$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: KUxrzefZJW8QcBP43c61ecesTtj/qtiXafHWcUxWmxY= Subject key identifier: 07:2C:37:EA:4F:9B:92:75:C2:5D:74:58:4B:47:3D:8B:20:51:18:3F Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: B9 Signing time: Sat 06 Sep 2025 19:34:47 +0000 Manifest this update: Sat 06 Sep 2025 19:34:46 +0000 Manifest next update: Sat 13 Sep 2025 19:34:46 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: 055dDN5ZJ9uoIfADS/lXMlKpiHUbkBHbcMtOsq8WrM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Sep 6 19:34:46 2025 GMT Not After : Sep 13 19:34:46 2025 GMT Subject: CN=68bc8cd6-d4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:31:85:a1:69:4d:bb:8e:85:6d:34:c5:0e:87: da:97:fb:d8:43:03:1f:b8:6e:98:5b:52:ad:8c:9e: 47:10:6f:e4:c5:d6:13:8f:b3:21:3e:26:74:6f:8d: 69:fe:6e:d1:31:f6:87:ca:57:38:fd:42:dd:b6:9c: 69:2d:1f:b6:2c:a4:9f:85:59:78:82:15:b3:b4:39: b2:0e:88:e8:7c:70:0d:e3:3c:68:2c:5b:8e:3d:5d: 7c:79:fd:5e:95:54:f2:8f:0f:42:ea:45:c6:8f:8e: e2:a2:36:a6:d4:ff:bc:36:4b:63:09:9f:60:7f:ea: 4d:78:92:f9:69:f0:a3:95:40:40:b5:5e:cc:79:bc: 84:41:3a:15:65:03:e1:8c:bd:d9:97:97:a5:ed:07: fb:06:ad:f6:73:9e:e2:b4:39:a5:aa:57:cf:e0:b0: fe:4c:69:16:fb:1b:fa:d9:6e:2c:9d:7f:30:16:85: 63:36:01:c2:ea:a8:d0:0e:59:35:78:f4:59:09:fb: da:b0:68:24:6d:3a:c1:6e:0d:13:c8:33:77:34:bb: 2a:07:ab:6a:db:d5:26:dd:32:d7:bb:1d:b0:94:5b: 62:4f:6b:53:f0:ca:f4:62:84:57:44:ef:08:2c:92: a4:4b:15:f7:de:1e:1c:35:6e:a8:68:6b:a2:16:a9: 5f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:2C:37:EA:4F:9B:92:75:C2:5D:74:58:4B:47:3D:8B:20:51:18:3F X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:72:f0:1e:9f:e1:7d:96:04:08:95:75:25:28:93:04:3e:1c: 44:ee:09:05:3e:55:c5:96:26:0e:b4:37:83:df:ee:54:6a:bd: 82:f5:46:a6:f1:65:77:50:83:6a:fa:b5:fa:46:70:6e:53:d4: 9e:ea:c4:5a:69:42:77:9b:59:f3:3c:f4:a6:b7:10:de:0c:c3: 58:bd:ad:70:a9:30:77:8d:7d:79:4e:ac:02:dc:85:45:02:02: bf:7b:01:bb:3a:0a:d2:30:ab:5a:61:59:4b:04:62:5d:24:1a: 30:2b:08:f1:c6:e9:8a:2f:f1:17:c4:e8:15:d1:b3:57:fb:01: b3:8a:6f:3c:3e:55:80:80:33:1b:4d:c2:b1:71:0b:ae:9f:87: 80:28:84:c2:51:62:fc:a9:f2:f2:72:da:84:ef:08:67:4d:d2: f5:6f:88:84:e2:aa:96:0d:f3:a6:82:6d:f0:02:4e:cb:81:72: 0b:c7:6b:fc:09:b8:77:a7:c4:b6:e8:15:38:e0:86:7c:de:e9: 48:eb:f7:4a:34:4b:42:cb:44:ad:dc:1b:81:b7:a9:47:39:7f: 2f:39:6a:b6:ac:69:84:ff:16:9f:1a:a6:15:6c:d9:78:19:2c: aa:80:0f:2d:d6:fa:8b:61:68:ff:d3:7d:70:e5:00:bd:87:a7: 26:73:33:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKDJDN0I1RDg0NzIwMDNDRjM0MzZBQ0ZFNUI2MUU4OUVD OEIxQUQ4QUIwHhcNMjUwOTA2MTkzNDQ2WhcNMjUwOTEzMTkzNDQ2WjAYMRYwFAYD VQQDEw02OGJjOGNkNi1kNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjGFoWlNu46FbTTFDofal/vYQwMfuG6YW1KtjJ5HEG/kxdYTj7MhPiZ0b41p /m7RMfaHylc4/ULdtpxpLR+2LKSfhVl4ghWztDmyDojofHAN4zxoLFuOPV18ef1e lVTyjw9C6kXGj47iojam1P+8NktjCZ9gf+pNeJL5afCjlUBAtV7MebyEQToVZQPh jL3Zl5el7Qf7Bq32c57itDmlqlfP4LD+TGkW+xv62W4snX8wFoVjNgHC6qjQDlk1 ePRZCfvasGgkbTrBbg0TyDN3NLsqB6tq29Um3TLXux2wlFtiT2tT8Mr0YoRXRO8I LJKkSxX33h4cNW6oaGuiFqlfFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcsN+pP m5J1wl10WEtHPYsgURg/MB8GA1UdIwQYMBaAFCx7XYRyADzzQ2rP5bYeieyLGtir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS80RTExRjRENjcx OTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQTkRhc19sdGg2SjdJc2Ey S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS80RTExRjRENjcxOTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQ TkRhc19sdGg2SjdJc2EyS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFcvAen+F9lgQIlXUlKJMEPhxE7gkFPlXFliYOtDeD3+5Uar2C9Uam 8WV3UINq+rX6RnBuU9Se6sRaaUJ3m1nzPPSmtxDeDMNYva1wqTB3jX15TqwC3IVF AgK/ewG7OgrSMKtaYVlLBGJdJBowKwjxxumKL/EXxOgV0bNX+wGzim88PlWAgDMb TcKxcQuun4eAKITCUWL8qfLyctqE7whnTdL1b4iE4qqWDfOmgm3wAk7LgXILx2v8 Cbh3p8S26BU44IZ83ulI6/dKNEtCy0St3BuBt6lHOX8vOWq2rGmE/xafGqYVbNl4 GSyqgA8t1vqLYWj/031w5QC9h6cmczOH -----END CERTIFICATE-----Generated at Sat Sep 6 21:06:08 2025 by rpki-client