$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: wsLoqKkDdimEVyLyj68HkEAhAvS9j4u8Mh3A0EJYqvI= Subject key identifier: E2:13:2E:A7:A3:92:89:45:8A:56:88:FE:6B:35:3D:3A:0B:2D:E3:40 Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: A0 Signing time: Sun 20 Jul 2025 19:32:37 +0000 Manifest this update: Sun 20 Jul 2025 19:32:36 +0000 Manifest next update: Sun 27 Jul 2025 19:32:36 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: 88lAFVASslHXErA6TLD9uiYhnf83MoYERiYLk+ajPSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:32:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Jul 20 19:32:36 2025 GMT Not After : Jul 27 19:32:36 2025 GMT Subject: CN=687d4455-ac66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:07:52:8f:69:35:7d:62:65:fb:6c:a0:d2:95: 9a:e0:af:92:36:4a:11:5d:f0:be:43:33:b5:52:28: fd:26:c7:b0:4e:2d:17:8c:eb:4f:6b:dd:4d:ec:82: 49:62:3d:2e:52:be:2e:3b:40:1b:bf:5e:ba:cf:62: 0c:f2:6f:e8:b9:dc:5c:c2:0c:ba:f0:e5:21:8e:f7: 98:68:f3:3c:ac:d8:c4:79:80:a7:6b:e2:7e:6f:cc: 38:4a:14:07:8e:15:4b:55:87:79:09:70:e2:82:2c: 34:82:f3:c7:82:e6:96:e4:55:41:25:dc:b4:39:91: 6e:ac:ed:20:d1:88:75:10:83:b4:3b:b3:7e:1c:25: b1:8e:a0:5f:d7:b1:89:4d:b4:0d:9a:b3:ea:d0:56: 38:e7:e0:08:a3:6f:1e:f6:23:3d:0b:25:64:8b:91: 2c:2c:d5:51:9e:5b:2d:62:98:4c:75:96:db:8c:12: 5d:f7:f4:28:db:c3:b9:bd:85:f5:af:e9:ca:62:e2: f9:a1:f8:63:6b:dd:fb:d7:f9:8e:f6:5e:fd:e3:0f: 48:56:66:8e:a2:c6:1b:ed:d8:9d:09:08:4c:f8:5a: a0:2f:c1:67:fc:f9:5d:43:0e:5f:70:5e:79:d2:26: 52:72:6c:0c:5f:c9:fd:0c:98:72:41:2f:c0:6b:2c: c2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:13:2E:A7:A3:92:89:45:8A:56:88:FE:6B:35:3D:3A:0B:2D:E3:40 X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ad:15:38:2a:c9:98:15:f0:a2:0f:a3:bd:fa:fa:d4:4f:7f: a9:bf:8b:31:90:52:c6:cd:a3:f3:04:24:d5:6f:4f:40:0c:1e: 9c:7a:e1:95:76:19:cd:11:7c:21:a4:26:1b:b2:b4:6a:23:4b: e8:5e:b7:1e:1e:b4:d2:f2:25:40:2e:4e:5f:67:64:6a:9b:e7: 33:b9:47:1b:19:69:ff:d7:57:3e:fe:f3:49:43:a5:1a:fe:b6: 37:dd:37:f6:ac:b0:20:95:09:ce:56:2f:c0:f4:d7:7a:d3:f5: ff:4d:4e:75:26:c2:34:c8:c8:3f:f8:ad:f6:87:f0:22:f6:bf: a3:57:29:d8:76:c3:41:36:95:8b:f1:f9:b8:67:0f:df:8e:00: 56:80:f8:ec:f1:b5:10:1f:3f:35:10:f2:af:da:c6:bf:12:7a: 4f:6f:71:6a:cc:93:c9:a7:09:5e:33:81:e3:39:94:d5:c9:d1: b9:4b:44:db:ea:13:8a:86:19:52:11:60:0c:48:ce:f7:09:b4: 22:36:8a:c3:52:78:67:b4:06:62:a0:59:b2:cb:a1:d7:88:a2: dd:86:57:19:8b:47:19:8f:b8:37:76:c9:23:34:d8:b4:95:2d: e2:1b:e1:16:1d:b7:8d:a7:b6:f5:76:81:a7:09:dd:e7:76:5d: 64:da:ef:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKDJDN0I1RDg0NzIwMDNDRjM0MzZBQ0ZFNUI2MUU4OUVD OEIxQUQ4QUIwHhcNMjUwNzIwMTkzMjM2WhcNMjUwNzI3MTkzMjM2WjAYMRYwFAYD VQQDEw02ODdkNDQ1NS1hYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAdSj2k1fWJl+2yg0pWa4K+SNkoRXfC+QzO1Uij9JsewTi0XjOtPa91N7IJJ Yj0uUr4uO0Abv166z2IM8m/oudxcwgy68OUhjveYaPM8rNjEeYCna+J+b8w4ShQH jhVLVYd5CXDigiw0gvPHguaW5FVBJdy0OZFurO0g0Yh1EIO0O7N+HCWxjqBf17GJ TbQNmrPq0FY45+AIo28e9iM9CyVki5EsLNVRnlstYphMdZbbjBJd9/Qo28O5vYX1 r+nKYuL5ofhja9371/mO9l794w9IVmaOosYb7didCQhM+FqgL8Fn/PldQw5fcF55 0iZScmwMX8n9DJhyQS/AayzCNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOITLqej kolFilaI/ms1PToLLeNAMB8GA1UdIwQYMBaAFCx7XYRyADzzQ2rP5bYeieyLGtir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS80RTExRjRENjcx OTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQTkRhc19sdGg2SjdJc2Ey S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS80RTExRjRENjcxOTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQ TkRhc19sdGg2SjdJc2EyS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBrRU4KsmYFfCiD6O9+vrUT3+pv4sxkFLGzaPzBCTVb09ADB6ceuGV dhnNEXwhpCYbsrRqI0voXrceHrTS8iVALk5fZ2Rqm+czuUcbGWn/11c+/vNJQ6Ua /rY33Tf2rLAglQnOVi/A9Nd60/X/TU51JsI0yMg/+K32h/Ai9r+jVynYdsNBNpWL 8fm4Zw/fjgBWgPjs8bUQHz81EPKv2sa/EnpPb3FqzJPJpwleM4HjOZTVydG5S0Tb 6hOKhhlSEWAMSM73CbQiNorDUnhntAZioFmyy6HXiKLdhlcZi0cZj7g3dskjNNi0 lS3iG+EWHbeNp7b1doGnCd3ndl1k2u9s -----END CERTIFICATE-----Generated at Tue Jul 22 12:11:20 2025 by rpki-client