$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: JSE0dtk/a9DyrA4VEOeVkOJh+nY11zY5QlYCxmtdlEQ= Subject key identifier: 3D:83:5A:43:F5:E7:E3:FE:97:79:52:B3:75:68:46:23:6B:37:0B:CC Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 010E Signing time: Sun 05 Apr 2026 05:26:09 +0000 Manifest this update: Sun 05 Apr 2026 05:26:09 +0000 Manifest next update: Sun 12 Apr 2026 05:26:09 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: fAqIsR+QHTGi1T9JHjPhsvalbFWWCFR7+T40t5IZRpA=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: uTJLxFWxmXVPmsyuMe7D4Y0DugrlFezuy8t+kMf4wQc=) 3: 6D79D956EF8E11F0A4EF9B52626F56BC.roa (hash: KKSESbqhU98WASzJOcVdGg55+wdN1l+Incegb07CJzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Apr 5 05:26:09 2026 GMT Not After : Apr 12 05:26:09 2026 GMT Subject: CN=69d1f271-6cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cb:ec:88:18:ef:fd:88:51:00:08:a7:3a:19: 84:1c:1b:da:bc:96:56:c4:b6:66:18:af:be:58:4a: dd:21:d5:85:25:cf:18:21:13:6d:9c:5b:51:24:bb: 71:13:c3:f1:1a:64:d4:2a:bb:78:65:03:83:e7:fa: 31:8f:16:8f:a7:75:f2:24:9e:25:cb:45:e7:1d:bc: cc:43:d2:60:18:3e:22:24:27:8c:57:13:f5:79:d9: 12:83:3c:63:1f:a5:50:36:6b:78:77:11:b0:81:a2: 0e:49:de:3c:56:39:75:af:c0:48:21:c9:5c:23:41: 01:a1:38:41:33:70:3e:d3:19:84:a2:1b:e2:86:60: f1:b5:38:2f:3c:b6:7f:32:8f:64:c5:7a:49:16:fc: f6:a9:bb:b0:9b:62:13:90:90:8a:d2:79:25:ad:e8: 62:3a:f1:ba:47:cc:0e:3f:62:0b:a7:85:c9:a5:c0: 95:1c:3a:34:da:e7:0f:83:19:d2:e0:00:49:cc:f0: 59:34:63:4b:94:b5:75:b8:f0:3f:13:96:2a:39:ca: 58:13:47:b0:82:08:68:90:d4:6d:d2:e6:32:df:92: 78:8b:94:2b:82:10:06:b0:2d:82:54:e6:78:f4:77: dd:28:fa:01:bd:f3:6f:b4:98:af:bb:57:7b:7a:cf: f4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:83:5A:43:F5:E7:E3:FE:97:79:52:B3:75:68:46:23:6B:37:0B:CC X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e4:0a:02:c9:f0:38:3d:0a:7e:25:41:b2:50:40:9b:aa:a9: c2:64:4b:a2:31:d1:d2:6f:36:bc:7c:b3:33:78:17:1e:76:93: 28:17:e2:a8:88:d0:41:91:31:03:cd:17:49:65:27:16:25:b4: 70:7a:33:48:65:e3:5e:53:36:f0:66:a6:e7:8b:c9:5d:71:3a: 1a:27:ab:05:8e:33:5e:68:02:97:f1:ea:8c:59:43:fd:3e:7c: f5:d4:4e:86:df:9d:d1:b5:8e:00:bf:cd:65:97:c2:8d:f2:df: db:0e:31:d3:c7:f8:fd:9c:82:ea:c0:32:10:a4:ad:7c:51:f1: 5d:06:69:fe:27:66:83:25:11:2b:da:62:d2:ca:bc:ef:f2:6b: 72:ca:f3:44:f9:c4:78:b4:fd:e1:c0:0a:ab:a2:a4:2e:a3:92: 2a:98:3a:33:f7:cc:7a:ac:93:bf:7e:62:41:ad:4a:f6:12:4c: 75:14:75:ec:01:e7:66:43:d2:9c:f8:c0:50:06:65:8c:7e:b2: 7e:3f:86:a4:1a:01:d5:d2:f7:50:38:4e:9d:bc:0f:9b:4a:a6: 9a:aa:0b:ce:a5:94:a0:a9:ee:44:9f:b7:92:e0:2d:ec:45:d4: 51:33:72:56:f9:68:cc:7c:01:ec:60:73:ba:84:8e:6d:68:bf: 41:ed:d6:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjYwNDA1MDUyNjA5WhcNMjYwNDEyMDUyNjA5WjAYMRYwFAYD VQQDEw02OWQxZjI3MS02Y2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsvsiBjv/YhRAAinOhmEHBvavJZWxLZmGK++WErdIdWFJc8YIRNtnFtRJLtx E8PxGmTUKrt4ZQOD5/oxjxaPp3XyJJ4ly0XnHbzMQ9JgGD4iJCeMVxP1edkSgzxj H6VQNmt4dxGwgaIOSd48Vjl1r8BIIclcI0EBoThBM3A+0xmEohvihmDxtTgvPLZ/ Mo9kxXpJFvz2qbuwm2ITkJCK0nklrehiOvG6R8wOP2ILp4XJpcCVHDo02ucPgxnS 4ABJzPBZNGNLlLV1uPA/E5YqOcpYE0ewgghokNRt0uYy35J4i5QrghAGsC2CVOZ4 9HfdKPoBvfNvtJivu1d7es/0UQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD2DWkP1 5+P+l3lSs3VoRiNrNwvMMB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk+QKAsnwOD0KfiVBslBAm6qpwmRLojHR0m82vHyzM3gXHnaTKBfiqIjQQZEx A80XSWUnFiW0cHozSGXjXlM28Gam54vJXXE6GierBY4zXmgCl/HqjFlD/T589dRO ht+d0bWOAL/NZZfCjfLf2w4x08f4/ZyC6sAyEKStfFHxXQZp/idmgyURK9pi0sq8 7/JrcsrzRPnEeLT94cAKq6KkLqOSKpg6M/fMeqyTv35iQa1K9hJMdRR17AHnZkPS nPjAUAZljH6yfj+GpBoB1dL3UDhOnbwPm0qmmqoLzqWUoKnuRJ+3kuAt7EXUUTNy VvlozHwB7GBzuoSObWi/Qe3WZg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:49:17 2026 by rpki-client