$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: FJdNfWIzakuaNuhqv/wYuH43Dq2285iMh5mMgcCFHjY= Subject key identifier: 23:B1:6A:08:E0:71:1C:C5:66:BB:FD:C7:DC:23:82:33:75:95:60:24 Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 059A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 0595 Signing time: Thu 12 Jun 2025 22:49:29 +0000 Manifest this update: Thu 12 Jun 2025 22:49:28 +0000 Manifest next update: Thu 19 Jun 2025 22:49:28 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: 1hPOWeHabHS9N70R1L9EYEoaaQqf6qZ3hrKN1FtN3Ss=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Jun 12 22:49:28 2025 GMT Not After : Jun 19 22:49:28 2025 GMT Subject: CN=684b5978-f679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ab:fb:c4:50:3a:f4:27:cb:fd:b4:b7:f5:74: 9a:57:cc:c6:4d:7d:ee:5a:4a:15:55:17:92:85:4d: c0:3a:13:ce:c6:5b:da:2b:8e:b6:b4:44:07:8f:a2: bd:7d:17:ed:48:ab:a2:0c:c1:b3:6e:93:9b:88:39: 44:e0:8d:34:11:87:81:a3:98:e6:c0:60:d0:0f:7c: 5f:19:98:e5:0a:9f:07:f7:49:25:24:62:68:b9:d3: 3a:3d:39:8b:1d:06:6d:e3:98:0d:98:50:f2:e4:54: b6:0e:e6:3c:b7:09:73:2e:b0:f1:10:4e:da:9f:9e: 11:16:e7:c1:0a:40:9b:a8:15:d1:91:e0:ba:b2:e3: 8a:de:80:76:1d:c3:45:23:cf:18:7b:87:d9:09:c5: 9f:46:e2:0a:f5:1b:0a:35:c4:2a:4e:d3:60:5c:95: 06:f9:a7:d1:87:68:65:ea:53:f1:42:90:83:99:00: e7:58:bc:5b:3d:9b:63:db:8d:13:99:32:c0:34:f7: 8b:a5:c2:92:e6:18:10:c5:b3:97:55:ed:6a:15:1f: 76:1a:59:60:49:77:ec:3e:6f:07:29:9b:eb:f1:7f: 50:0e:26:99:cb:e8:e8:37:40:9e:16:e5:d0:bd:da: af:b1:0e:8d:93:16:78:11:0b:7a:bf:27:df:5f:58: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B1:6A:08:E0:71:1C:C5:66:BB:FD:C7:DC:23:82:33:75:95:60:24 X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:c2:f5:f1:58:c1:60:0f:8a:d1:d0:dd:0e:be:b7:63:d4:5a: bf:0b:84:80:36:cc:a5:5c:4b:b7:31:97:c2:3f:b1:19:40:4f: c5:50:1a:8c:8a:d3:b8:ba:39:fd:32:87:33:75:84:6d:fa:4d: d9:97:73:47:0e:17:bd:be:4c:4e:7c:91:37:8d:dd:a8:5b:aa: 04:99:c0:4c:15:6a:91:42:45:e8:ee:a2:d3:d2:0c:96:67:3d: 48:bb:56:b5:ee:35:b9:97:65:2a:29:1d:6c:ba:75:6c:02:dc: 88:83:e7:5d:35:b9:ee:67:64:e4:ae:9e:c4:f4:d1:1b:5b:81: 70:e2:d3:b9:a0:34:80:80:ef:02:79:43:9e:c7:b0:80:95:8a: fb:20:26:51:b8:7d:bc:da:d8:52:52:59:2c:95:90:a6:12:98: b1:46:67:05:22:9f:6b:bf:8c:1c:66:e1:64:84:1f:80:16:e4: d6:7b:ff:f1:84:aa:c9:95:4d:4c:af:4c:f1:02:97:af:bc:4c: 0e:bb:b8:ce:d5:14:c5:e4:f1:fc:9f:15:bb:e0:7d:94:cc:9b: fb:c0:26:97:b2:07:a2:c7:f3:9b:59:92:37:1f:c5:38:09:19: e0:39:36:fa:04:cf:f8:bb:be:24:f7:a3:06:f5:c8:e3:ca:84: 81:19:cf:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUwNjEyMjI0OTI4WhcNMjUwNjE5MjI0OTI4WjAYMRYwFAYD VQQDEw02ODRiNTk3OC1mNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqv7xFA69CfL/bS39XSaV8zGTX3uWkoVVReShU3AOhPOxlvaK462tEQHj6K9 fRftSKuiDMGzbpObiDlE4I00EYeBo5jmwGDQD3xfGZjlCp8H90klJGJoudM6PTmL HQZt45gNmFDy5FS2DuY8twlzLrDxEE7an54RFufBCkCbqBXRkeC6suOK3oB2HcNF I88Ye4fZCcWfRuIK9RsKNcQqTtNgXJUG+afRh2hl6lPxQpCDmQDnWLxbPZtj240T mTLANPeLpcKS5hgQxbOXVe1qFR92GllgSXfsPm8HKZvr8X9QDiaZy+joN0CeFuXQ vdqvsQ6NkxZ4EQt6vyffX1jpMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOxagjg cRzFZrv9x9wjgjN1lWAkMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJwvXxWMFgD4rR0N0Ovrdj1Fq/C4SANsylXEu3MZfCP7EZQE/FUBqM itO4ujn9MoczdYRt+k3Zl3NHDhe9vkxOfJE3jd2oW6oEmcBMFWqRQkXo7qLT0gyW Zz1Iu1a17jW5l2UqKR1sunVsAtyIg+ddNbnuZ2Tkrp7E9NEbW4Fw4tO5oDSAgO8C eUOex7CAlYr7ICZRuH282thSUlkslZCmEpixRmcFIp9rv4wcZuFkhB+AFuTWe//x hKrJlU1Mr0zxApevvEwOu7jO1RTF5PH8nxW74H2UzJv7wCaXsgeix/ObWZI3H8U4 CRngOTb6BM/4u74k96MG9cjjyoSBGc/u -----END CERTIFICATE-----Generated at Sat Jun 14 18:42:40 2025 by rpki-client