$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: zvPq3c8FPm+OLu2HogMUMtl/P6p/wlt9dbrAextFEME= Subject key identifier: DF:0C:72:25:DA:1A:E7:8D:53:F3:C9:9F:AF:CC:A6:A2:EB:08:D8:86 Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 05B9 Signing time: Fri 22 Aug 2025 23:17:08 +0000 Manifest this update: Fri 22 Aug 2025 23:17:07 +0000 Manifest next update: Fri 29 Aug 2025 23:17:07 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: jwC+3tpVLeDFi/PInNnNyUsmP06pl6TEnlux+I7OQFQ=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Aug 22 23:17:07 2025 GMT Not After : Aug 29 23:17:07 2025 GMT Subject: CN=68a8fa73-d47a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:60:72:cf:7e:68:75:6f:45:9b:0e:65:3d:d7: 2f:c6:0e:90:a5:e0:ea:8a:b6:44:9e:4f:f0:2d:2e: 28:d5:18:2f:dc:1e:82:12:ee:ff:f0:16:1b:b6:ff: 42:cc:7e:42:e7:d4:a0:b6:21:7c:60:80:e8:61:39: d2:b5:9c:ca:58:87:fc:0b:7e:47:0a:e9:a5:ca:76: 62:02:30:f6:93:5c:e9:b9:51:e2:aa:db:08:73:98: 63:29:fe:f7:1a:f4:89:ea:b2:c9:3a:17:ed:15:f6: 88:06:e5:2d:3e:b9:1e:c8:06:2f:5e:9f:41:bc:06: 48:97:55:78:d6:13:9f:7e:bb:38:fb:5c:87:49:9e: ac:b0:04:d6:27:24:2b:25:34:a8:03:2c:bf:39:a7: d5:96:d5:da:d3:7d:84:78:a5:78:59:89:d9:ff:e2: 71:42:67:a5:69:86:ed:a0:1e:c6:2b:8f:4c:ba:4e: 8e:4b:ac:d2:a4:6c:65:8b:e9:98:34:62:67:f6:d2: 69:f7:7d:b9:bc:e6:10:ed:85:99:66:df:5b:b0:67: 8c:9b:fb:8b:0c:dd:27:be:e7:0c:a0:d5:86:8b:5d: 33:33:af:d4:79:80:12:db:6d:84:48:ca:8d:d2:1b: 71:a3:8d:0d:e0:ee:19:96:4d:d6:be:1a:ad:07:f3: 1c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0C:72:25:DA:1A:E7:8D:53:F3:C9:9F:AF:CC:A6:A2:EB:08:D8:86 X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:03:53:88:2f:c5:15:d0:8a:32:bc:16:96:47:ab:a6:e7:41: 92:37:3d:27:fa:58:07:9f:86:8e:dd:1c:b1:af:4c:b6:55:8a: d4:fd:2b:99:4f:23:52:60:86:1e:de:a3:73:37:42:ca:b1:e7: 60:08:a0:12:f0:c3:4f:74:12:b3:96:32:06:19:93:53:92:db: db:b5:4f:e4:20:3b:02:94:af:43:08:b3:14:f1:43:5d:e0:f9: b2:9d:58:8e:48:33:57:53:7d:8d:63:f3:52:ff:70:30:72:15: 7d:2d:4f:88:f3:8c:87:a9:58:cb:d5:aa:46:bf:eb:31:17:fa: d4:67:9d:47:0b:81:a7:9a:e3:8a:50:8c:cb:5c:b7:73:93:c9: 82:c5:5d:4d:68:b6:ff:c6:79:6e:2c:c8:93:1b:14:76:74:9e: 48:87:84:cc:05:90:cc:c2:8f:84:16:e3:83:bc:e9:83:6b:fd: 4c:fe:66:13:6f:9b:d6:70:e2:2a:b2:54:96:a4:d0:e3:7b:f6: f5:29:d6:87:13:45:63:9b:bf:ce:9e:80:9e:f7:d4:9d:f4:2c: 80:7b:d9:18:5f:da:47:b7:73:2a:d9:c8:d5:0f:32:e8:ec:f6: 39:a6:36:4a:99:5a:90:c5:37:d1:27:b1:e4:9a:1d:4a:8b:03: cf:e7:9a:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUwODIyMjMxNzA3WhcNMjUwODI5MjMxNzA3WjAYMRYwFAYD VQQDEw02OGE4ZmE3My1kNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02Byz35odW9Fmw5lPdcvxg6QpeDqirZEnk/wLS4o1Rgv3B6CEu7/8BYbtv9C zH5C59SgtiF8YIDoYTnStZzKWIf8C35HCumlynZiAjD2k1zpuVHiqtsIc5hjKf73 GvSJ6rLJOhftFfaIBuUtPrkeyAYvXp9BvAZIl1V41hOffrs4+1yHSZ6ssATWJyQr JTSoAyy/OafVltXa032EeKV4WYnZ/+JxQmelaYbtoB7GK49Muk6OS6zSpGxli+mY NGJn9tJp9325vOYQ7YWZZt9bsGeMm/uLDN0nvucMoNWGi10zM6/UeYAS222ESMqN 0htxo40N4O4Zlk3WvhqtB/McpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8MciXa GueNU/PJn6/MpqLrCNiGMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArA1OIL8UV0IoyvBaWR6um50GSNz0n+lgHn4aO3Ryxr0y2VYrU/SuZ TyNSYIYe3qNzN0LKsedgCKAS8MNPdBKzljIGGZNTktvbtU/kIDsClK9DCLMU8UNd 4PmynViOSDNXU32NY/NS/3AwchV9LU+I84yHqVjL1apGv+sxF/rUZ51HC4GnmuOK UIzLXLdzk8mCxV1NaLb/xnluLMiTGxR2dJ5Ih4TMBZDMwo+EFuODvOmDa/1M/mYT b5vWcOIqslSWpNDje/b1KdaHE0Vjm7/OnoCe99Sd9CyAe9kYX9pHt3Mq2cjVDzLo 7PY5pjZKmVqQxTfRJ7Hkmh1KiwPP55pP -----END CERTIFICATE-----Generated at Sat Aug 23 15:42:02 2025 by rpki-client