$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: qx4Nw6zWe4dAJfiXtOCuv5S4pRQxUUOh2W9HtzutnEA= Subject key identifier: 12:76:23:9F:20:23:B8:97:8F:C3:E4:18:00:C5:C0:97:E2:8D:E1:8F Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 82 Signing time: Mon 11 Aug 2025 07:00:38 +0000 Manifest this update: Mon 11 Aug 2025 07:00:37 +0000 Manifest next update: Mon 18 Aug 2025 07:00:37 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: 6FpN9fY3LrGqoxPjw0Cn4dNgYNHgOZf7OzBKC/99v+A=) 2: C48E5CA6EC5811EFB20A8A18C4F9AE02.roa (hash: 93C48aUyOvrcw03A3Tv7n2rRAvJ48I+je6JuY6BDvN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Aug 11 07:00:37 2025 GMT Not After : Aug 18 07:00:37 2025 GMT Subject: CN=68999515-4af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9f:cb:2b:43:ac:d7:5e:c5:e5:c0:84:cd:14: f5:3f:86:5f:a8:67:30:da:6c:69:90:f6:3d:ab:85: 03:ca:09:8c:b9:bc:47:eb:f3:d3:cd:d2:d3:00:05: 29:cc:3d:1b:81:bc:eb:b5:67:f0:f7:3d:eb:2b:21: 78:c5:94:a2:33:c0:5b:f9:a9:d8:60:22:14:0d:29: 3a:24:a5:85:24:f1:d7:87:d5:cd:72:82:03:66:62: 72:b9:a5:0f:8c:f3:22:8e:ff:08:0b:02:0f:8c:48: 5c:fc:1f:b6:e5:84:0c:f9:81:f3:59:ef:22:78:8a: 5e:a6:8c:8f:15:aa:fa:c8:25:e9:42:28:36:9a:83: ac:b9:2e:c1:16:4b:25:1d:94:88:6a:69:b5:be:f4: bf:cd:52:89:e5:88:1a:1f:35:ad:54:8d:7e:fc:dc: a3:6a:cb:96:25:55:77:9d:2d:b2:0f:98:3d:1c:74: 5f:af:47:0e:2f:e8:55:a8:bf:a1:fc:ee:06:8a:6c: 2f:2b:b2:ca:3b:0b:1e:4c:7a:3b:7b:ef:42:f1:7f: 22:ee:76:5d:ef:a2:11:46:cb:f7:c6:61:3c:5d:44: 76:7d:5b:05:30:c5:a6:46:cb:ff:ce:f9:ed:9d:b1: 2f:1d:22:64:9e:45:9d:31:af:8b:48:59:ff:8b:3d: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:76:23:9F:20:23:B8:97:8F:C3:E4:18:00:C5:C0:97:E2:8D:E1:8F X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a1:7a:7e:2c:9e:a2:6c:63:16:21:a1:5b:b2:fc:0a:28:27: 7a:ca:d8:5f:f7:02:e7:8a:76:ba:45:b6:c7:2d:83:e5:7e:a6: ce:28:d9:3a:4a:e9:c8:6a:5d:40:2d:d7:53:5b:a8:22:b1:1b: 00:d9:f7:b8:76:7e:c6:19:01:d3:0b:a4:90:08:a5:ec:2c:e2: e0:b8:3c:e6:30:a2:6f:58:c3:1a:e6:00:db:c3:af:61:70:c7: 3f:0c:24:f9:d1:bd:ed:d2:28:be:fb:6e:32:94:65:12:6a:1d: f6:5c:7d:dd:b1:ab:d0:38:0c:a6:ad:eb:59:93:bd:a0:b6:3b: 26:30:2c:74:f8:31:df:73:81:b8:e2:74:43:09:8c:ac:32:2c: 2c:be:1c:cd:a4:1d:00:b7:35:d1:44:30:bc:58:09:c8:bb:dd: 26:a9:de:45:f7:2c:a4:85:c9:70:11:1a:ae:b8:04:89:35:9f: 33:77:36:c3:2d:1f:97:f3:50:79:68:2e:8a:ef:0a:dd:b5:d1: 02:79:8f:8a:eb:79:99:18:18:c2:51:8c:b7:53:be:36:99:bf: d1:a0:db:a5:70:f8:ce:2d:3f:34:ef:37:67:9e:d2:a3:61:46: 61:12:c9:8b:46:47:2e:78:11:a8:ed:b0:55:7c:08:c0:fc:43: bf:f7:7e:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjUwODExMDcwMDM3WhcNMjUwODE4MDcwMDM3WjAYMRYwFAYD VQQDEw02ODk5OTUxNS00YWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2p/LK0Os117F5cCEzRT1P4ZfqGcw2mxpkPY9q4UDygmMubxH6/PTzdLTAAUp zD0bgbzrtWfw9z3rKyF4xZSiM8Bb+anYYCIUDSk6JKWFJPHXh9XNcoIDZmJyuaUP jPMijv8ICwIPjEhc/B+25YQM+YHzWe8ieIpepoyPFar6yCXpQig2moOsuS7BFksl HZSIamm1vvS/zVKJ5YgaHzWtVI1+/NyjasuWJVV3nS2yD5g9HHRfr0cOL+hVqL+h /O4GimwvK7LKOwseTHo7e+9C8X8i7nZd76IRRsv3xmE8XUR2fVsFMMWmRsv/zvnt nbEvHSJknkWdMa+LSFn/iz3YeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ2I58g I7iXj8PkGADFwJfijeGPMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYoXp+LJ6ibGMWIaFbsvwKKCd6ythf9wLnina6RbbHLYPlfqbOKNk6 SunIal1ALddTW6gisRsA2fe4dn7GGQHTC6SQCKXsLOLguDzmMKJvWMMa5gDbw69h cMc/DCT50b3t0ii++24ylGUSah32XH3dsavQOAymretZk72gtjsmMCx0+DHfc4G4 4nRDCYysMiwsvhzNpB0AtzXRRDC8WAnIu90mqd5F9yykhclwERquuASJNZ8zdzbD LR+X81B5aC6K7wrdtdECeY+K63mZGBjCUYy3U742mb/RoNulcPjOLT807zdnntKj YUZhEsmLRkcueBGo7bBVfAjA/EO/935g -----END CERTIFICATE-----Generated at Mon Aug 11 09:05:09 2025 by rpki-client