$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft File: LFTOW3Q5yME3PII5T2B5FwVy9_0.mft (raw, json) Hash identifier: eOdqhb5IcNTh0jF5oDim6ywvecggXrCjfw3uHcGqeSA= Subject key identifier: 4D:D3:21:61:FF:47:09:DB:1B:E5:80:58:79:36:95:95:F6:7F:E5:57 Authority key identifier: 2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD Certificate issuer: /CN=A91DC271/serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft Manifest number: 05AF Signing time: Sat 02 Aug 2025 23:33:08 +0000 Manifest this update: Sat 02 Aug 2025 23:33:08 +0000 Manifest next update: Sat 09 Aug 2025 23:33:08 +0000 Files and hashes: 1: LFTOW3Q5yME3PII5T2B5FwVy9_0.crl (hash: w2oyy1/br7cTQI/gmoKjmWixTmgY4q21FIWsmgGqw8k=) 2: 26DDF9C4D59311EB9DBD350EC4F9AE02.roa (hash: r1nvlMobRn7ox8IKXb1KWmQHrNC+PsGByKMD0/kqGOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC271, serialNumber=2C54CE5B7439C8C1373C82394F6079170572F7FD Validity Not Before: Aug 2 23:33:08 2025 GMT Not After : Aug 9 23:33:08 2025 GMT Subject: CN=688ea034-02bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:20:6d:2b:74:a2:a2:30:29:af:32:63:61: 7a:7f:54:40:cf:68:f6:f9:e3:97:3a:46:c2:21:ea: 26:96:6b:fc:c7:18:fc:c6:a1:b2:b2:b1:7e:58:1a: 3d:63:ce:cd:f5:d3:53:4c:2b:ce:56:1c:e2:1d:18: f5:70:c5:3e:d2:5f:49:9a:30:33:23:6d:47:03:4a: 19:bc:c3:0a:8d:98:fd:2d:f6:0b:f6:6e:f1:f1:f2: c3:37:bd:4c:c8:e1:88:59:c7:55:39:83:9f:37:44: 6a:62:47:87:4b:75:3b:b3:9b:21:8d:ac:cb:e8:52: 18:8a:ad:11:ba:f5:c2:6c:fd:9e:80:34:04:80:0f: 9f:21:19:38:c6:da:e1:cf:06:e1:00:b1:21:e5:d6: b0:7a:ea:87:b1:9c:c7:bd:32:b3:a5:46:b7:b9:a8: 98:7a:4c:6f:19:aa:e9:50:ab:f1:59:f6:49:ec:2e: f3:fe:f3:13:25:8a:5a:19:80:08:db:5b:f5:b4:db: ee:09:4f:b0:a5:2a:19:51:69:b4:ce:f8:6e:42:2a: 2f:62:7d:67:33:1e:ae:1b:0f:8e:91:3b:5e:92:49: 1b:9c:87:f8:8a:5d:b7:35:bd:6f:13:b2:57:c0:23: 24:3e:d7:a5:e9:e5:04:5f:33:cb:a9:e1:f3:c0:d4: de:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D3:21:61:FF:47:09:DB:1B:E5:80:58:79:36:95:95:F6:7F:E5:57 X509v3 Authority Key Identifier: keyid:2C:54:CE:5B:74:39:C8:C1:37:3C:82:39:4F:60:79:17:05:72:F7:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LFTOW3Q5yME3PII5T2B5FwVy9_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC271/724BDAA2D58E11EBB79D3984C4F9AE02/LFTOW3Q5yME3PII5T2B5FwVy9_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:7f:a5:1e:e6:72:e5:74:62:b9:ca:00:1c:2d:33:70:be:79: 70:0b:c4:c2:1d:e3:e5:a6:f6:5d:0e:5e:bf:f0:24:26:de:a6: 4d:83:fe:7c:88:32:f6:29:48:e9:3b:f4:f7:75:0d:3c:6f:b4: 7a:36:7c:3e:fa:76:7b:b7:2f:87:a1:6f:2f:0b:36:e4:4d:e0: 92:01:58:66:7b:22:0f:53:f2:9f:dc:e1:b3:3f:37:e8:61:a8: ac:83:e5:3f:8e:7f:7e:89:32:56:28:16:31:91:01:c9:41:b7: 7c:1a:c8:c2:7b:71:c5:44:bc:57:60:25:15:dc:bc:31:ea:e1: 5b:4b:ae:db:e4:06:ec:d6:ba:0b:a0:c4:c0:d4:5b:5d:76:7b: a6:d4:f5:70:20:ab:6f:40:af:6f:5a:55:25:b7:8b:1e:60:aa: 30:50:42:c8:54:62:00:1c:4f:17:ec:2c:cb:cb:54:80:ae:6e: 13:ea:6d:24:d5:88:0d:9b:06:46:8d:b1:b4:52:9e:b7:2b:cf: 6a:06:9d:fe:c4:3d:4c:15:33:45:e7:13:d3:88:20:a9:b0:a1: 82:fa:df:c9:1e:e1:8e:d7:3b:f7:19:e7:4a:a0:05:de:88:0d: bf:f9:bf:a3:65:5a:6b:1c:5f:bb:c0:c6:60:b9:40:bd:93:90: cf:cb:4a:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMyNzExMTAvBgNVBAUTKDJDNTRDRTVCNzQzOUM4QzEzNzNDODIzOTRGNjA3OTE3 MDU3MkY3RkQwHhcNMjUwODAyMjMzMzA4WhcNMjUwODA5MjMzMzA4WjAYMRYwFAYD VQQDEw02ODhlYTAzNC0wMmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWcgbSt0oqIwKa8yY2F6f1RAz2j2+eOXOkbCIeomlmv8xxj8xqGysrF+WBo9 Y87N9dNTTCvOVhziHRj1cMU+0l9JmjAzI21HA0oZvMMKjZj9LfYL9m7x8fLDN71M yOGIWcdVOYOfN0RqYkeHS3U7s5shjazL6FIYiq0RuvXCbP2egDQEgA+fIRk4xtrh zwbhALEh5daweuqHsZzHvTKzpUa3uaiYekxvGarpUKvxWfZJ7C7z/vMTJYpaGYAI 21v1tNvuCU+wpSoZUWm0zvhuQiovYn1nMx6uGw+OkTtekkkbnIf4il23Nb1vE7JX wCMkPtel6eUEXzPLqeHzwNTedQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3TIWH/ RwnbG+WAWHk2lZX2f+VXMB8GA1UdIwQYMBaAFCxUzlt0OcjBNzyCOU9geRcFcvf9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzI3MS83MjRCREFBMkQ1 OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlNRTNQSUk1VDJCNUZ3Vnk5 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xGVE9XM1E1eU1FM1BJSTVUMkI1RndWeTlfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzI3MS83MjRCREFBMkQ1OEUxMUVCQjc5RDM5ODRDNEY5QUUwMi9MRlRPVzNRNXlN RTNQSUk1VDJCNUZ3Vnk5XzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBf6Ue5nLldGK5ygAcLTNwvnlwC8TCHePlpvZdDl6/8CQm3qZNg/58 iDL2KUjpO/T3dQ08b7R6Nnw++nZ7ty+HoW8vCzbkTeCSAVhmeyIPU/Kf3OGzPzfo Yaisg+U/jn9+iTJWKBYxkQHJQbd8GsjCe3HFRLxXYCUV3Lwx6uFbS67b5Abs1roL oMTA1Ftddnum1PVwIKtvQK9vWlUlt4seYKowUELIVGIAHE8X7CzLy1SArm4T6m0k 1YgNmwZGjbG0Up63K89qBp3+xD1MFTNF5xPTiCCpsKGC+t/JHuGO1zv3GedKoAXe iA2/+b+jZVprHF+7wMZguUC9k5DPy0pY -----END CERTIFICATE-----Generated at Mon Aug 4 15:37:10 2025 by rpki-client