$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: j9zvdDz1JiGm0zW4LQ0NYELIPGgh1W50tfiIBsBwRzA= Subject key identifier: 3F:F4:30:78:68:1A:B2:6A:10:42:42:B5:11:7F:25:33:4D:78:9E:60 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 0108 Signing time: Wed 25 Mar 2026 05:18:45 +0000 Manifest this update: Wed 25 Mar 2026 05:18:44 +0000 Manifest next update: Wed 01 Apr 2026 05:18:44 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: UWT2t0voSEkEDJiLSMHjaC/ppJpX7NmVXQijw+Ts3n8=) 2: 6D79D956EF8E11F0A4EF9B52626F56BC.roa (hash: KKSESbqhU98WASzJOcVdGg55+wdN1l+Incegb07CJzg=) 3: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: uTJLxFWxmXVPmsyuMe7D4Y0DugrlFezuy8t+kMf4wQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Mar 25 05:18:44 2026 GMT Not After : Apr 1 05:18:44 2026 GMT Subject: CN=69c37035-23aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bb:54:cf:d6:88:8f:4b:b6:46:4a:19:7f:21: 1f:38:95:a8:31:7a:ab:71:c2:3c:04:a9:79:11:a1: 70:d8:c7:0d:ac:af:bd:aa:23:fe:13:e5:f5:66:c0: 7d:a6:02:fa:a2:24:49:70:bf:86:d2:b3:7b:08:fa: ab:82:cb:1b:af:8a:86:d5:e2:43:a8:a6:75:6b:24: 8c:47:38:9f:14:88:9b:38:ed:44:c1:84:70:10:39: bd:dc:58:f7:04:6d:e9:bf:af:76:ef:1d:bf:ca:52: 44:62:2d:59:13:4b:61:d7:66:b4:c7:56:f1:96:0e: 14:b4:7f:c3:db:ef:4b:a8:fd:68:06:05:b3:83:52: c1:3f:30:01:91:c1:b1:b0:df:3e:01:74:ee:30:77: 90:13:4e:fe:fe:12:bc:5e:8b:62:2a:72:eb:e7:c7: 6f:54:a4:83:64:c9:f1:1f:29:a1:bf:d3:83:4c:40: 07:a5:08:70:73:ba:7d:04:e9:51:55:ba:ae:00:a3: 86:11:b8:76:bc:eb:2f:e0:6b:25:d0:58:7c:74:b6: 56:82:79:d5:47:b0:27:fe:4d:2e:a7:69:70:96:0a: e8:0d:4b:37:bc:1e:51:b6:80:87:b1:46:14:b3:78: 34:d7:1a:37:fb:c4:f3:d8:4a:9e:b4:8c:86:01:18: bc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F4:30:78:68:1A:B2:6A:10:42:42:B5:11:7F:25:33:4D:78:9E:60 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:93:0f:52:74:a5:7a:c8:1d:e2:f8:d2:2a:96:c5:6c:c2:26: 08:a8:95:10:1e:41:9e:d2:83:9f:d8:8f:e0:15:e6:24:41:12: 96:bd:cb:1d:c2:2c:62:2d:ad:a1:60:5e:a3:f1:74:34:16:27: 1d:25:d7:0e:e4:35:67:04:63:96:e1:5c:33:24:f5:19:3a:04: 48:cc:20:4e:13:d1:13:10:5f:f5:41:37:b3:a6:7d:f0:da:8b: ba:85:47:30:75:b6:03:83:ba:4b:7d:d0:04:18:26:03:af:61: 15:21:55:65:18:26:0d:f3:dc:2d:88:41:27:c7:ce:58:4f:16: f6:69:5a:bf:05:e9:4c:09:70:48:e8:ac:f6:87:50:14:b7:a4: 91:4c:09:24:31:97:79:0d:41:27:b8:f7:43:27:3b:d2:58:94: a8:10:ec:a3:c6:fe:ac:53:1f:5e:96:a8:b7:b8:ef:7e:75:dd: e1:da:b0:bb:60:ff:c9:e9:ba:21:38:cd:14:46:e7:39:c6:44: 5e:1a:c2:49:72:15:3a:d8:2c:80:30:0e:c0:f2:a9:a0:45:d6: 7b:e8:cd:9d:61:5a:1e:ab:2b:90:1c:4b:74:2d:df:99:cf:d8: 32:f5:46:d0:a4:9a:19:43:ab:b3:0e:da:ff:d5:f6:f2:f0:5e: 6a:6b:10:e2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjYwMzI1MDUxODQ0WhcNMjYwNDAxMDUxODQ0WjAYMRYwFAYD VQQDEw02OWMzNzAzNS0yM2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLtUz9aIj0u2RkoZfyEfOJWoMXqrccI8BKl5EaFw2McNrK+9qiP+E+X1ZsB9 pgL6oiRJcL+G0rN7CPqrgssbr4qG1eJDqKZ1aySMRzifFIibOO1EwYRwEDm93Fj3 BG3pv6927x2/ylJEYi1ZE0th12a0x1bxlg4UtH/D2+9LqP1oBgWzg1LBPzABkcGx sN8+AXTuMHeQE07+/hK8XotiKnLr58dvVKSDZMnxHymhv9ODTEAHpQhwc7p9BOlR VbquAKOGEbh2vOsv4Gsl0Fh8dLZWgnnVR7An/k0up2lwlgroDUs3vB5RtoCHsUYU s3g01xo3+8Tz2EqetIyGARi8jQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD/0MHho GrJqEEJCtRF/JTNNeJ5gMB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHJMPUnSlesgd4vjSKpbFbMImCKiVEB5BntKDn9iP4BXmJEESlr3LHcIsYi2t oWBeo/F0NBYnHSXXDuQ1ZwRjluFcMyT1GToESMwgThPRExBf9UE3s6Z98NqLuoVH MHW2A4O6S33QBBgmA69hFSFVZRgmDfPcLYhBJ8fOWE8W9mlavwXpTAlwSOis9odQ FLekkUwJJDGXeQ1BJ7j3Qyc70liUqBDso8b+rFMfXpaot7jvfnXd4dqwu2D/yem6 ITjNFEbnOcZEXhrCSXIVOtgsgDAOwPKpoEXWe+jNnWFaHqsrkBxLdC3fmc/YMvVG 0KSaGUOrsw7a/9X28vBeamsQ4g== -----END CERTIFICATE-----Generated at Thu Mar 26 19:44:26 2026 by rpki-client