$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: lbYxZwDi7bSVGTcQYWIFthgjnBfyHovXnEcOIvy84x4= Subject key identifier: BF:14:4C:D2:39:F5:92:4D:39:A5:72:68:BC:06:63:D5:F8:41:C1:5B Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 5D Signing time: Thu 05 Jun 2025 06:33:44 +0000 Manifest this update: Thu 05 Jun 2025 06:33:44 +0000 Manifest next update: Thu 12 Jun 2025 06:33:44 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: P/b5o2N3lRT1EuDLyThMozuutEiIy5elmaDtnbhBGLM=) 2: E454A324EC5811EF80EABF18C4F9AE02.roa (hash: YHG5dJrgWguVVX0TqVGNfIMAFQq1FZHSymYvBAi+Egs=) 3: C48E5CA6EC5811EFB20A8A18C4F9AE02.roa (hash: vLgyAt4VKcLI4TYUSdqX2oSSFdxzy2+HjS3FIN16Cr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jun 5 06:33:44 2025 GMT Not After : Jun 12 06:33:44 2025 GMT Subject: CN=68413a48-bd57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a4:ab:61:ac:3b:09:f4:b2:0a:de:f0:c4:c9: a9:8c:7c:7b:cb:f0:ee:2e:e9:d9:4b:49:cb:7c:0c: 57:c5:86:10:5d:20:36:85:f3:2f:ad:e0:d0:fc:60: 99:c3:7c:2b:00:1b:8e:aa:16:92:59:17:4e:45:6e: 69:df:5f:0e:98:24:30:a7:ca:b2:11:c4:3f:87:fd: 40:71:52:3b:70:12:52:ee:3c:8a:1e:21:1e:9c:96: 72:97:5e:d4:2d:c9:25:bd:ac:a2:ea:74:59:29:f4: e9:35:22:a8:12:06:9d:cf:52:7f:40:86:e5:14:fd: fb:8b:49:c5:11:08:d2:e8:5a:db:a6:f1:9b:9a:08: b5:9a:28:3e:8d:ee:62:5f:0c:46:49:2c:90:f0:26: 8b:eb:c0:d7:50:48:ac:d2:ed:e2:75:52:a5:2b:00: 69:bb:32:3b:ba:eb:a8:31:cc:7d:b6:a2:02:64:92: d1:0c:57:d0:b0:33:b0:fa:43:12:2d:fc:50:b5:60: d8:e6:8e:5f:05:e1:67:28:c5:f7:0b:9d:7b:f9:11: b3:de:17:dc:c8:0d:9b:7a:64:a8:fd:ea:40:65:ce: 84:f0:94:9b:e1:33:86:6f:cd:61:ef:13:87:84:3e: a5:ac:ac:ed:7e:12:40:20:f5:c5:31:8c:38:7f:66: e7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:14:4C:D2:39:F5:92:4D:39:A5:72:68:BC:06:63:D5:F8:41:C1:5B X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:50:52:1b:f7:a2:37:eb:80:d2:c7:bd:c8:12:fb:e9:13:77: f0:17:1a:c9:01:63:cb:ef:25:34:ed:76:de:f2:ee:ae:89:44: e5:3e:59:2d:31:61:1a:0f:bd:db:9f:35:c1:62:2f:ba:3e:3c: b6:e2:9a:12:de:1a:c7:71:13:66:6c:8f:61:59:3d:e4:43:06: 48:b8:55:55:c9:89:10:5d:c7:20:cd:df:af:e8:cf:7c:74:ac: 17:01:ef:bd:32:5c:b6:09:63:16:5b:36:ad:d0:e3:cb:29:9d: 41:a8:16:fe:20:a9:79:d2:c8:76:f0:78:95:8c:76:8f:c4:cf: 58:a0:bb:ed:69:79:6b:06:95:b3:d8:f1:e7:70:97:29:6f:d3: c4:6b:39:9b:87:0f:05:5a:94:f7:e6:58:5f:6b:ed:45:7a:06: f1:ce:99:bd:9b:b0:a0:b6:85:16:4f:39:b7:95:7f:4c:34:c8: 61:1e:cb:f2:3d:ce:b6:61:9e:73:35:47:9c:33:a1:1c:4d:94: 96:ae:d2:17:00:06:fe:b8:8f:13:6d:8b:d8:cb:3e:78:ae:66: b2:91:8d:0a:93:73:a1:53:d8:2d:46:5a:b0:7d:53:80:eb:78: 79:e7:ce:2b:1a:ef:f3:b4:09:5c:87:a6:1c:70:05:d1:f9:07: 55:00:7d:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNTA2MDUwNjMzNDRaFw0yNTA2MTIwNjMzNDRaMBgxFjAUBgNV BAMTDTY4NDEzYTQ4LWJkNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhpKthrDsJ9LIK3vDEyamMfHvL8O4u6dlLSct8DFfFhhBdIDaF8y+t4ND8YJnD fCsAG46qFpJZF05FbmnfXw6YJDCnyrIRxD+H/UBxUjtwElLuPIoeIR6clnKXXtQt ySW9rKLqdFkp9Ok1IqgSBp3PUn9AhuUU/fuLScURCNLoWtum8ZuaCLWaKD6N7mJf DEZJLJDwJovrwNdQSKzS7eJ1UqUrAGm7Mju666gxzH22ogJkktEMV9CwM7D6QxIt /FC1YNjmjl8F4WcoxfcLnXv5EbPeF9zIDZt6ZKj96kBlzoTwlJvhM4ZvzWHvE4eE PqWsrO1+EkAg9cUxjDh/ZufVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvxRM0jn1 kk05pXJovAZj1fhBwVswHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NzUzLzc4MDlEQTAyQkMwRDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJO R1NqRjNxeklRR1VMbXBSby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFFQUhv3ojfrgNLHvcgS++kTd/AXGskBY8vvJTTtdt7y7q6JROU+WS0x YRoPvdufNcFiL7o+PLbimhLeGsdxE2Zsj2FZPeRDBki4VVXJiRBdxyDN36/oz3x0 rBcB770yXLYJYxZbNq3Q48spnUGoFv4gqXnSyHbweJWMdo/Ez1igu+1peWsGlbPY 8edwlylv08RrOZuHDwValPfmWF9r7UV6BvHOmb2bsKC2hRZPObeVf0w0yGEey/I9 zrZhnnM1R5wzoRxNlJau0hcABv64jxNti9jLPniuZrKRjQqTc6FT2C1GWrB9U4Dr eHnnzisa7/O0CVyHphxwBdH5B1UAfdY= -----END CERTIFICATE-----Generated at Thu Jun 5 20:12:12 2025 by rpki-client