$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft File: LUmzrm2hi2NGSjF3qzIQGULmpRo.mft (raw, json) Hash identifier: 32xoUVJr16rzyeo8Zhkd95nxPDQhpgaLqx57wnZKrsM= Subject key identifier: B9:C5:9B:D5:FE:16:92:AE:0B:D2:D7:C6:59:3C:2C:69:D9:BC:71:9F Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft Manifest number: 010E Signing time: Fri 17 Apr 2026 05:55:12 +0000 Manifest this update: Fri 17 Apr 2026 05:55:11 +0000 Manifest next update: Fri 24 Apr 2026 05:55:11 +0000 Files and hashes: 1: LUmzrm2hi2NGSjF3qzIQGULmpRo.crl (hash: UwHvWHrCgsb6FHgqB32mNgcQi2BSANSR07ypXqOXINI=) 2: 45541EE4C9F711F087D2166DC4F9AE02.roa (hash: BBo/D4ougHcvt0CTiUR2zOn2G1nX/DbXKy3xlNXCyJE=) 3: 44870D64C9F711F0BE5A166DC4F9AE02.roa (hash: j8pxYqwHjG1CeMy1Rqa7oP4d9g5hA6p616Cf9S7A0+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Apr 17 05:55:11 2026 GMT Not After : Apr 24 05:55:11 2026 GMT Subject: CN=69e1cb40-8fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f1:fd:eb:25:8b:a7:81:8d:4d:4b:c9:0d:d6: 13:f2:4e:d6:4c:e9:44:7b:44:3e:0b:ca:1d:7f:3e: 47:3e:ac:7b:5b:28:e5:8f:02:62:59:f1:2a:d5:98: a7:fb:e8:4e:d8:81:b9:17:e5:37:38:10:cd:d2:c1: 2d:b4:31:5f:43:90:a0:ab:39:1d:9b:fd:61:10:0a: 1d:5e:41:f3:41:d7:1a:46:f8:fa:75:5f:62:ca:dd: b3:7e:25:d4:2b:c9:9f:75:9d:95:52:8d:bd:2e:b1: 2a:46:e6:ec:33:46:3a:53:1d:1d:03:26:2d:44:1c: b6:0d:09:a7:91:06:ee:e1:4c:98:1a:3d:68:32:e3: e6:23:31:6d:e5:3b:a5:c7:18:13:05:84:03:e3:d1: 0f:c9:41:3b:0d:37:b1:88:73:9b:c5:01:78:01:93: 10:c5:f1:a6:0f:3d:e0:92:ac:de:b4:c1:fb:cb:cb: 45:bc:b8:96:cd:e2:f9:5b:7c:71:d2:b7:2e:c5:99: cc:fa:05:31:2c:f7:9a:43:ca:ed:35:9e:25:b9:7d: 23:3c:ee:3a:10:c5:48:60:12:ff:78:e3:c8:ad:f1: 54:06:a2:38:f5:d5:bb:7c:d8:50:ee:44:3b:4c:d3: cc:4c:06:f5:79:c0:ae:3f:dd:8d:ae:6c:ec:cf:f7: 17:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C5:9B:D5:FE:16:92:AE:0B:D2:D7:C6:59:3C:2C:69:D9:BC:71:9F X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:fb:6f:00:ad:fb:67:d2:05:44:90:29:4d:c7:4e:02:05:9c: b8:ec:3b:03:d0:d1:22:20:25:2e:8b:4b:5a:5e:3f:ef:ad:9f: 91:d2:98:cd:52:8a:f2:eb:69:3d:3f:63:df:66:5a:49:a4:42: 36:8a:8a:bc:f3:08:7f:c4:1e:39:8f:c8:0f:6b:28:69:cf:6c: f3:b2:e8:be:bf:f6:39:79:80:69:38:5a:90:6b:e4:63:12:a7: 80:73:89:8d:6d:80:bb:1f:97:ef:06:06:8b:de:1b:fd:0f:8a: bd:16:9a:93:7f:fb:05:3c:d3:7a:f1:95:df:2d:89:f6:b0:54: 65:7a:21:a1:c3:25:4a:07:e2:00:ec:25:40:2f:6a:cb:f4:dd: 4a:bc:6b:46:2d:fe:ea:95:3b:5b:6c:76:21:69:da:f7:82:20: b5:38:4f:8f:d9:d8:af:30:cd:62:8a:00:e4:c7:ae:c7:56:c3: 57:20:fa:d5:d4:5b:72:19:81:2c:d0:ae:e7:9e:f3:8d:c7:dd: 40:63:8a:a5:33:a9:9c:28:9b:9b:f2:8a:2d:a6:a1:c5:ff:e5: 95:1e:03:27:7b:7f:6e:18:14:84:a6:84:83:68:d3:5b:96:06: 09:0c:d8:e7:39:22:b3:e9:5a:8f:2d:02:d0:d7:23:3f:2a:9a: 50:7f:2a:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3NTMxMTAvBgNVBAUTKDJENDlCM0FFNkRBMThCNjM0NjRBMzE3N0FCMzIxMDE5 NDJFNkE1MUEwHhcNMjYwNDE3MDU1NTExWhcNMjYwNDI0MDU1NTExWjAYMRYwFAYD VQQDEw02OWUxY2I0MC04ZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofH96yWLp4GNTUvJDdYT8k7WTOlEe0Q+C8odfz5HPqx7WyjljwJiWfEq1Zin ++hO2IG5F+U3OBDN0sEttDFfQ5Cgqzkdm/1hEAodXkHzQdcaRvj6dV9iyt2zfiXU K8mfdZ2VUo29LrEqRubsM0Y6Ux0dAyYtRBy2DQmnkQbu4UyYGj1oMuPmIzFt5Tul xxgTBYQD49EPyUE7DTexiHObxQF4AZMQxfGmDz3gkqzetMH7y8tFvLiWzeL5W3xx 0rcuxZnM+gUxLPeaQ8rtNZ4luX0jPO46EMVIYBL/eOPIrfFUBqI49dW7fNhQ7kQ7 TNPMTAb1ecCuP92Nrmzsz/cXbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnFm9X+ FpKuC9LXxlk8LGnZvHGfMB8GA1UdIwQYMBaAFC1Js65toYtjRkoxd6syEBlC5qUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjc1My83ODA5REEwMkJD MEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGkyTkdTakYzcXpJUUdVTG1w Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9MVW16cm0yaGky TkdTakYzcXpJUUdVTG1wUm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhPtvAK37Z9IFRJApTcdOAgWcuOw7A9DRIiAlLotLWl4/762fkdKYzVKK8utp PT9j32ZaSaRCNoqKvPMIf8QeOY/ID2soac9s87Lovr/2OXmAaThakGvkYxKngHOJ jW2Aux+X7wYGi94b/Q+KvRaak3/7BTzTevGV3y2J9rBUZXohocMlSgfiAOwlQC9q y/TdSrxrRi3+6pU7W2x2IWna94IgtThPj9nYrzDNYooA5Meux1bDVyD61dRbchmB LNCu557zjcfdQGOKpTOpnCibm/KKLaahxf/llR4DJ3t/bhgUhKaEg2jTW5YGCQzY 5zkis+lajy0C0NcjPyqaUH8qfA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:02:18 2026 by rpki-client