$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: 6LWgr91hGys9BnqGBQjg+C0TaHe+MyLTo6TmjPuzOUY= Subject key identifier: 00:00:94:CB:59:56:33:D8:2D:E7:DB:16:A2:B9:A4:AB:0D:EF:B5:35 Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 3149 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 312F Signing time: Tue 24 Mar 2026 15:23:33 +0000 Manifest this update: Tue 24 Mar 2026 15:23:33 +0000 Manifest next update: Tue 31 Mar 2026 15:23:33 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: k1Z27iJS0bqSl+G5sLOMu44026dhnY0oPGJ5OEyzKgc=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: uTzcih1KaqTWD5o3aEAbBRCjnKgSsq3hesblpLVQM8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12617 (0x3149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Mar 24 15:23:33 2026 GMT Not After : Mar 31 15:23:33 2026 GMT Subject: CN=69c2ac75-171b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:75:a9:f8:62:39:d9:21:3f:67:9c:4f:0f:82: ff:6d:12:b8:b9:c5:63:72:b8:1d:eb:2c:90:35:0a: d5:2d:df:55:9d:e8:3b:06:78:db:1f:1a:ec:b5:31: 73:e8:53:51:aa:87:11:9c:9e:f2:2d:6a:20:18:2d: 26:d7:d9:c7:c7:60:b7:fa:22:35:98:2d:de:7a:67: 47:91:33:6d:9a:8b:4c:11:86:10:3d:11:13:1b:1d: d2:19:1c:c6:12:b9:86:4f:8f:e0:ba:4e:25:cb:08: c9:d2:44:b4:91:78:08:72:d1:ed:47:7e:0f:05:0a: f7:5f:d4:ed:b2:17:42:3f:45:92:56:09:23:c8:ca: 42:e9:db:e0:79:a5:ab:a1:99:ca:76:cf:b1:64:e1: d9:47:de:46:28:fe:5e:81:85:da:65:91:fe:4b:3a: 1d:5a:4b:86:06:2d:65:13:ab:7d:0d:69:27:9f:ec: 6e:7f:35:07:35:bb:88:e7:7f:7a:3c:95:55:52:2b: ed:0b:e9:d0:58:95:64:58:23:94:b1:4e:2d:45:7d: 30:51:18:bd:7a:48:6a:61:22:a1:c2:39:25:23:3b: 5e:2b:62:d3:43:f4:19:18:62:a4:eb:69:50:1b:79: 2e:ea:50:b0:70:f9:aa:c8:87:c5:67:f9:0b:2a:df: 2e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:00:94:CB:59:56:33:D8:2D:E7:DB:16:A2:B9:A4:AB:0D:EF:B5:35 X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:92:8d:2c:c1:a3:84:3f:23:d4:ea:89:33:f0:5c:ef:53:2e: 09:7c:12:a2:4b:f3:7a:a3:e9:61:91:3b:7c:f6:3d:02:3c:8d: 8b:54:e4:35:2c:2a:96:54:5f:24:48:eb:3b:77:3a:5c:94:8c: 59:95:ef:ee:85:34:28:e1:b5:bc:a2:c4:ba:16:aa:1d:58:9a: e4:4b:9a:d1:a6:d2:23:7e:70:19:2c:ee:5a:8b:7d:36:a2:18: bf:0f:29:80:59:e7:d2:6a:97:07:e8:d7:96:48:e9:ef:37:21: ae:3d:0b:90:57:40:4f:98:e6:9b:21:a0:fd:f2:e0:ab:d1:16: e1:63:4d:13:24:6e:79:84:0b:85:69:4e:4e:a4:f4:c9:6a:bd: f4:09:a0:37:f4:3c:db:c0:dd:ba:21:f1:dc:38:1c:19:e7:58: 0b:21:35:b0:55:cb:ce:3c:c1:d5:88:cb:a9:08:82:aa:51:f8: c3:69:da:06:47:62:49:c4:8a:c2:9a:94:54:86:10:c7:87:0d: b8:b1:8b:42:c6:40:da:5b:75:fa:57:21:e9:e4:c4:fa:e6:20: 93:9d:e1:c0:35:3d:60:e2:c4:1f:e4:20:be:11:24:73:59:79: b5:4c:e0:4e:74:11:c3:3a:e7:93:81:12:a7:4d:c9:3e:49:b1: ba:fb:89:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICMUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjYwMzI0MTUyMzMzWhcNMjYwMzMxMTUyMzMzWjAYMRYwFAYD VQQDEw02OWMyYWM3NS0xNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjnWp+GI52SE/Z5xPD4L/bRK4ucVjcrgd6yyQNQrVLd9Vneg7BnjbHxrstTFz 6FNRqocRnJ7yLWogGC0m19nHx2C3+iI1mC3eemdHkTNtmotMEYYQPRETGx3SGRzG ErmGT4/guk4lywjJ0kS0kXgIctHtR34PBQr3X9TtshdCP0WSVgkjyMpC6dvgeaWr oZnKds+xZOHZR95GKP5egYXaZZH+SzodWkuGBi1lE6t9DWknn+xufzUHNbuI5396 PJVVUivtC+nQWJVkWCOUsU4tRX0wURi9ekhqYSKhwjklIzteK2LTQ/QZGGKk62lQ G3ku6lCwcPmqyIfFZ/kLKt8usQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAAAlMtZ VjPYLefbFqK5pKsN77U1MB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABJKNLMGjhD8j1OqJM/Bc71MuCXwSokvzeqPpYZE7fPY9AjyNi1TkNSwqllRf JEjrO3c6XJSMWZXv7oU0KOG1vKLEuhaqHVia5Eua0abSI35wGSzuWot9NqIYvw8p gFnn0mqXB+jXlkjp7zchrj0LkFdAT5jmmyGg/fLgq9EW4WNNEyRueYQLhWlOTqT0 yWq99AmgN/Q828DduiHx3DgcGedYCyE1sFXLzjzB1YjLqQiCqlH4w2naBkdiScSK wpqUVIYQx4cNuLGLQsZA2lt1+lch6eTE+uYgk53hwDU9YOLEH+QgvhEkc1l5tUzg TnQRwzrnk4ESp03JPkmxuvuJYg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:40:53 2026 by rpki-client