$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: Qn1LOtvazqyk+8ac7n9SqBbUYxNrzi858GUyhIaku5w= Subject key identifier: F5:06:94:ED:A3:4D:0A:59:11:E1:F0:8E:D0:4D:71:29:AE:11:59:0E Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: A6 Signing time: Fri 17 Oct 2025 09:45:14 +0000 Manifest this update: Fri 17 Oct 2025 09:45:13 +0000 Manifest next update: Fri 24 Oct 2025 09:45:13 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: JB96RrKci+t9uQ7PmwgUzOHt1o6tawIj5cQSLhHff9k=) 2: E941D4F2A4FD11F090BC8576C4F9AE02.roa (hash: duEUr4kKsrDJuBz+0GVZgBqKhdqXHVgsZ+uYpS7Bds4=) 3: FEF58B2CA4FD11F0B44CA476C4F9AE02.roa (hash: iGhDBnOxWhw1jSJu/LLfS77DST3/2+GFITpYk8hPiGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 09:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Oct 17 09:45:13 2025 GMT Not After : Oct 24 09:45:13 2025 GMT Subject: CN=68f21029-8584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:11:23:d0:eb:58:87:b1:a9:f2:99:d5:e1:98: be:9b:d0:bb:72:d2:2d:e6:05:60:5d:90:bb:a6:96: e6:cc:33:21:fb:0a:e6:53:05:12:2f:9d:53:e2:03: d2:95:af:15:0a:20:f4:c7:88:9a:5c:46:e6:7e:2d: 66:7e:25:23:47:7e:bb:30:aa:86:dd:04:3b:8f:e3: d9:cf:6d:9c:8b:d9:a1:00:c4:28:23:0c:0d:a5:55: 75:6f:d9:9e:ab:ce:8e:46:a4:d1:0c:9c:fa:90:00: c5:b1:37:c5:e8:da:5e:8b:9a:b5:e9:be:89:82:7c: b5:08:82:7c:d1:fd:be:c8:55:31:47:4c:73:59:2e: 6f:ca:c4:61:44:17:4a:1c:61:2d:15:d2:d0:e8:54: dd:ea:25:82:02:d5:ff:0a:03:2b:eb:0c:d6:34:00: a2:a7:4f:ff:3c:20:4b:0e:0b:75:06:71:71:36:7f: 76:5c:a4:f3:1b:8d:4e:69:5e:11:55:75:1d:20:42: a6:8a:1b:ca:3a:85:45:0b:10:4d:c1:d2:f3:e5:ba: 9c:53:50:2f:a7:0b:e3:8f:94:84:eb:7d:a2:d5:56: 27:d0:09:32:b9:3b:6b:a2:48:78:c1:bd:89:57:6a: 35:a8:59:27:0d:d3:39:44:9b:86:fd:00:52:03:40: 05:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:06:94:ED:A3:4D:0A:59:11:E1:F0:8E:D0:4D:71:29:AE:11:59:0E X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:66:d6:72:24:64:c2:52:fa:b3:8a:80:bf:a4:cc:58:dd:4b: c8:e7:de:bf:9d:4c:85:8c:52:e2:09:3b:00:09:bf:83:f8:3e: 16:24:09:61:d5:b8:95:bd:a1:7b:2c:3c:4f:85:7d:f3:2d:4e: ee:c1:30:4a:24:0b:00:7a:43:8a:b3:21:96:b3:e1:b2:7c:ab: 1c:a2:b2:b4:7c:8f:84:99:6b:21:75:1a:49:06:4e:2c:02:38: d8:07:ab:75:a1:b0:c0:75:cb:b9:4a:30:5b:e3:40:c5:96:8d: 9f:67:2b:d4:60:66:d6:44:95:67:a5:3e:a8:3f:f3:46:b5:87: 60:05:4b:68:13:11:2d:56:6b:80:b1:53:00:69:b3:e7:ce:99: 03:39:29:43:3f:7f:4d:dc:8c:32:cb:43:d4:99:65:da:8c:70: cd:ca:07:ff:86:b8:bd:c3:b8:29:2e:ef:5a:a1:5b:6c:ef:79: de:e2:8a:e1:00:43:0d:cc:ff:f5:b4:45:34:07:cd:af:c7:18: 6b:be:e2:ee:4a:a6:38:10:06:47:64:4a:7f:14:92:c4:17:24: 04:9f:c0:7c:b8:d5:3c:fe:34:da:ec:4a:79:b4:46:af:36:53: 01:48:ff:bf:05:28:b3:54:3b:8c:02:91:4c:51:68:af:22:8d: 13:f1:06:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjUxMDE3MDk0NTEzWhcNMjUxMDI0MDk0NTEzWjAYMRYwFAYD VQQDEw02OGYyMTAyOS04NTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6REj0OtYh7Gp8pnV4Zi+m9C7ctIt5gVgXZC7ppbmzDMh+wrmUwUSL51T4gPS la8VCiD0x4iaXEbmfi1mfiUjR367MKqG3QQ7j+PZz22ci9mhAMQoIwwNpVV1b9me q86ORqTRDJz6kADFsTfF6Npei5q16b6Jgny1CIJ80f2+yFUxR0xzWS5vysRhRBdK HGEtFdLQ6FTd6iWCAtX/CgMr6wzWNACip0//PCBLDgt1BnFxNn92XKTzG41OaV4R VXUdIEKmihvKOoVFCxBNwdLz5bqcU1Avpwvjj5SE632i1VYn0AkyuTtrokh4wb2J V2o1qFknDdM5RJuG/QBSA0AFlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUGlO2j TQpZEeHwjtBNcSmuEVkOMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsZtZyJGTCUvqzioC/pMxY3UvI596/nUyFjFLiCTsACb+D+D4WJAlh 1biVvaF7LDxPhX3zLU7uwTBKJAsAekOKsyGWs+GyfKscorK0fI+EmWshdRpJBk4s AjjYB6t1obDAdcu5SjBb40DFlo2fZyvUYGbWRJVnpT6oP/NGtYdgBUtoExEtVmuA sVMAabPnzpkDOSlDP39N3Iwyy0PUmWXajHDNygf/hri9w7gpLu9aoVts73ne4orh AEMNzP/1tEU0B82vxxhrvuLuSqY4EAZHZEp/FJLEFyQEn8B8uNU8/jTa7Ep5tEav NlMBSP+/BSizVDuMApFMUWivIo0T8QZn -----END CERTIFICATE-----Generated at Sat Oct 18 23:39:00 2025 by rpki-client