E4IqpQSzt50iazQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFDIPuEI sWDiw8w5HgNFoGYb5Mr0MB8GA1UdIwQYMBaAFG18Imp9y4Xy9JIWt+uwDV8DpgXD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDlBRC82NTZERDI2QUE3 NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhmTDBraGEzNjdBTlh3T21C Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYd2lhbjNMaGZMMGtoYTM2N0FOWHdPbUJjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDlBRC82NTZERDI2QUE3NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhm TDBraGEzNjdBTlh3T21CY00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXbBIcqVSWefI//O6w/gvh+iD1jU5825+HwFoNmEeWfs+v07v4Y7AqR+WDmJp go7bsdcz9OmN6N3XyOAmpp6BVnrBOQVAWYZ+HJ+03Sh7UhZuPFpqfGoDORlwng7L AMFIE7WojWJnRWnGmynNboW5YVbXC4ZS1fuRSdO+IQX40b7aFp39toj1mp0TuuSf q27bwGEg/PChN3Qz5qDmKrDhIImjjVIraFWxxFtnU+kpNZt+XgQSqU/TpBn6NOkP 4dXAUd1Y9zzyGo2AZUHtU7y2n/gF8P2GUoo3inQq4hv0sU4iMa2u6s9pakgm9Gta r6h+ekAnbBkRMRXdoPD7cpJDIQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:19 2026 by rpki-client