$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: f0Em0skSsH7NKaBj4CVPFk5jlcOFd9avuHHj7j8UIrY= Subject key identifier: B4:AE:25:D1:70:A6:F4:13:1E:D7:D5:AF:24:4A:1F:9F:82:DF:CB:22 Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 45 Signing time: Thu 17 Apr 2025 06:17:17 +0000 Manifest this update: Thu 17 Apr 2025 06:17:17 +0000 Manifest next update: Thu 24 Apr 2025 06:17:17 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: ZI+BkfXmkqJk1AbB7bEwy4G1QrjwSlKtazp7+UUgl0I=) 2: E454A324EC5811EF80EABF18C4F9AE02.roa (hash: YHG5dJrgWguVVX0TqVGNfIMAFQq1FZHSymYvBAi+Egs=) 3: C48E5CA6EC5811EFB20A8A18C4F9AE02.roa (hash: vLgyAt4VKcLI4TYUSdqX2oSSFdxzy2+HjS3FIN16Cr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 06:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Apr 17 06:17:17 2025 GMT Not After : Apr 24 06:17:17 2025 GMT Subject: CN=68009ced-11c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:13:0a:7d:40:eb:66:bc:84:ce:58:62:3c:a8: 5a:af:4a:cc:0c:80:35:55:75:fe:38:8e:10:e3:99: c1:5f:1c:57:a8:48:b8:72:60:94:fe:d4:79:68:98: 19:15:ab:0a:28:3a:fb:81:cb:d0:be:4a:b1:61:61: ce:5f:54:eb:16:b9:bf:40:cb:bf:76:e5:9e:e3:54: 2b:18:48:d6:04:20:68:b6:15:d4:63:2d:0f:19:06: 01:06:2e:ca:c1:b0:fe:45:9e:6c:77:9e:f4:e9:f7: 2c:08:78:6e:e1:aa:b1:8b:fb:29:60:5e:01:85:fd: f6:7d:70:cb:d2:75:5d:bb:c5:8e:bc:b9:e8:34:cb: c1:25:08:e1:6a:ad:3c:86:80:c5:50:cf:11:cd:7c: 0e:80:0f:9d:d7:2f:fb:cb:01:78:a7:48:8c:cf:d3: 00:74:4a:cc:9a:b6:78:db:28:be:45:cd:cb:99:bd: aa:d5:b3:9e:af:ad:d8:1e:cb:1d:64:2b:e1:60:32: 0c:db:4f:18:98:be:fb:f1:85:f0:b6:76:f1:47:39: f9:84:34:09:3d:ce:6a:e3:8c:5f:f0:f2:ef:9b:72: ff:ff:72:b5:2e:7c:83:59:00:e0:16:48:d0:1a:4b: ee:f3:4f:c4:ad:65:d8:a6:59:0a:e6:7f:5a:23:54: 70:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:AE:25:D1:70:A6:F4:13:1E:D7:D5:AF:24:4A:1F:9F:82:DF:CB:22 X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:06:4f:ec:49:47:16:19:ca:8b:79:46:ab:2e:c5:83:56:fa: ab:37:01:0e:3a:f0:43:5c:ad:9e:45:c8:88:06:82:e6:08:4b: 81:7a:3b:91:22:a0:f3:19:77:a6:54:f5:cd:c9:99:fb:5e:d9: d8:9b:01:9c:b4:d8:d2:7b:03:72:18:bb:8a:cc:d4:fd:f3:74: ac:40:ee:cc:a1:0a:e6:e7:8e:f3:3b:95:59:06:a8:4a:b2:e0: f6:65:22:0f:e4:0d:45:48:8e:8e:d0:86:46:bd:6b:12:63:d9: 08:0c:46:ac:48:e0:65:2f:35:f7:8b:05:28:55:40:b3:34:cb: ed:f3:b8:22:50:d6:81:9a:55:3c:6d:33:8e:42:99:ae:a3:06: ab:cb:e3:eb:a9:f6:d2:9a:a3:a6:54:6d:49:ca:fb:ef:c9:d3: 9f:63:b4:71:bc:06:fe:61:d8:2f:cc:3f:66:63:26:e2:fb:f4: 65:19:00:4b:a6:63:b3:2f:f3:c3:60:e0:2a:06:8e:0b:0d:20: 58:18:1b:06:b8:0f:c1:c6:62:e1:62:01:67:bd:3b:24:ac:17: 6f:f2:7f:fc:b5:36:c5:a7:70:4d:96:c0:4f:46:a7:51:9a:d1: 1d:f2:9f:74:83:00:45:08:45:ca:31:97:92:1f:9a:20:e1:fa: b7:08:97:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNTA0MTcwNjE3MTdaFw0yNTA0MjQwNjE3MTdaMBgxFjAUBgNV BAMTDTY4MDA5Y2VkLTExYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQEwp9QOtmvITOWGI8qFqvSswMgDVVdf44jhDjmcFfHFeoSLhyYJT+1HlomBkV qwooOvuBy9C+SrFhYc5fVOsWub9Ay7925Z7jVCsYSNYEIGi2FdRjLQ8ZBgEGLsrB sP5Fnmx3nvTp9ywIeG7hqrGL+ylgXgGF/fZ9cMvSdV27xY68ueg0y8ElCOFqrTyG gMVQzxHNfA6AD53XL/vLAXinSIzP0wB0SsyatnjbKL5FzcuZvarVs56vrdgeyx1k K+FgMgzbTxiYvvvxhfC2dvFHOfmENAk9zmrjjF/w8u+bcv//crUufINZAOAWSNAa S+7zT8StZdimWQrmf1ojVHBBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtK4l0XCm 9BMe19WvJEofn4LfyyIwHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NzUzLzc4MDlEQTAyQkMwRDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJO R1NqRjNxeklRR1VMbXBSby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwGT+xJRxYZyot5RqsuxYNW+qs3AQ468ENcrZ5FyIgGguYIS4F6O5Ei oPMZd6ZU9c3Jmfte2dibAZy02NJ7A3IYu4rM1P3zdKxA7syhCubnjvM7lVkGqEqy 4PZlIg/kDUVIjo7Qhka9axJj2QgMRqxI4GUvNfeLBShVQLM0y+3zuCJQ1oGaVTxt M45Cma6jBqvL4+up9tKao6ZUbUnK++/J059jtHG8Bv5h2C/MP2ZjJuL79GUZAEum Y7Mv88Ng4CoGjgsNIFgYGwa4D8HGYuFiAWe9OySsF2/yf/y1NsWncE2WwE9Gp1Ga 0R3yn3SDAEUIRcoxl5IfmiDh+rcIl6g= -----END CERTIFICATE-----Generated at Fri Apr 18 18:46:58 2025 by rpki-client