$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: Tj4tb8BLrCN2wbQli+UW9SQPOuTXMt6Vu+tqQCR4/2Q= Subject key identifier: 47:C4:D4:18:54:D2:1B:94:EE:B8:A9:C7:E2:68:55:E3:60:25:05:FC Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: 88 Signing time: Mon 02 Jun 2025 19:39:10 +0000 Manifest this update: Mon 02 Jun 2025 19:39:10 +0000 Manifest next update: Mon 09 Jun 2025 19:39:10 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: fOssrexlCdh1+f9pzebBeCu0HlG/sTW1NS2rjz6m9B4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Jun 2 19:39:10 2025 GMT Not After : Jun 9 19:39:10 2025 GMT Subject: CN=683dfdde-50d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:70:3a:92:76:c5:03:46:61:f0:60:e5:c6:10: b6:7b:9d:0d:68:39:b4:a4:b6:ce:08:f7:34:4a:d5: 22:1b:68:54:8e:f4:5a:51:9c:a9:86:10:c9:1b:80: 4c:24:e3:b0:bb:0e:a3:40:e6:6d:66:77:b3:a0:f4: cb:3c:39:6b:a6:0f:99:f0:cf:1b:09:3a:f7:2a:98: f5:f8:bb:00:e3:df:a9:ce:ee:79:b1:2e:6e:80:bc: 24:11:46:94:6a:8c:1f:ce:18:e7:df:a1:41:68:06: 45:10:d1:8c:7c:4a:29:10:25:d2:7a:d1:52:f4:db: a9:86:5e:3c:82:69:13:fb:ec:a8:ba:ee:dd:62:fd: d3:7a:47:34:e2:d7:4c:34:73:6c:c5:bb:9f:c5:3e: a9:4e:a7:43:e1:ae:3e:70:50:90:f0:61:38:c2:4e: 89:14:31:73:28:40:86:2d:40:e4:04:59:6a:b0:17: 63:f3:7e:0f:89:d3:bb:5e:c8:5f:04:e3:ed:8f:fe: e8:32:e4:a6:0e:d2:db:89:e5:dc:e5:48:49:be:89: 63:ab:59:73:86:d8:ea:9b:73:1f:d1:3c:67:72:58: 38:39:83:fc:21:3a:e9:4e:21:1c:84:77:70:b0:74: a4:5f:23:ce:31:3f:37:2b:b3:30:c0:7f:9d:03:23: 20:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C4:D4:18:54:D2:1B:94:EE:B8:A9:C7:E2:68:55:E3:60:25:05:FC X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:50:b3:f1:83:4e:90:60:ef:4d:db:3d:48:2e:3b:d8:69:dd: 2e:8b:b7:19:b2:b5:b2:4b:16:69:21:2d:94:0c:68:c5:72:3b: a8:c1:24:ff:0e:ca:70:b5:12:34:50:6c:c5:ec:5f:09:de:07: dc:b4:6b:86:30:da:54:04:80:79:de:64:c6:76:7d:20:48:e2: 57:92:40:0e:b3:94:a1:9e:db:7f:94:35:1a:24:1d:19:41:47: e8:09:4f:33:1a:79:0c:e8:9f:9b:7b:4b:07:30:b6:7f:6e:4a: 9b:b4:a4:74:be:02:bb:ce:b7:b4:19:71:47:66:a0:a1:b4:01: 6a:02:91:3c:fd:89:b3:92:0b:cd:9e:e5:30:48:14:de:9e:e3: 29:0e:35:67:cd:d6:19:34:4a:c8:28:a6:12:67:0f:08:99:dc: b4:d4:bf:a0:a2:98:7d:ef:94:2d:8f:35:7c:52:b7:4f:c0:44: e8:5e:a3:80:f8:ca:70:f4:83:46:a0:3e:cc:b5:e3:b1:21:a9: e2:d3:67:b5:e8:6c:c0:10:ae:1c:5d:eb:4f:b8:e5:da:83:1f: 54:1b:c5:fd:33:64:5e:3c:bb:dd:42:52:fa:e7:b3:fb:1f:cf: 3a:c1:21:b3:70:e8:6d:18:8f:2f:12:f5:34:a9:a0:83:57:34: 9d:86:cf:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKDJDN0I1RDg0NzIwMDNDRjM0MzZBQ0ZFNUI2MUU4OUVD OEIxQUQ4QUIwHhcNMjUwNjAyMTkzOTEwWhcNMjUwNjA5MTkzOTEwWjAYMRYwFAYD VQQDEw02ODNkZmRkZS01MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nA6knbFA0Zh8GDlxhC2e50NaDm0pLbOCPc0StUiG2hUjvRaUZyphhDJG4BM JOOwuw6jQOZtZnezoPTLPDlrpg+Z8M8bCTr3Kpj1+LsA49+pzu55sS5ugLwkEUaU aowfzhjn36FBaAZFENGMfEopECXSetFS9Nuphl48gmkT++youu7dYv3Tekc04tdM NHNsxbufxT6pTqdD4a4+cFCQ8GE4wk6JFDFzKECGLUDkBFlqsBdj834PidO7Xshf BOPtj/7oMuSmDtLbieXc5UhJvoljq1lzhtjqm3Mf0Txnclg4OYP8ITrpTiEchHdw sHSkXyPOMT83K7MwwH+dAyMg1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfE1BhU 0huU7ripx+JoVeNgJQX8MB8GA1UdIwQYMBaAFCx7XYRyADzzQ2rP5bYeieyLGtir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS80RTExRjRENjcx OTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQTkRhc19sdGg2SjdJc2Ey S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS80RTExRjRENjcxOTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQ TkRhc19sdGg2SjdJc2EyS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiULPxg06QYO9N2z1ILjvYad0ui7cZsrWySxZpIS2UDGjFcjuowST/ DspwtRI0UGzF7F8J3gfctGuGMNpUBIB53mTGdn0gSOJXkkAOs5Shntt/lDUaJB0Z QUfoCU8zGnkM6J+be0sHMLZ/bkqbtKR0vgK7zre0GXFHZqChtAFqApE8/YmzkgvN nuUwSBTenuMpDjVnzdYZNErIKKYSZw8Imdy01L+goph975QtjzV8UrdPwEToXqOA +Mpw9INGoD7MteOxIani02e16GzAEK4cXetPuOXagx9UG8X9M2RePLvdQlL657P7 H886wSGzcOhtGI8vEvU0qaCDVzSdhs8t -----END CERTIFICATE-----Generated at Wed Jun 4 00:10:26 2025 by rpki-client