$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: H5ESN1zL32eMsNDPlM7NI9xVn8G/ZE2p+9WmaFpO4KM= Subject key identifier: 2A:7C:BB:AC:5B:81:C7:67:EC:E9:84:5A:6A:FB:7F:52:53:43:2A:89 Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 3162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 3148 Signing time: Tue 12 May 2026 15:26:34 +0000 Manifest this update: Tue 12 May 2026 15:26:33 +0000 Manifest next update: Tue 19 May 2026 15:26:33 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: L10H8UzaIf5RV2trfttuQfWhbpXiSCjZBOSvGX6rT74=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: uTzcih1KaqTWD5o3aEAbBRCjnKgSsq3hesblpLVQM8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 15:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12642 (0x3162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: May 12 15:26:33 2026 GMT Not After : May 19 15:26:33 2026 GMT Subject: CN=6a0346aa-196f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:43:1f:81:a2:7e:dd:9e:27:ab:8f:77:f0:25: 52:64:21:c0:48:f5:de:10:ab:a1:23:4a:6d:f8:42: 6a:10:d2:40:67:c9:3b:1f:e9:21:a2:80:70:16:c6: 70:69:6a:e8:82:8f:eb:aa:17:48:55:1c:12:0a:5c: 7c:91:59:26:bc:d3:95:15:6e:d0:a7:1f:87:22:95: 58:5f:09:3a:ff:55:66:92:9c:a7:a0:8c:e7:c3:32: 7a:e0:11:56:9e:2e:0d:22:a1:16:41:9e:fe:c8:c4: fd:c0:7d:da:bc:81:31:0b:ef:1e:e2:c3:57:0a:06: 3a:42:ac:f1:f6:fb:76:2e:e5:58:dd:d9:f2:a9:fd: c9:4a:92:5f:8d:2b:e0:af:fb:0b:4d:60:5d:0c:77: 3f:ba:34:31:bb:c6:3c:79:ea:3e:36:71:45:36:c3: 3d:03:54:f4:bd:0b:de:3e:29:41:36:e1:dc:05:8c: 3a:8c:48:d9:82:63:e6:df:12:99:b5:b7:ae:df:29: 52:4d:6d:c2:fb:c6:5e:34:43:57:cc:dd:a4:76:fe: 85:4e:1d:49:a0:90:c9:2c:ee:e3:ee:09:24:86:4e: ae:1c:a6:35:0e:37:b0:f3:46:dc:3c:5f:77:04:86: 57:8a:fb:b9:1b:fa:c5:1b:d6:c5:0f:57:71:21:fa: 59:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7C:BB:AC:5B:81:C7:67:EC:E9:84:5A:6A:FB:7F:52:53:43:2A:89 X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:88:a7:7f:ed:77:44:89:3f:dd:8f:e6:8e:69:e3:9f:d2:2e: c0:a6:a9:29:9a:fd:7a:79:4d:d6:f4:de:cc:b7:60:8d:17:42: 6e:f2:21:76:f3:b1:59:d7:32:96:83:62:68:65:c1:c7:07:22: b5:50:73:71:86:6b:bb:c0:dd:05:ef:9a:6d:18:82:4c:db:6e: 39:26:c7:ce:1e:9e:ad:96:88:e4:a1:97:98:7f:75:ef:fd:9b: ba:f9:46:09:a3:02:1a:41:43:87:b0:6a:a2:97:7b:69:c1:e3: b4:72:a3:be:8c:da:f4:39:08:a5:4b:1f:39:8d:26:b3:2f:92: 92:eb:84:31:03:b2:25:de:61:7f:83:27:7d:95:f6:8f:69:83: a2:3b:e2:4b:68:30:69:ba:c9:d4:b9:34:f7:6b:db:c8:91:ce: 72:ef:44:45:aa:f8:4a:4e:8c:91:0e:96:2d:db:ff:fc:e0:9b: 13:0a:74:14:55:1f:cb:84:77:9a:fe:4a:39:de:ce:95:b6:d6: a3:b7:59:da:39:bd:a5:8b:80:e8:2a:d5:0d:72:0a:3e:6a:25: bf:6c:99:90:e8:3c:19:a5:e1:aa:a1:02:1e:2d:da:b5:c9:9c: 55:a4:4c:b1:a6:7a:d8:a1:ca:37:ba:04:35:3f:6e:31:fe:71: 86:2f:f2:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjYwNTEyMTUyNjMzWhcNMjYwNTE5MTUyNjMzWjAYMRYwFAYD VQQDEw02YTAzNDZhYS0xOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEMfgaJ+3Z4nq4938CVSZCHASPXeEKuhI0pt+EJqENJAZ8k7H+khooBwFsZw aWrogo/rqhdIVRwSClx8kVkmvNOVFW7Qpx+HIpVYXwk6/1VmkpynoIznwzJ64BFW ni4NIqEWQZ7+yMT9wH3avIExC+8e4sNXCgY6Qqzx9vt2LuVY3dnyqf3JSpJfjSvg r/sLTWBdDHc/ujQxu8Y8eeo+NnFFNsM9A1T0vQvePilBNuHcBYw6jEjZgmPm3xKZ tbeu3ylSTW3C+8ZeNENXzN2kdv6FTh1JoJDJLO7j7gkkhk6uHKY1Djew80bcPF93 BIZXivu5G/rFG9bFD1dxIfpZdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCp8u6xb gcdn7OmEWmr7f1JTQyqJMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAv4inf+13RIk/3Y/mjmnjn9IuwKapKZr9enlN1vTezLdgjRdCbvIhdvOxWdcy loNiaGXBxwcitVBzcYZru8DdBe+abRiCTNtuOSbHzh6erZaI5KGXmH917/2buvlG CaMCGkFDh7Bqopd7acHjtHKjvoza9DkIpUsfOY0msy+SkuuEMQOyJd5hf4MnfZX2 j2mDojviS2gwabrJ1Lk092vbyJHOcu9ERar4Sk6MkQ6WLdv//OCbEwp0FFUfy4R3 mv5KOd7OlbbWo7dZ2jm9pYuA6CrVDXIKPmolv2yZkOg8GaXhqqECHi3atcmcVaRM saZ62KHKN7oENT9uMf5xhi/yQw== -----END CERTIFICATE-----Generated at Wed May 13 12:15:53 2026 by rpki-client