$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: C1IWG+Cg+KrEQfqIVR0+uxFT6xDUgKHJInO/xnmFBTQ= Subject key identifier: 30:45:BF:B8:C8:4D:B1:3D:E0:DF:8D:DC:5B:A3:66:D9:71:9B:92:43 Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: 75 Signing time: Thu 24 Apr 2025 19:24:51 +0000 Manifest this update: Thu 24 Apr 2025 19:24:51 +0000 Manifest next update: Thu 01 May 2025 19:24:51 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: Tneg61zXjQS2GwaOC1pk96eTrBdwKwJqco6TuuyG4MU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Apr 24 19:24:51 2025 GMT Not After : May 1 19:24:51 2025 GMT Subject: CN=680a9003-ec3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:22:7f:b8:f6:54:16:e4:6e:1b:33:f5:66:ca: 9c:cd:47:09:38:db:bc:dd:c3:1d:79:68:8a:ac:4f: 08:ee:81:85:e0:9b:7c:66:fc:71:e2:a8:11:25:e9: 87:bc:81:39:ae:e3:94:ff:38:15:32:11:6f:de:f4: 2a:92:42:4a:47:e9:71:58:3b:e9:35:f8:36:cd:a0: 27:b6:21:a9:14:e0:9a:f5:21:34:ad:80:f9:03:d7: 14:62:bd:59:e8:8a:69:0b:1d:90:70:28:80:15:c6: 98:04:8e:4f:ba:fe:5b:73:ea:f0:b6:f4:7a:7c:09: 2d:74:03:fd:58:2c:23:07:0b:46:69:35:80:fe:11: f5:a3:6f:bf:c5:80:29:bc:49:41:12:1d:c1:a7:eb: bc:af:e7:a4:9b:5e:64:fc:1e:f5:be:aa:b7:e6:87: 88:e1:e4:82:dc:35:5d:1f:50:68:16:77:df:46:9f: d0:d8:97:01:c7:9c:e8:34:ee:6b:dd:b0:6c:58:dc: 40:02:67:d9:60:6b:8e:53:5b:a2:45:f5:4b:b2:9b: c6:f8:fa:bd:66:82:e0:ec:dd:c8:d5:c2:1b:d3:18: 95:7f:82:ff:13:21:cd:bf:db:04:b2:a1:d7:5f:82: 29:c8:63:a6:a4:a2:d8:f8:a0:2f:7c:8d:42:c8:07: bc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:45:BF:B8:C8:4D:B1:3D:E0:DF:8D:DC:5B:A3:66:D9:71:9B:92:43 X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:93:b9:db:ea:e7:08:86:ea:ac:8f:06:13:21:a5:3f:78:f8: 71:47:2d:7e:e1:8e:5b:33:c9:df:f4:a1:0b:ba:d2:77:5d:98: 1e:92:b8:c7:a8:98:44:e9:a4:c2:6e:00:75:cf:be:7f:16:e4: 1f:c1:7a:51:b3:9a:07:7a:28:7e:f4:a1:e6:80:9b:b1:13:c3: 7e:90:e4:ae:9d:c5:84:eb:c1:23:9a:a2:70:68:d3:54:c5:b9: bb:c5:cb:59:2d:81:dd:58:10:2c:42:a9:70:9f:ef:5d:0b:c5: 66:ff:e4:2e:ad:58:6f:5c:ac:e5:5c:66:c8:34:84:3b:d7:34: 9e:f7:44:95:70:50:75:1f:c4:7d:b8:e1:73:14:ed:b1:78:df: 9a:0d:6f:0d:02:f9:e0:2d:a4:1a:e3:5a:0a:28:9a:da:56:d7: 32:3c:0f:16:85:81:dc:7e:f2:7d:0c:7a:ca:dc:66:89:9e:2e: f0:ff:1b:f4:d3:b3:db:01:66:62:e1:8d:ea:a5:4a:f0:56:fd: af:70:0d:36:67:8f:43:b4:6b:e3:ae:9a:61:8f:a7:63:e7:25: 2b:42:86:b0:95:6b:3d:37:16:be:98:d4:e1:e7:5b:ea:43:10: 54:29:03:32:4d:12:22:46:74:15:a0:aa:74:65:7f:27:ae:e4: 01:b1:b6:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENBMTExMC8GA1UEBRMoMkM3QjVEODQ3MjAwM0NGMzQzNkFDRkU1QjYxRTg5RUM4 QjFBRDhBQjAeFw0yNTA0MjQxOTI0NTFaFw0yNTA1MDExOTI0NTFaMBgxFjAUBgNV BAMTDTY4MGE5MDAzLWVjM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1In+49lQW5G4bM/VmypzNRwk427zdwx15aIqsTwjugYXgm3xm/HHiqBEl6Ye8 gTmu45T/OBUyEW/e9CqSQkpH6XFYO+k1+DbNoCe2IakU4Jr1ITStgPkD1xRivVno imkLHZBwKIAVxpgEjk+6/ltz6vC29Hp8CS10A/1YLCMHC0ZpNYD+EfWjb7/FgCm8 SUESHcGn67yv56SbXmT8HvW+qrfmh4jh5ILcNV0fUGgWd99Gn9DYlwHHnOg07mvd sGxY3EACZ9lga45TW6JF9Uuym8b4+r1mguDs3cjVwhvTGJV/gv8TIc2/2wSyoddf ginIY6akotj4oC98jULIB7wLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMEW/uMhN sT3g343cW6Nm2XGbkkMwHwYDVR0jBBgwFoAULHtdhHIAPPNDas/lth6J7Isa2Ksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0ExLzRFMTFGNEQ2NzE5 MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTEh0ZGhISUFQUE5EYXNfbHRoNko3SXNhMktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0ExLzRFMTFGNEQ2NzE5MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBO RGFzX2x0aDZKN0lzYTJLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAqTudvq5wiG6qyPBhMhpT94+HFHLX7hjlszyd/0oQu60nddmB6SuMeo mETppMJuAHXPvn8W5B/BelGzmgd6KH70oeaAm7ETw36Q5K6dxYTrwSOaonBo01TF ubvFy1ktgd1YECxCqXCf710LxWb/5C6tWG9crOVcZsg0hDvXNJ73RJVwUHUfxH24 4XMU7bF435oNbw0C+eAtpBrjWgoomtpW1zI8DxaFgdx+8n0MesrcZomeLvD/G/TT s9sBZmLhjeqlSvBW/a9wDTZnj0O0a+OummGPp2PnJStChrCVaz03Fr6Y1OHnW+pD EFQpAzJNEiJGdBWgqnRlfyeu5AGxtsY= -----END CERTIFICATE-----Generated at Sat Apr 26 16:59:38 2025 by rpki-client