$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: wEbRrBbLCVKUvt+BiAcWcjYXqIBnNnOyTt/ONmYbpOI= Subject key identifier: D8:76:84:22:21:D7:31:29:3A:DD:47:AD:9D:77:2B:43:05:6E:3F:63 Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 05A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 059D Signing time: Sat 28 Jun 2025 22:46:48 +0000 Manifest this update: Sat 28 Jun 2025 22:46:48 +0000 Manifest next update: Sat 05 Jul 2025 22:46:48 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: umOBbeuszlXYEt+A96ry09uH5NUMhT59ur53wu4VIZ0=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1442 (0x5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Jun 28 22:46:48 2025 GMT Not After : Jul 5 22:46:48 2025 GMT Subject: CN=686070d8-1514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:bc:51:c9:37:e1:19:37:40:49:2a:c9:7a: ee:b4:d0:7d:37:2e:89:cb:c6:f1:8a:a5:fb:f0:cd: d7:35:4a:6d:2c:f4:d5:0a:f2:75:88:82:68:bd:f7: f7:da:54:f1:a1:f8:8f:86:7d:3b:96:f0:30:8f:f7: 8c:a9:b3:e1:74:3d:06:82:dc:50:04:fe:b4:bc:4f: 86:79:f8:6f:63:bf:7a:3b:20:5a:2e:62:81:a6:8f: d5:84:3b:b9:75:0e:32:05:76:6d:c3:c1:69:24:5a: 4f:ba:d9:43:51:63:90:a7:da:5f:9b:b0:0a:e0:15: 06:e6:ab:97:6c:a2:b6:a7:bb:d7:ee:1c:9f:f7:d0: fb:a5:c9:c2:e4:19:8e:df:f6:44:5b:69:8e:e8:94: 16:6f:54:05:b4:7d:3d:52:ff:ec:e7:92:3e:f4:a5: 34:51:18:53:5b:10:08:63:36:89:36:48:13:de:42: 6d:ff:c9:4d:c7:15:9b:5f:90:1d:a8:37:0b:e4:f7: 55:03:23:a7:4e:0a:e9:43:52:a4:af:f2:84:45:f7: 19:60:96:ea:98:59:45:85:b7:98:44:81:47:c9:e9: fe:83:e0:b2:27:4a:2b:41:6e:39:14:23:c5:8d:ef: 52:89:3c:ff:c7:6d:d5:74:4a:12:75:1a:09:0e:46: a5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:76:84:22:21:D7:31:29:3A:DD:47:AD:9D:77:2B:43:05:6E:3F:63 X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c5:73:d7:68:a3:5c:98:1e:d8:6a:9f:ed:91:05:3a:03:98: 97:c2:73:44:e0:78:2a:62:29:ba:c9:33:47:32:93:29:c1:31: 3b:bd:45:6b:ef:d9:86:4c:6c:13:14:40:ed:64:99:00:59:e0: 73:55:d4:d8:09:6c:84:1e:74:aa:10:70:9f:d1:2d:61:d3:6f: 8a:42:d8:df:39:99:18:d7:b4:68:97:62:49:93:74:3c:44:09: cc:59:22:21:07:38:b8:b5:3a:24:c3:ca:15:0c:c8:64:07:7a: 72:62:be:3e:40:17:d1:d2:64:24:2b:af:c8:b7:53:2b:1e:de: 2d:4f:a5:3f:cf:10:b2:ca:b6:05:af:a0:56:9f:ba:d6:39:95: cb:f8:db:53:be:3f:38:55:32:1f:ba:7d:13:dc:01:ab:97:85: 74:90:2c:9d:a0:56:c2:92:f2:ee:dd:74:57:70:88:9e:9e:1f: d8:c9:67:68:5b:10:45:f3:a9:5f:42:7a:8a:cd:d7:3f:fd:e4: 84:87:09:4d:97:7c:49:bb:6a:4f:45:83:89:99:6c:86:2d:89: 6d:c1:cf:f8:13:60:16:31:0e:9b:a8:2e:cb:14:6b:81:21:52: 3f:25:53:f7:62:6b:36:4e:40:0d:32:ea:78:55:f5:0e:cc:3f: d9:b3:8f:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUwNjI4MjI0NjQ4WhcNMjUwNzA1MjI0NjQ4WjAYMRYwFAYD VQQDEw02ODYwNzBkOC0xNTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1na8Uck34Rk3QEkqyXrutNB9Ny6Jy8bxiqX78M3XNUptLPTVCvJ1iIJovff3 2lTxofiPhn07lvAwj/eMqbPhdD0GgtxQBP60vE+GefhvY796OyBaLmKBpo/VhDu5 dQ4yBXZtw8FpJFpPutlDUWOQp9pfm7AK4BUG5quXbKK2p7vX7hyf99D7pcnC5BmO 3/ZEW2mO6JQWb1QFtH09Uv/s55I+9KU0URhTWxAIYzaJNkgT3kJt/8lNxxWbX5Ad qDcL5PdVAyOnTgrpQ1Kkr/KERfcZYJbqmFlFhbeYRIFHyen+g+CyJ0orQW45FCPF je9SiTz/x23VdEoSdRoJDkalIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNh2hCIh 1zEpOt1HrZ13K0MFbj9jMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCxXPXaKNcmB7Yap/tkQU6A5iXwnNE4HgqYim6yTNHMpMpwTE7vUVr 79mGTGwTFEDtZJkAWeBzVdTYCWyEHnSqEHCf0S1h02+KQtjfOZkY17Rol2JJk3Q8 RAnMWSIhBzi4tTokw8oVDMhkB3pyYr4+QBfR0mQkK6/It1MrHt4tT6U/zxCyyrYF r6BWn7rWOZXL+NtTvj84VTIfun0T3AGrl4V0kCydoFbCkvLu3XRXcIienh/YyWdo WxBF86lfQnqKzdc//eSEhwlNl3xJu2pPRYOJmWyGLYltwc/4E2AWMQ6bqC7LFGuB IVI/JVP3Yms2TkANMup4VfUOzD/Zs48k -----END CERTIFICATE-----Generated at Mon Jun 30 08:30:40 2025 by rpki-client