$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: 2zbtd01EYp0GPobveAOqmqPJn9OgAYgzcXGrYpPw8pc= Subject key identifier: 77:E0:6C:26:84:1E:46:0F:27:B6:D3:FF:1D:92:A0:B3:5E:F7:89:19 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 0121 Signing time: Wed 13 May 2026 05:54:23 +0000 Manifest this update: Wed 13 May 2026 05:54:23 +0000 Manifest next update: Wed 20 May 2026 05:54:23 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: 14+DyXPGo/iDKe4fgFOoeteVOubWTq3tJMNdqEPnmtI=) 2: 6D79D956EF8E11F0A4EF9B52626F56BC.roa (hash: KKSESbqhU98WASzJOcVdGg55+wdN1l+Incegb07CJzg=) 3: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: uTJLxFWxmXVPmsyuMe7D4Y0DugrlFezuy8t+kMf4wQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:54:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: May 13 05:54:23 2026 GMT Not After : May 20 05:54:23 2026 GMT Subject: CN=6a04120f-5657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b0:b5:74:98:60:21:c9:0f:8d:9a:ee:e7:66: cc:53:15:93:fe:09:c7:4c:80:c0:8e:a8:05:05:b7: 6e:59:aa:f1:7f:91:80:b0:dd:8b:4e:b4:bf:1f:2f: 96:7b:11:75:16:bf:86:4f:dc:51:74:7d:5a:a2:84: 4a:f6:e1:28:69:0b:7b:a8:b9:3e:cf:d0:22:be:12: ed:48:39:f0:d3:00:26:5b:0f:7a:59:49:95:ba:ea: 16:f2:2f:ca:91:c0:c6:e2:d1:87:b0:eb:6c:63:89: 8f:d8:5b:5d:9c:11:ad:4e:d1:2e:c6:12:fc:1a:fa: 15:25:0c:5a:e4:98:53:b5:4e:1e:6e:0a:19:36:cd: 08:aa:ed:2f:66:27:6c:5e:40:94:b8:fe:33:b9:b2: e4:ba:c1:2c:bc:b1:ee:c2:15:b1:2d:bb:63:77:41: 28:e4:ba:b7:a7:43:b7:b6:58:cd:4e:11:ff:d8:97: 87:ce:5c:a2:5b:53:38:28:03:40:ba:54:46:fc:6d: 38:e6:5a:ce:5a:3a:3b:c4:61:83:c7:b5:c3:2a:a2: 7c:7d:3e:c6:a8:d6:3b:78:bd:e0:09:37:cb:8b:91: 28:72:d9:fe:5e:0a:1b:73:a3:dc:49:be:38:6a:c7: af:fc:c0:39:a3:79:df:bc:87:80:74:88:eb:22:78: 4c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E0:6C:26:84:1E:46:0F:27:B6:D3:FF:1D:92:A0:B3:5E:F7:89:19 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7d:4d:14:e0:04:8b:85:8f:e7:ec:c1:98:57:a7:ad:f9:36: 68:82:42:6d:e6:a9:c5:3a:5d:73:f6:da:6f:e4:8e:06:8c:ba: 8b:d9:e6:31:8e:40:df:c5:6f:18:76:ab:fa:c1:9a:8d:e1:2e: ca:a1:ba:71:a5:7e:97:9a:dc:35:d6:66:71:1a:ca:65:ca:d9: 42:c8:55:a8:3e:ba:a8:d5:06:5e:13:65:79:76:43:65:0b:70: f4:ab:21:94:33:d7:ed:6f:99:d5:34:4e:56:50:1c:77:0d:b6: 08:f9:7d:63:44:d5:b7:92:6d:ba:41:40:49:8e:54:9f:7b:b8: 3f:92:73:3f:c8:3d:4b:35:37:f0:b4:b1:65:01:59:c6:f4:28: fa:5e:f2:30:30:c7:10:fe:2b:95:c7:34:ed:84:fa:35:4c:4c: 28:5b:e2:8c:a1:d1:06:36:4d:b0:16:88:fa:9e:7b:06:52:3b: 98:e5:97:91:50:30:86:1e:00:38:ba:70:ae:b1:c1:97:57:ce: 97:ec:52:da:87:91:56:21:e5:9a:d8:f3:b8:47:86:d8:c9:7c: 63:14:03:a0:fe:69:cb:c5:f2:2d:c1:7c:cb:0f:df:5f:8b:77: 42:d2:a4:4d:67:17:66:94:44:ae:66:45:80:59:cc:ad:7f:f9: 4f:e3:d6:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjYwNTEzMDU1NDIzWhcNMjYwNTIwMDU1NDIzWjAYMRYwFAYD VQQDEw02YTA0MTIwZi01NjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobC1dJhgIckPjZru52bMUxWT/gnHTIDAjqgFBbduWarxf5GAsN2LTrS/Hy+W exF1Fr+GT9xRdH1aooRK9uEoaQt7qLk+z9AivhLtSDnw0wAmWw96WUmVuuoW8i/K kcDG4tGHsOtsY4mP2FtdnBGtTtEuxhL8GvoVJQxa5JhTtU4ebgoZNs0Iqu0vZids XkCUuP4zubLkusEsvLHuwhWxLbtjd0Eo5Lq3p0O3tljNThH/2JeHzlyiW1M4KANA ulRG/G045lrOWjo7xGGDx7XDKqJ8fT7GqNY7eL3gCTfLi5Eoctn+Xgobc6PcSb44 asev/MA5o3nfvIeAdIjrInhMFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHfgbCaE HkYPJ7bT/x2SoLNe94kZMB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMn1NFOAEi4WP5+zBmFenrfk2aIJCbeapxTpdc/bab+SOBoy6i9nmMY5A38Vv GHar+sGajeEuyqG6caV+l5rcNdZmcRrKZcrZQshVqD66qNUGXhNleXZDZQtw9Ksh lDPX7W+Z1TROVlAcdw22CPl9Y0TVt5JtukFASY5Un3u4P5JzP8g9SzU38LSxZQFZ xvQo+l7yMDDHEP4rlcc07YT6NUxMKFvijKHRBjZNsBaI+p57BlI7mOWXkVAwhh4A OLpwrrHBl1fOl+xS2oeRViHlmtjzuEeG2Ml8YxQDoP5py8XyLcF8yw/fX4t3QtKk TWcXZpRErmZFgFnMrX/5T+PWrw== -----END CERTIFICATE-----Generated at Wed May 13 20:21:04 2026 by rpki-client