$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: lCfVEG0gK6RXiK6D+UPKbdTpQ7AMGPJcLgOsuTffMg4= Subject key identifier: 9C:EE:FE:5E:13:02:F5:20:E1:C4:BA:3B:39:DC:37:66:45:79:F2:37 Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 0125 Signing time: Mon 01 Jun 2026 06:42:57 +0000 Manifest this update: Mon 01 Jun 2026 06:42:56 +0000 Manifest next update: Mon 08 Jun 2026 06:42:56 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: P1Ug8c8btumoPX8yFOSmPjihXUzpdC9CcDOpSDi+iWw=) 2: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: BBo/D4ougHcvt0CTiUR2zOn2G1nX/DbXKy3xlNXCyJE=) 3: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: j8pxYqwHjG1CeMy1Rqa7oP4d9g5hA6p616Cf9S7A0+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 06:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jun 1 06:42:56 2026 GMT Not After : Jun 8 06:42:56 2026 GMT Subject: CN=6a1d29f0-546d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:79:f6:1f:e1:18:25:63:5c:b0:bc:1b:fa:04: 3e:b1:83:53:b6:14:b7:73:77:52:d0:ed:67:f1:b3: 77:94:0a:03:5d:a4:e1:1f:2e:2e:3b:27:5e:d0:85: d6:f5:5c:04:fc:0b:8b:af:c2:94:a1:4d:6b:cf:c5: d8:d8:d0:4a:4c:c1:b7:17:e4:c1:b5:85:a6:58:c9: 75:a2:3d:e3:d5:0f:9c:f4:ac:14:a6:26:a4:0e:6f: 8a:e4:0a:1b:09:20:11:a3:09:01:93:58:c9:a9:0a: 36:94:4c:69:b1:b2:dc:71:44:ba:f3:71:96:40:e9: 54:06:1a:61:4b:ca:89:35:bf:ce:e6:65:1c:a7:15: 96:fa:af:8c:17:46:b2:88:0c:43:8d:d7:d4:7d:2b: f0:e5:90:de:22:42:e5:c1:b0:52:cf:a3:05:5d:88: 2f:fa:67:44:53:a6:78:03:28:5a:c6:44:6f:d2:a7: 30:a6:09:0d:6e:e9:e3:c2:f2:9f:a4:92:18:ac:89: 7e:c0:7d:7b:a5:89:11:ee:18:ca:35:c2:bb:11:22: d7:03:38:28:e6:0e:53:0c:51:f9:72:64:33:c5:14: 84:7e:d3:b0:7c:13:44:c8:08:21:50:cb:82:07:07: 86:62:ca:cf:23:02:92:ce:51:08:0d:6b:55:b8:73: b3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:EE:FE:5E:13:02:F5:20:E1:C4:BA:3B:39:DC:37:66:45:79:F2:37 X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ea:c1:de:c6:91:2c:d4:49:f1:bb:92:56:21:f2:c7:fe:1c: 38:32:6e:98:73:21:9c:07:ae:96:3b:5b:be:11:19:32:da:87: c1:e2:28:2e:7e:bb:c4:b8:af:53:a0:fc:41:1d:d4:c9:f4:ec: 7d:56:b4:bb:d5:f0:78:aa:c4:fc:40:4e:2d:b9:60:0e:95:01: be:8d:13:76:d8:4f:26:8f:6c:0f:81:76:d8:eb:a7:9f:97:79: 0e:a6:89:21:b7:13:fa:3f:85:88:82:70:71:ac:5a:ef:27:5b: e4:5f:44:9b:32:bd:be:70:97:1a:c7:ed:f8:f9:8a:3b:60:0b: 40:db:c2:a6:66:58:9e:e3:95:84:75:fd:0b:2c:39:74:60:3d: 8f:4a:e2:8c:f1:8d:17:d4:8a:1f:d2:b0:78:73:74:ea:d9:41: 8b:a0:6e:02:71:45:ff:4f:e2:9e:ca:12:1f:48:27:b3:8c:df: 26:b7:66:69:56:8f:ce:8a:69:30:7f:fd:3e:38:0d:15:60:fe: 7b:9d:3e:86:59:ec:fc:ae:1c:47:93:a6:e2:68:0b:8e:38:9f: 18:25:37:24:cf:44:17:82:d7:05:20:3e:65:68:8a:63:68:cb: 59:a5:78:36:31:e9:a9:f4:74:c5:99:31:38:d5:7e:7d:c5:d0: f1:83:a5:44 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjYwNjAxMDY0MjU2WhcNMjYwNjA4MDY0MjU2WjAYMRYwFAYD VQQDEw02YTFkMjlmMC01NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmHn2H+EYJWNcsLwb+gQ+sYNTthS3c3dS0O1n8bN3lAoDXaThHy4uOyde0IXW 9VwE/AuLr8KUoU1rz8XY2NBKTMG3F+TBtYWmWMl1oj3j1Q+c9KwUpiakDm+K5Aob CSARowkBk1jJqQo2lExpsbLccUS683GWQOlUBhphS8qJNb/O5mUcpxWW+q+MF0ay iAxDjdfUfSvw5ZDeIkLlwbBSz6MFXYgv+mdEU6Z4AyhaxkRv0qcwpgkNbunjwvKf pJIYrIl+wH17pYkR7hjKNcK7ESLXAzgo5g5TDFH5cmQzxRSEftOwfBNEyAghUMuC BweGYsrPIwKSzlEIDWtVuHOzrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJzu/l4T AvUg4cS6OzncN2ZFefI3MB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFerB3saRLNRJ8buSViHyx/4cODJumHMhnAeuljtbvhEZMtqHweIoLn67xLiv U6D8QR3UyfTsfVa0u9XweKrE/EBOLblgDpUBvo0TdthPJo9sD4F22Ounn5d5DqaJ IbcT+j+FiIJwcaxa7ydb5F9EmzK9vnCXGsft+PmKO2ALQNvCpmZYnuOVhHX9Cyw5 dGA9j0rijPGNF9SKH9KweHN06tlBi6BuAnFF/0/insoSH0gns4zfJrdmaVaPzopp MH/9PjgNFWD+e50+hlns/K4cR5Om4mgLjjifGCU3JM9EF4LXBSA+ZWiKY2jLWaV4 NjHpqfR0xZkxONV+fcXQ8YOlRA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:26:09 2026 by rpki-client