$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: QiMXGYNzPpR/jh4JtkpOeYzsZaVhPNplYVRUSO8KrSU= Subject key identifier: 8E:99:D3:AA:4D:0A:2C:2B:CF:DA:A9:2D:F8:F1:CC:94:BF:E1:6C:D1 Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: B3 Signing time: Wed 05 Nov 2025 06:26:50 +0000 Manifest this update: Wed 05 Nov 2025 06:26:50 +0000 Manifest next update: Wed 12 Nov 2025 06:26:50 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: 42OCMZHogXRhE8bKaYWXvhPsShZvl1WSBeny4wacTeo=) 2: 5D71196CB13A11F08347B23DC4F9AE02.roa (hash: 82Jy7YS4cnwuangwpWGSf+Ny4I9O0KalVxHcCJLAFH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Nov 5 06:26:50 2025 GMT Not After : Nov 12 06:26:50 2025 GMT Subject: CN=690aee2a-f9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d1:4f:ed:ac:e7:f1:18:b8:09:3a:fe:dd:48: 25:83:41:e8:13:0b:b7:50:b7:77:61:73:79:4e:40: c7:fd:f6:01:b2:75:b7:2e:5b:6e:64:9e:bc:e4:f2: 46:7d:bc:29:2d:4f:f5:b5:f1:93:17:21:2a:17:97: 97:85:93:fe:75:06:ac:ad:3d:b4:8d:41:9a:54:3b: 71:60:3a:ec:18:25:d0:36:e0:31:7b:4c:ee:f1:80: b4:49:76:dc:fd:6e:8e:03:03:a2:94:45:a2:4e:e0: d0:d7:c3:a9:b2:6d:b3:cf:5c:91:ef:55:0f:91:ab: e2:44:df:db:3c:3a:82:94:04:f2:a7:f6:2a:01:f4: e3:90:67:3a:ab:b8:27:da:c0:3d:4f:08:a7:74:8f: 92:c4:de:79:5a:eb:52:e5:20:e6:61:aa:a0:45:ce: 53:92:38:3a:df:95:c4:2c:d7:7f:af:3b:65:e7:88: 68:ad:be:99:00:2b:d3:71:ed:f7:44:f6:87:a4:54: 58:76:70:ef:5c:b5:11:66:59:14:7a:8f:5b:05:16: 53:3d:47:4e:b6:63:ef:bb:eb:45:5b:6b:28:b5:54: 69:8c:60:d5:66:68:73:c3:d4:e7:f4:4f:a9:a6:eb: 12:7c:78:93:c6:5b:42:35:65:4c:93:a7:74:93:74: 35:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:99:D3:AA:4D:0A:2C:2B:CF:DA:A9:2D:F8:F1:CC:94:BF:E1:6C:D1 X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:6a:d2:d4:d8:2a:f4:da:59:41:3c:65:90:95:d9:03:cb:bc: 55:a4:33:e7:93:a0:59:05:60:59:35:42:a0:43:80:a4:e3:42: 51:34:41:99:8f:00:8e:c0:5c:aa:77:ee:f8:48:3c:f9:40:57: 9e:7c:50:3c:e4:b8:2e:8a:14:34:3a:68:39:ea:70:de:08:88: f1:88:8b:3f:4f:fe:e4:4b:00:0a:d1:44:57:75:2e:67:29:3f: 2b:99:56:a1:3d:7e:df:a2:a9:01:c5:d4:57:38:d8:a5:85:c9: 6a:a5:a1:4f:56:03:a8:d9:4e:57:09:b0:2a:c9:3b:79:29:28: 61:04:76:9c:a1:9c:ed:20:59:29:47:10:64:58:fd:6d:3c:ba: 5d:bd:8b:8b:da:df:46:5c:36:37:03:51:c6:42:43:95:f6:fc: b1:ad:93:8b:82:46:c3:a3:87:57:c3:cd:c5:35:05:64:48:c9: ca:ee:36:34:39:e6:03:26:0b:e8:cb:23:2e:2a:b1:24:ac:5e: 73:07:43:a3:df:6c:d7:2c:85:95:bd:61:56:63:ad:4f:fd:50: bb:51:ed:34:f0:d9:f7:98:e5:53:c2:58:8f:3e:e4:7e:3c:6d: 1f:1a:8f:13:93:9e:5d:72:10:75:23:d4:1e:9a:ee:86:a5:2f: b6:00:2e:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjUxMTA1MDYyNjUwWhcNMjUxMTEyMDYyNjUwWjAYMRYwFAYD VQQDEw02OTBhZWUyYS1mOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNFP7azn8Ri4CTr+3Uglg0HoEwu3ULd3YXN5TkDH/fYBsnW3LltuZJ685PJG fbwpLU/1tfGTFyEqF5eXhZP+dQasrT20jUGaVDtxYDrsGCXQNuAxe0zu8YC0SXbc /W6OAwOilEWiTuDQ18Opsm2zz1yR71UPkaviRN/bPDqClATyp/YqAfTjkGc6q7gn 2sA9TwindI+SxN55WutS5SDmYaqgRc5Tkjg635XELNd/rztl54horb6ZACvTce33 RPaHpFRYdnDvXLURZlkUeo9bBRZTPUdOtmPvu+tFW2sotVRpjGDVZmhzw9Tn9E+p pusSfHiTxltCNWVMk6d0k3Q1HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6Z06pN Ciwrz9qpLfjxzJS/4WzRMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyatLU2Cr02llBPGWQldkDy7xVpDPnk6BZBWBZNUKgQ4Ck40JRNEGZ jwCOwFyqd+74SDz5QFeefFA85LguihQ0Omg56nDeCIjxiIs/T/7kSwAK0URXdS5n KT8rmVahPX7foqkBxdRXONilhclqpaFPVgOo2U5XCbAqyTt5KShhBHacoZztIFkp RxBkWP1tPLpdvYuL2t9GXDY3A1HGQkOV9vyxrZOLgkbDo4dXw83FNQVkSMnK7jY0 OeYDJgvoyyMuKrEkrF5zB0Oj32zXLIWVvWFWY61P/VC7Ue008Nn3mOVTwliPPuR+ PG0fGo8Tk55dchB1I9Qemu6GpS+2AC6y -----END CERTIFICATE-----Generated at Wed Nov 5 17:19:13 2025 by rpki-client