$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: 3HRlm0oiokEZtQ/jZIzf50F6J+Hrp7aVeAET8i7HBIo= Subject key identifier: C8:83:FD:5A:B5:04:CE:3F:E6:0B:DD:E6:97:CF:E5:15:DC:50:B7:E1 Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 05D6 Signing time: Sun 19 Oct 2025 00:39:08 +0000 Manifest this update: Sun 19 Oct 2025 00:39:07 +0000 Manifest next update: Sun 26 Oct 2025 00:39:07 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: E1yTmq/C1/EBDtpgoIglQGN9hcchKtoB/8Vqea8lM0I=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Oct 19 00:39:07 2025 GMT Not After : Oct 26 00:39:07 2025 GMT Subject: CN=68f4332c-2f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:01:4b:af:e6:03:b8:0c:3b:f8:93:cc:87:c3: 3c:0e:e4:76:4b:bf:13:a9:c7:9b:91:88:86:d2:14: bc:60:3a:d6:58:68:6c:74:81:39:bd:07:d4:c4:8b: 7c:9e:70:94:31:88:14:d0:a3:32:c4:b2:99:1c:1a: 27:3a:9e:26:d3:92:04:ee:16:63:b7:3a:63:db:35: ff:cf:b1:03:b7:6d:91:e9:59:9a:da:6f:5e:5c:a0: c5:d8:6e:3e:c4:5e:b1:63:05:4d:68:43:2b:56:c0: fc:eb:f6:73:f8:97:26:8d:21:90:ff:9c:b4:8a:36: d8:86:d0:44:c1:d7:8b:78:df:92:84:db:74:14:89: 5d:d0:47:ec:21:20:70:0f:26:ae:c2:84:ea:36:3e: 96:93:e1:5d:dc:ef:67:8b:8b:cb:53:0d:78:e1:c3: 0b:9b:81:a8:ad:51:41:47:63:ca:91:22:5f:bf:7d: 4c:44:da:2d:d6:08:23:b9:18:ea:6b:50:cc:2a:3e: b4:0f:de:db:e7:c8:99:9e:2b:e4:62:fa:ee:6c:56: c2:25:73:88:56:50:9c:4d:58:ee:41:97:45:43:2b: 99:6b:0c:71:86:ab:ac:58:02:cc:63:30:6b:2c:bc: 54:24:fe:78:89:47:8c:fd:e7:35:b6:c1:0c:ee:d6: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:83:FD:5A:B5:04:CE:3F:E6:0B:DD:E6:97:CF:E5:15:DC:50:B7:E1 X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:1c:09:30:be:4b:6d:45:95:22:19:b3:ae:85:a8:65:63:48: 73:1b:fa:bd:18:19:ee:b4:6e:75:6b:3c:7a:b2:62:2a:03:fc: de:e4:5d:2a:4d:61:61:30:bb:ca:cf:dd:36:c4:98:0f:ac:b8: 6c:cd:8d:ae:42:bf:09:f0:af:f7:79:16:8e:38:35:19:e0:ae: 39:2a:15:9d:28:10:4c:dc:40:8a:08:4f:b6:42:8b:a8:3a:25: c5:33:c2:e0:d8:5c:3e:5d:23:12:a4:e8:03:c4:87:5a:01:62: 72:73:b6:ee:20:8b:a1:ee:0a:cc:c3:b9:30:2a:30:ae:ea:96: 32:47:11:e1:9b:a2:d2:b8:33:98:99:48:33:f6:ac:75:e2:9a: 84:71:ee:48:e3:33:b9:cc:54:5a:7c:f1:5d:23:27:97:9e:7e: 7c:1f:18:b9:37:de:63:09:54:dc:4b:6f:ba:a6:a2:d0:3b:95: 2f:79:a8:7c:31:2f:5d:87:1a:cf:3a:3a:ab:d1:ca:a4:98:1d: 48:58:81:4f:d2:5e:14:c6:48:6f:64:d1:b7:0a:20:f5:28:d3: 12:a2:fc:52:21:1e:3e:1a:fc:20:f6:e4:42:f2:66:d5:dd:c4: 1c:e2:48:ee:4d:02:5a:ae:01:b5:76:d0:78:8f:1e:60:85:06: 76:d0:5a:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUxMDE5MDAzOTA3WhcNMjUxMDI2MDAzOTA3WjAYMRYwFAYD VQQDEw02OGY0MzMyYy0yZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgFLr+YDuAw7+JPMh8M8DuR2S78TqcebkYiG0hS8YDrWWGhsdIE5vQfUxIt8 nnCUMYgU0KMyxLKZHBonOp4m05IE7hZjtzpj2zX/z7EDt22R6Vma2m9eXKDF2G4+ xF6xYwVNaEMrVsD86/Zz+JcmjSGQ/5y0ijbYhtBEwdeLeN+ShNt0FIld0EfsISBw DyauwoTqNj6Wk+Fd3O9ni4vLUw144cMLm4GorVFBR2PKkSJfv31MRNot1ggjuRjq a1DMKj60D97b58iZnivkYvrubFbCJXOIVlCcTVjuQZdFQyuZawxxhqusWALMYzBr LLxUJP54iUeM/ec1tsEM7tYRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiD/Vq1 BM4/5gvd5pfP5RXcULfhMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaHAkwvkttRZUiGbOuhahlY0hzG/q9GBnutG51azx6smIqA/ze5F0q TWFhMLvKz902xJgPrLhszY2uQr8J8K/3eRaOODUZ4K45KhWdKBBM3ECKCE+2Qouo OiXFM8Lg2Fw+XSMSpOgDxIdaAWJyc7buIIuh7grMw7kwKjCu6pYyRxHhm6LSuDOY mUgz9qx14pqEce5I4zO5zFRafPFdIyeXnn58Hxi5N95jCVTcS2+6pqLQO5Uveah8 MS9dhxrPOjqr0cqkmB1IWIFP0l4UxkhvZNG3CiD1KNMSovxSIR4+Gvwg9uRC8mbV 3cQc4kjuTQJargG1dtB4jx5ghQZ20Fp0 -----END CERTIFICATE-----Generated at Mon Oct 20 12:56:57 2025 by rpki-client