$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: eQCcEkpv0LSjaBE/t8h4ayrCIZg6VxH13RaXqQ0x0MM= Subject key identifier: 84:5F:71:C7:8E:09:32:FE:C4:DA:A2:EC:25:E3:20:CD:C3:ED:3B:3D Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 49 Signing time: Fri 25 Apr 2025 06:25:00 +0000 Manifest this update: Fri 25 Apr 2025 06:25:00 +0000 Manifest next update: Fri 02 May 2025 06:25:00 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: yMIIBSLSs9LXabcuj8oxd+5aAyy3tWiqcj2z+EgTRMI=) 2: E454A324EC5811EF80EABF18C4F9AE02.roa (hash: YHG5dJrgWguVVX0TqVGNfIMAFQq1FZHSymYvBAi+Egs=) 3: C48E5CA6EC5811EFB20A8A18C4F9AE02.roa (hash: vLgyAt4VKcLI4TYUSdqX2oSSFdxzy2+HjS3FIN16Cr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Apr 25 06:25:00 2025 GMT Not After : May 2 06:25:00 2025 GMT Subject: CN=680b2abc-a41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:04:d6:2f:db:16:2d:e2:f6:ab:23:60:97: 08:ba:a7:04:a7:4d:f6:46:24:f5:19:16:50:56:30: fd:f5:47:cf:61:20:e2:71:16:1f:fc:41:11:58:a2: 19:07:0f:91:96:57:e3:ee:98:58:fd:3f:c1:89:fc: c2:9b:62:42:9f:d9:a0:98:f0:2d:45:97:a6:1d:4f: 96:30:31:ea:f1:f6:d3:f0:12:9f:59:d2:02:8d:42: ab:cd:86:fe:a0:0f:77:0a:af:de:88:eb:fa:4e:47: 4f:27:64:14:e2:71:27:3e:35:68:0f:d2:b3:25:74: d4:2b:39:cd:c0:fd:c3:b9:52:16:27:e4:ea:19:35: 0e:8d:ca:d3:e2:a0:8f:a2:23:0a:0f:39:82:8a:0e: 52:f5:47:f4:0b:b9:0b:ea:df:91:16:db:0c:72:42: da:ae:a0:3f:99:b3:17:5e:2d:3f:a8:2d:c6:58:e3: 4a:c3:8f:02:df:88:c7:68:e4:4e:84:0e:e9:b6:c0: 20:b7:75:04:f5:b0:4c:7a:3c:31:81:67:a4:f7:b8: 4e:96:a1:de:a4:d6:4a:15:77:1d:7c:69:97:32:eb: 83:22:31:3d:54:3f:b1:db:d8:22:23:9e:ad:76:06: f6:f6:6a:93:e6:7c:e9:9c:ef:7e:ac:c9:56:10:4f: 92:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5F:71:C7:8E:09:32:FE:C4:DA:A2:EC:25:E3:20:CD:C3:ED:3B:3D X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:08:50:0c:31:96:7c:a0:58:ef:43:88:e1:dc:b8:21:ea:78: 80:66:bb:4c:e1:86:6f:d7:93:6e:9e:60:d7:df:96:fb:9f:f7: 5a:30:62:9f:77:1e:d9:32:a4:22:21:9a:39:7f:ae:18:7a:14: e2:11:ef:bc:20:13:db:e5:42:99:4c:eb:fb:e5:b7:f7:cd:f0: 38:b7:9e:96:ed:1b:61:4c:2c:c5:2a:0b:67:4b:0c:35:98:1c: 8c:79:05:05:10:31:29:c9:b9:45:e9:66:b3:b9:f5:65:2d:bd: 69:08:07:1c:e3:da:69:51:bf:7c:c3:e1:29:7f:2e:6b:cb:3a: 2f:1a:55:67:0e:2f:61:4e:87:c2:b3:b7:bb:06:8d:82:78:42: ab:d8:58:b3:29:5e:28:9e:06:b2:18:f8:f1:8d:3f:a1:67:d1: cd:93:a8:78:f7:db:c4:ff:2a:91:12:44:06:94:59:a5:49:da: 1d:27:b7:5c:05:1d:1b:8e:79:53:d2:7a:42:05:f9:42:22:81: 9b:59:45:3a:d2:d5:aa:2f:ba:89:56:28:1d:13:5f:10:d3:5f: 26:e8:c7:f5:3c:4b:ef:68:20:09:ed:f2:98:48:87:0c:ad:c4: d6:d0:8a:e6:a7:8e:99:75:fb:3b:90:f3:3b:81:d7:5d:01:4f: dd:fd:4a:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNTA0MjUwNjI1MDBaFw0yNTA1MDIwNjI1MDBaMBgxFjAUBgNV BAMTDTY4MGIyYWJjLWE0MWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd+QTWL9sWLeL2qyNglwi6pwSnTfZGJPUZFlBWMP31R89hIOJxFh/8QRFYohkH D5GWV+PumFj9P8GJ/MKbYkKf2aCY8C1Fl6YdT5YwMerx9tPwEp9Z0gKNQqvNhv6g D3cKr96I6/pOR08nZBTicSc+NWgP0rMldNQrOc3A/cO5UhYn5OoZNQ6NytPioI+i IwoPOYKKDlL1R/QLuQvq35EW2wxyQtquoD+ZsxdeLT+oLcZY40rDjwLfiMdo5E6E Dum2wCC3dQT1sEx6PDGBZ6T3uE6Wod6k1koVdx18aZcy64MiMT1UP7Hb2CIjnq12 Bvb2apPmfOmc736syVYQT5LHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhF9xx44J Mv7E2qLsJeMgzcPtOz0wHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NzUzLzc4MDlEQTAyQkMwRDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJO R1NqRjNxeklRR1VMbXBSby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAEIUAwxlnygWO9DiOHcuCHqeIBmu0zhhm/Xk26eYNfflvuf91owYp93 HtkypCIhmjl/rhh6FOIR77wgE9vlQplM6/vlt/fN8Di3npbtG2FMLMUqC2dLDDWY HIx5BQUQMSnJuUXpZrO59WUtvWkIBxzj2mlRv3zD4Sl/LmvLOi8aVWcOL2FOh8Kz t7sGjYJ4QqvYWLMpXiieBrIY+PGNP6Fn0c2TqHj328T/KpESRAaUWaVJ2h0nt1wF HRuOeVPSekIF+UIigZtZRTrS1aovuolWKB0TXxDTXybox/U8S+9oIAnt8phIhwyt xNbQiuanjpl1+zuQ8zuB110BT939Stk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:11:31 2025 by rpki-client