$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: YEAs/z+gtsoJBBajy/yYBRO/R7TesEIGYRsdIyL/n3A= Subject key identifier: F1:70:98:12:B9:FC:50:D1:A5:BF:7D:21:C2:8F:43:BF:9F:6A:8F:FC Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 062B Signing time: Thu 26 Mar 2026 22:36:24 +0000 Manifest this update: Thu 26 Mar 2026 22:36:23 +0000 Manifest next update: Thu 02 Apr 2026 22:36:23 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: VI2CFs1dvl3nOUUGFnnCLJ34Reu7riS5AntruXXN3lI=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: bCL3Viem/kaeDI5fANKRqsR+6xed5OvLge1DHC5Yp+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Mar 26 22:36:23 2026 GMT Not After : Apr 2 22:36:23 2026 GMT Subject: CN=69c5b4e8-237d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:be:3a:ff:a9:d8:ae:95:42:77:f6:d3:0b:82: 63:34:38:15:77:3d:6c:4c:80:93:50:5d:81:65:05: 81:b0:18:bc:bd:30:8e:2b:87:b2:1f:01:6a:ef:f4: 55:3c:cf:ad:e0:34:16:55:19:4a:c8:f3:16:31:23: c5:c9:35:55:7d:f9:0c:9a:df:14:53:3e:e6:6b:c2: a6:ae:6f:df:64:66:54:c8:da:e6:8d:c9:b4:32:ba: 4c:e1:af:71:94:cf:41:67:e4:b1:0f:d2:ec:08:5f: 7a:9d:cd:95:bd:1f:1c:59:06:19:44:1e:14:3b:d5: d3:c4:48:8d:ec:af:c5:73:72:22:23:86:7d:ae:bc: 17:99:c3:4d:45:8d:11:ce:85:2d:81:1a:cc:8f:cb: 3b:20:a8:2e:b2:cd:e2:30:52:27:ac:35:1b:a7:06: ea:ce:b3:20:0a:13:b6:08:19:c1:45:aa:c9:1f:19: 87:77:77:bb:61:9b:3d:4b:89:78:19:05:d9:be:b4: f6:7a:db:b6:eb:35:21:0e:59:f0:54:ee:eb:84:7e: 11:47:95:9a:ba:a1:ba:8a:2c:cb:67:f3:ca:2a:62: 4a:26:a7:da:59:39:b9:9f:63:98:16:73:62:ec:2b: d8:06:27:80:ac:ab:fe:5c:73:1f:52:a5:c5:cd:0d: 6e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:70:98:12:B9:FC:50:D1:A5:BF:7D:21:C2:8F:43:BF:9F:6A:8F:FC X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:76:65:5e:44:ed:6a:cd:37:cf:90:6c:e6:ea:af:5b:a3:8f: 7b:bb:63:54:e3:e6:b0:8b:31:b4:ef:6c:94:37:8b:57:df:e5: b0:5e:5b:f0:79:6a:46:4c:7b:02:63:aa:e6:55:61:87:f7:a8: 18:a0:e4:3e:87:95:8e:49:32:17:e9:fe:bc:c6:3e:71:28:c4: 9f:e4:b4:8e:f3:4c:d3:1a:d8:b3:bf:82:65:3d:00:49:61:b9: 70:af:bd:93:b9:12:5b:d0:bf:3b:81:ab:90:19:24:1f:4c:1e: f3:13:f6:0e:df:b7:3c:19:ad:a0:11:5b:5d:cd:44:92:34:08: 7d:16:4e:c4:3a:6c:63:51:86:cb:17:07:6b:51:4f:52:65:54: dd:82:03:a7:2e:bf:b8:1d:70:42:b8:01:be:27:3c:ab:3c:c0: 2a:7f:6b:0f:a0:7d:8a:8d:23:98:cd:46:72:74:e3:5e:76:b5: 90:11:54:43:ad:70:31:5a:db:9f:2c:8d:81:a6:82:a6:21:86: 72:eb:05:f5:11:53:a1:87:02:4b:5a:2d:74:b8:d8:64:23:c4: 36:d5:d2:08:e9:97:07:a9:27:71:4d:ba:6d:1c:6e:4e:23:65: d3:82:75:90:0d:c2:31:b9:bf:3d:fa:a6:30:d9:ba:27:ca:76: 5a:cc:c1:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjYwMzI2MjIzNjIzWhcNMjYwNDAyMjIzNjIzWjAYMRYwFAYD VQQDEw02OWM1YjRlOC0yMzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn746/6nYrpVCd/bTC4JjNDgVdz1sTICTUF2BZQWBsBi8vTCOK4eyHwFq7/RV PM+t4DQWVRlKyPMWMSPFyTVVffkMmt8UUz7ma8Kmrm/fZGZUyNrmjcm0MrpM4a9x lM9BZ+SxD9LsCF96nc2VvR8cWQYZRB4UO9XTxEiN7K/Fc3IiI4Z9rrwXmcNNRY0R zoUtgRrMj8s7IKguss3iMFInrDUbpwbqzrMgChO2CBnBRarJHxmHd3e7YZs9S4l4 GQXZvrT2etu26zUhDlnwVO7rhH4RR5WauqG6iizLZ/PKKmJKJqfaWTm5n2OYFnNi 7CvYBieArKv+XHMfUqXFzQ1uHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPFwmBK5 /FDRpb99IcKPQ7+fao/8MB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAB3ZlXkTtas03z5Bs5uqvW6OPe7tjVOPmsIsxtO9slDeLV9/lsF5b8HlqRkx7 AmOq5lVhh/eoGKDkPoeVjkkyF+n+vMY+cSjEn+S0jvNM0xrYs7+CZT0ASWG5cK+9 k7kSW9C/O4GrkBkkH0we8xP2Dt+3PBmtoBFbXc1EkjQIfRZOxDpsY1GGyxcHa1FP UmVU3YIDpy6/uB1wQrgBvic8qzzAKn9rD6B9io0jmM1GcnTjXna1kBFUQ61wMVrb nyyNgaaCpiGGcusF9RFToYcCS1otdLjYZCPENtXSCOmXB6kncU26bRxuTiNl04J1 kA3CMbm/PfqmMNm6J8p2WszBDQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:14:31 2026 by rpki-client