$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: rXwf804B9SpJgvdcpLXMDtAMD1JiuE0x1SAbzrZiTZQ= Subject key identifier: 5A:98:2A:6D:19:FE:E6:BA:03:96:1C:03:EF:C9:42:95:BB:A2:0B:8A Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: 91 Signing time: Fri 20 Jun 2025 19:23:55 +0000 Manifest this update: Fri 20 Jun 2025 19:23:55 +0000 Manifest next update: Fri 27 Jun 2025 19:23:55 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: Kbe/4qNf7NsIVDisAKc9BuNMA2UY1v7tUr+j/Go2/vA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Jun 20 19:23:55 2025 GMT Not After : Jun 27 19:23:55 2025 GMT Subject: CN=6855b54b-6ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:c7:88:37:7f:a1:2f:d9:b8:da:ca:54:06: fb:be:af:f5:21:18:3e:2f:0d:27:9b:75:e7:db:2b: b7:c0:06:cb:23:43:d1:57:98:53:23:53:99:ca:6f: 9f:06:05:67:b1:c4:0c:b6:33:5a:41:bb:22:eb:51: da:12:9a:bc:8f:ed:fe:ff:e9:1f:68:a4:4c:13:e1: 24:e2:d2:31:cf:a0:7d:28:40:26:92:4a:87:04:07: de:8e:10:83:eb:b6:ef:5a:f9:95:dd:3a:67:48:50: 48:42:7c:94:c8:05:92:36:bf:98:01:f7:30:1b:68: 90:11:d3:32:99:0a:b0:f3:8a:3f:de:8d:f4:51:8a: 01:74:45:5a:1f:ed:20:4d:cb:21:a1:6d:e2:ce:81: 48:e0:55:f1:15:ab:02:e9:48:49:15:30:83:4f:e1: ee:c9:a2:94:27:de:50:c6:41:25:16:71:44:9a:b2: 69:b1:53:a8:0e:78:ff:ba:e0:37:4f:40:e8:ea:da: 7f:87:63:d5:20:63:41:6c:63:9d:c8:11:ba:4b:85: bf:4e:71:26:99:b6:16:b9:62:38:1b:32:f1:46:e6: aa:3e:e6:41:1a:11:71:73:fb:88:4d:b6:b9:6d:bc: bd:2e:10:de:e5:09:a5:4a:50:3f:7e:92:ec:84:aa: 0f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:98:2A:6D:19:FE:E6:BA:03:96:1C:03:EF:C9:42:95:BB:A2:0B:8A X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:3f:22:df:11:30:d0:0e:0c:f0:e5:81:0a:25:a0:25:6e:32: a9:be:33:4a:cc:83:65:5b:8c:c9:3b:9b:75:b6:d1:09:d5:ca: b6:d1:2e:17:95:24:b9:10:90:b5:02:6a:e4:c7:0f:e6:45:6a: ae:b0:79:70:22:3b:04:de:cc:a8:91:f2:88:ef:59:87:c4:07: 5c:65:98:8b:1c:6d:e0:97:09:eb:97:b3:a8:07:d1:7b:1a:7d: 39:a6:61:09:ec:8a:5a:16:3b:45:a4:c3:e9:a3:01:46:16:33: 19:30:df:b0:56:44:24:91:fd:c1:5f:48:0a:b9:96:f1:c6:4f: 17:ef:0d:02:05:9a:70:08:8d:47:71:74:1f:6b:4b:4b:41:d3: 12:f5:04:0d:10:4c:de:5a:88:69:20:84:ea:90:75:7b:f4:60: 41:fe:2b:87:ca:52:a4:c3:1e:05:d0:38:87:85:9b:cb:7d:d9: 01:2c:59:9d:cf:e6:2e:28:0b:07:81:db:db:73:00:a0:d2:06: 69:8e:52:54:2b:4a:7c:77:5e:35:42:96:87:d0:54:42:ec:75: 1a:bc:b3:ef:8f:7f:c6:ca:f2:ba:e2:53:b0:23:b8:4c:88:82: dd:2a:15:4d:df:a7:8e:03:b0:54:27:65:e5:98:28:88:b7:f0: 91:1e:95:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKDJDN0I1RDg0NzIwMDNDRjM0MzZBQ0ZFNUI2MUU4OUVD OEIxQUQ4QUIwHhcNMjUwNjIwMTkyMzU1WhcNMjUwNjI3MTkyMzU1WjAYMRYwFAYD VQQDEw02ODU1YjU0Yi02YWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyvHiDd/oS/ZuNrKVAb7vq/1IRg+Lw0nm3Xn2yu3wAbLI0PRV5hTI1OZym+f BgVnscQMtjNaQbsi61HaEpq8j+3+/+kfaKRME+Ek4tIxz6B9KEAmkkqHBAfejhCD 67bvWvmV3TpnSFBIQnyUyAWSNr+YAfcwG2iQEdMymQqw84o/3o30UYoBdEVaH+0g TcshoW3izoFI4FXxFasC6UhJFTCDT+HuyaKUJ95QxkElFnFEmrJpsVOoDnj/uuA3 T0Do6tp/h2PVIGNBbGOdyBG6S4W/TnEmmbYWuWI4GzLxRuaqPuZBGhFxc/uITba5 bby9LhDe5QmlSlA/fpLshKoPuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqYKm0Z /ua6A5YcA+/JQpW7oguKMB8GA1UdIwQYMBaAFCx7XYRyADzzQ2rP5bYeieyLGtir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS80RTExRjRENjcx OTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQTkRhc19sdGg2SjdJc2Ey S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS80RTExRjRENjcxOTAxMUVGODNDNEJGN0FDNEY5QUUwMi9MSHRkaEhJQVBQ TkRhc19sdGg2SjdJc2EyS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcPyLfETDQDgzw5YEKJaAlbjKpvjNKzINlW4zJO5t1ttEJ1cq20S4X lSS5EJC1Amrkxw/mRWqusHlwIjsE3syokfKI71mHxAdcZZiLHG3glwnrl7OoB9F7 Gn05pmEJ7IpaFjtFpMPpowFGFjMZMN+wVkQkkf3BX0gKuZbxxk8X7w0CBZpwCI1H cXQfa0tLQdMS9QQNEEzeWohpIITqkHV79GBB/iuHylKkwx4F0DiHhZvLfdkBLFmd z+YuKAsHgdvbcwCg0gZpjlJUK0p8d141QpaH0FRC7HUavLPvj3/GyvK64lOwI7hM iILdKhVN36eOA7BUJ2XlmCiIt/CRHpXV -----END CERTIFICATE-----Generated at Sat Jun 21 10:57:21 2025 by rpki-client