$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: opsMZHzAXLcjmaUCLHEqNERleIo7r2xmGWZno5l0Zf0= Subject key identifier: 67:3D:C0:A0:C0:45:E3:A9:BE:9A:35:05:B5:28:02:C1:A9:D6:1F:BC Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 058B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 0586 Signing time: Mon 12 May 2025 23:02:28 +0000 Manifest this update: Mon 12 May 2025 23:02:27 +0000 Manifest next update: Mon 19 May 2025 23:02:27 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: ZnrECSe3JK09OoVNe49w+wHSVaUNbI66RZ5T5r2a8rA=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1419 (0x58b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: May 12 23:02:27 2025 GMT Not After : May 19 23:02:27 2025 GMT Subject: CN=68227e04-2183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b3:f2:e3:51:bb:bc:d0:2a:13:11:0a:18:e5: 38:cb:81:14:6a:ac:f1:b9:49:16:82:33:62:9c:06: e8:88:bc:e0:5f:e5:40:01:38:af:a6:0a:97:58:ff: 6d:82:4b:f4:3c:3a:4e:1d:95:d4:ab:3e:f3:8b:80: 4e:3f:fe:ab:f1:fd:60:3f:ab:96:9f:ed:bc:70:17: 5d:9d:c4:55:b5:fb:73:b7:ab:af:14:35:85:68:80: 96:05:88:37:ef:1d:ce:6f:ca:fa:f1:30:51:7b:6d: 6f:3c:b2:53:5d:f5:cb:cf:5d:88:fe:bc:c8:08:c2: 55:73:38:a6:71:c7:11:56:2e:23:ee:f4:be:46:99: 58:11:1b:43:90:64:d0:74:86:2e:63:4d:48:c5:d1: dd:c2:e3:a4:a5:fb:5b:2b:ef:78:c5:e2:52:c5:8e: ad:69:6f:0e:4b:36:5a:63:c1:a0:da:1a:a7:c4:36: fb:fa:e1:b1:ac:e8:fd:16:e1:4e:c6:fc:58:2e:06: ff:e2:3a:29:65:4d:0f:95:f6:2e:d0:25:0d:be:75: 3b:04:79:f4:ac:ea:c9:b4:e0:2b:6b:04:fe:eb:9d: b8:6b:be:02:8d:38:99:f6:be:4a:86:6a:ac:28:51: e2:87:9d:69:39:ce:03:12:04:81:12:d3:40:9b:6f: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3D:C0:A0:C0:45:E3:A9:BE:9A:35:05:B5:28:02:C1:A9:D6:1F:BC X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:f6:e9:12:cb:85:15:c3:e7:2c:d8:45:9c:90:ca:c3:50:00: 98:be:c0:94:24:04:d2:10:0e:7e:c8:e2:be:07:a3:87:92:be: 0f:63:0f:45:61:58:e3:8e:93:49:b2:c5:62:74:f1:69:f6:f0: 53:a6:d7:62:5f:51:ce:ba:ae:83:36:12:e1:40:01:73:03:77: c0:8e:8c:4a:b2:db:e4:fd:85:92:23:2d:22:1e:fa:af:20:8a: 48:85:86:f1:dd:5c:16:ff:56:bf:1c:53:7c:d3:b8:e5:dc:e0: a0:18:36:b6:b6:5a:08:ef:cf:5a:b0:e1:33:62:5f:13:2e:06: bf:2c:83:03:e7:ef:bc:b7:ac:d0:89:55:2e:d4:6b:2f:3f:1d: 11:b2:92:e1:8b:39:76:d2:99:db:a1:32:a6:3c:7a:ea:29:da: da:ce:6e:4d:c1:7e:11:81:16:03:a9:54:29:3e:39:51:1f:89: ef:01:8f:97:b2:2d:47:e2:d5:2b:8f:9f:b8:a8:fe:4b:40:99: 61:35:12:0e:01:e9:47:f6:86:fd:a2:f1:27:0a:a3:1b:3f:a9: f2:69:cf:b9:59:b4:5f:c8:ed:cd:d2:8b:24:52:6b:03:49:2b: 89:08:74:09:2d:bc:65:7a:d9:c4:7f:bc:fd:2c:ec:be:17:3a: 85:18:3f:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUwNTEyMjMwMjI3WhcNMjUwNTE5MjMwMjI3WjAYMRYwFAYD VQQDEw02ODIyN2UwNC0yMTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybPy41G7vNAqExEKGOU4y4EUaqzxuUkWgjNinAboiLzgX+VAATivpgqXWP9t gkv0PDpOHZXUqz7zi4BOP/6r8f1gP6uWn+28cBddncRVtftzt6uvFDWFaICWBYg3 7x3Ob8r68TBRe21vPLJTXfXLz12I/rzICMJVczimcccRVi4j7vS+RplYERtDkGTQ dIYuY01IxdHdwuOkpftbK+94xeJSxY6taW8OSzZaY8Gg2hqnxDb7+uGxrOj9FuFO xvxYLgb/4jopZU0PlfYu0CUNvnU7BHn0rOrJtOArawT+6524a74CjTiZ9r5Khmqs KFHih51pOc4DEgSBEtNAm28UFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGc9wKDA ReOpvpo1BbUoAsGp1h+8MB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA79ukSy4UVw+cs2EWckMrDUACYvsCUJATSEA5+yOK+B6OHkr4PYw9F YVjjjpNJssVidPFp9vBTptdiX1HOuq6DNhLhQAFzA3fAjoxKstvk/YWSIy0iHvqv IIpIhYbx3VwW/1a/HFN807jl3OCgGDa2tloI789asOEzYl8TLga/LIMD5++8t6zQ iVUu1GsvPx0RspLhizl20pnboTKmPHrqKdrazm5NwX4RgRYDqVQpPjlRH4nvAY+X si1H4tUrj5+4qP5LQJlhNRIOAelH9ob9ovEnCqMbP6nyac+5WbRfyO3N0oskUmsD SSuJCHQJLbxletnEf7z9LOy+FzqFGD9m -----END CERTIFICATE-----Generated at Tue May 13 06:19:18 2025 by rpki-client