
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft
File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json)
Hash identifier: HR0SlHtIbouv/YDDrrpAPv4lKYao3REaiBVnC1o7uK8=
Subject key identifier: 7E:DF:47:60:96:26:07:AE:F7:90:1F:4E:33:95:59:D4:CF:3E:D8:FC
Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB
Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB
Certificate serial: 015D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft
Manifest number: 015D
Signing time: Thu 16 Jul 2026 19:18:47 +0000
Manifest this update: Thu 16 Jul 2026 19:18:46 +0000
Manifest next update: Thu 23 Jul 2026 19:18:46 +0000
Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: TO3XJ+TV0a5dYRF5Nb0q7Cx9uYSkSWR6XTnbnM78fmk=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl
rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 19:18:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349 (0x15d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB
Validity
Not Before: Jul 16 19:18:46 2026 GMT
Not After : Jul 23 19:18:46 2026 GMT
Subject: CN=6a592e97-608c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:38:86:7f:69:cc:e2:a5:5c:62:9e:f4:76:f9:
25:70:3e:19:39:84:5c:9a:45:0a:73:c5:85:7a:a5:
ea:82:10:d8:c0:5c:4d:3c:4e:d5:ae:9e:88:65:db:
1b:4b:39:e3:48:fa:5d:6e:48:7a:3b:ff:29:f8:f2:
12:6a:9b:2d:4c:c3:27:71:9a:66:42:b1:1e:92:52:
c6:88:e9:2d:cb:fc:95:b0:20:1d:fa:33:99:72:93:
47:5b:c4:ff:48:fa:a3:69:bd:8f:68:73:5e:aa:1e:
77:b6:7d:72:69:a1:64:f0:8f:26:9a:f0:9a:2e:18:
9d:7b:72:c7:0f:5f:c3:69:76:4d:08:8a:aa:49:65:
23:ac:64:24:95:5c:b9:74:cd:0a:5c:7e:9e:8b:83:
cd:ff:95:d8:d7:4e:15:e9:41:09:ae:42:1b:bf:d8:
50:aa:35:b2:63:da:55:b5:e2:2c:f1:27:04:45:ff:
99:13:ba:df:76:50:6e:fe:ac:88:9d:e4:2d:50:c6:
34:37:4f:9e:88:fc:7a:b0:97:45:e0:50:1b:24:88:
56:d8:ee:4c:3b:0f:6f:b9:b5:e3:2f:7f:84:46:5c:
da:3b:6d:90:27:08:2c:e1:0d:be:86:81:6c:db:77:
6e:f5:e0:1b:f3:62:08:07:e8:c0:73:df:40:d2:97:
a8:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:DF:47:60:96:26:07:AE:F7:90:1F:4E:33:95:59:D4:CF:3E:D8:FC
X509v3 Authority Key Identifier:
keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
45:95:4d:8b:9c:dd:c9:18:40:b6:0d:51:18:de:ce:88:db:14:
1a:11:0a:97:c3:c3:b0:01:87:25:a9:8a:67:19:b7:9e:54:21:
51:e9:5b:10:69:d0:11:0e:20:88:79:09:a6:4d:70:ee:b4:24:
72:54:06:31:ac:19:ea:82:20:cd:d9:f7:73:53:17:7a:12:ba:
4f:c1:a0:59:f0:e3:fc:1f:3c:bb:2c:1e:b8:f3:aa:27:4b:9a:
b7:ec:f5:3c:b8:c6:da:30:54:42:d7:e4:35:44:fc:1d:6c:36:
65:4c:eb:05:5a:b8:1d:8e:cd:23:21:f0:6c:35:22:b2:55:9a:
4c:42:98:97:33:b5:20:58:f9:9b:c4:5f:87:53:20:ab:6e:bc:
01:c1:e6:ee:ca:45:06:7d:e2:a9:4d:42:51:53:9e:05:d8:92:
6a:7d:70:8b:0c:47:b1:3f:42:43:fa:80:b8:8e:1c:04:76:82:
a2:49:2e:da:e2:2a:80:ce:44:f0:8f:b2:46:08:df:4c:9a:b7:
2f:80:da:42:0e:8e:91:35:a1:ec:6f:a6:de:5d:76:b7:56:4a:
5f:2a:1e:97:a9:62:1c:61:95:79:cd:8d:06:3b:d6:55:28:c2:
1c:c5:3f:18:5a:98:1c:06:7d:45:b8:fd:4a:13:43:c8:91:9c:
32:bc:ea:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:29:58 2026 by rpki-client