$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: Xbu64y/xW+c4HsYrCVj6e5+JuhRD8ZgaodgYaDVB9jk= Subject key identifier: 22:1E:7E:A2:F7:6F:E2:B3:93:D7:C4:E8:D2:11:AF:50:5B:EA:DE:AC Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06B7 Signing time: Sat 18 Oct 2025 23:37:19 +0000 Manifest this update: Sat 18 Oct 2025 23:37:18 +0000 Manifest next update: Sat 25 Oct 2025 23:37:18 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: lI7XzdOOHillm6kUm2LM/I+b8rTyKiN+xdu7jtSVKqM=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Oct 18 23:37:18 2025 GMT Not After : Oct 25 23:37:18 2025 GMT Subject: CN=68f424ae-610a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:dc:9e:b4:24:06:a0:50:c0:e3:06:d5:ab: e9:f7:3d:0a:07:35:56:97:e9:8b:25:35:21:c5:87: 40:97:8a:36:2a:97:32:e6:7a:2d:b1:71:1f:00:6a: 18:ae:80:3d:f7:a7:76:7f:b0:47:57:99:9b:19:7b: f9:be:27:c4:f9:1c:12:d0:37:67:79:f0:80:a7:3b: 0a:f1:35:43:1c:f1:c7:bf:c2:ac:b9:74:7e:2a:d0: fa:d3:56:22:a9:07:57:7b:fe:c3:95:8d:eb:63:f8: 06:04:a2:dc:7d:8b:a5:ae:c3:c2:c2:f5:59:25:e4: 83:7f:81:b9:fd:d2:70:b4:a9:59:c5:50:85:cc:39: cf:c8:64:cd:34:ff:39:1a:b5:c2:08:45:f3:60:90: 9c:4b:a4:06:8d:08:61:10:05:1c:9d:c4:2f:81:d4: 2e:ff:63:f5:86:b5:de:e4:23:69:09:34:6b:63:f6: d8:bf:30:08:b9:3d:16:70:db:b2:25:b1:13:2c:16: d7:4b:3c:6f:7f:b7:c3:13:5a:af:4b:50:00:6a:c3: 0d:d7:24:d2:6f:3c:a1:84:0b:60:f6:8c:bd:05:e3: 9b:7c:fd:ee:c4:9d:2d:7c:d3:01:86:20:3b:c6:94: d5:ab:ff:ea:86:95:93:05:68:fe:b8:63:58:b9:60: 1e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1E:7E:A2:F7:6F:E2:B3:93:D7:C4:E8:D2:11:AF:50:5B:EA:DE:AC X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:52:20:ef:91:00:2b:28:97:7d:59:bd:4a:30:e4:00:22:b8: ac:3a:d2:0c:c5:ad:9d:02:a6:5e:a0:6b:a0:cc:ef:f9:b4:9c: e3:61:a8:02:46:4f:cb:62:7d:03:c8:41:67:84:9b:ba:19:61: 58:88:de:18:99:c4:22:97:0e:51:2a:97:7b:b0:65:68:ff:3b: 01:93:5b:fb:98:ac:18:71:f8:db:6b:52:9c:1c:fc:19:1a:15: 4d:43:db:74:18:a2:15:09:cd:44:7f:41:0e:4a:20:ba:70:1e: 1c:44:0e:6a:9d:74:91:f1:38:f3:49:55:e4:bd:af:1a:39:f0: 7e:1e:6b:c5:9c:47:54:96:35:c7:d6:1d:f4:84:69:d0:2a:62: 59:2d:17:34:f2:10:e1:0a:0a:0c:2c:16:5d:92:bc:8d:6d:df: 28:86:da:65:82:f7:d6:3b:8f:25:6d:01:b2:04:fa:3c:f3:3c: b6:a4:79:09:68:54:de:4d:5a:8b:25:6b:e2:79:a1:95:bf:16: fb:75:85:64:59:a8:09:be:e5:57:b3:40:c9:a3:53:35:8b:e7: 8a:1a:cd:8e:33:da:1d:de:c0:bc:b8:28:34:6d:3a:88:ee:ab: a6:c8:fc:54:ea:73:5c:53:3f:ec:19:1a:56:6c:5b:95:2d:0a: 83:e8:cc:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUxMDE4MjMzNzE4WhcNMjUxMDI1MjMzNzE4WjAYMRYwFAYD VQQDEw02OGY0MjRhZS02MTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3zcnrQkBqBQwOMG1avp9z0KBzVWl+mLJTUhxYdAl4o2Kpcy5notsXEfAGoY roA996d2f7BHV5mbGXv5vifE+RwS0DdnefCApzsK8TVDHPHHv8KsuXR+KtD601Yi qQdXe/7DlY3rY/gGBKLcfYulrsPCwvVZJeSDf4G5/dJwtKlZxVCFzDnPyGTNNP85 GrXCCEXzYJCcS6QGjQhhEAUcncQvgdQu/2P1hrXe5CNpCTRrY/bYvzAIuT0WcNuy JbETLBbXSzxvf7fDE1qvS1AAasMN1yTSbzyhhAtg9oy9BeObfP3uxJ0tfNMBhiA7 xpTVq//qhpWTBWj+uGNYuWAeYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIefqL3 b+Kzk9fE6NIRr1Bb6t6sMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyUiDvkQArKJd9Wb1KMOQAIrisOtIMxa2dAqZeoGugzO/5tJzjYagC Rk/LYn0DyEFnhJu6GWFYiN4YmcQilw5RKpd7sGVo/zsBk1v7mKwYcfjba1KcHPwZ GhVNQ9t0GKIVCc1Ef0EOSiC6cB4cRA5qnXSR8TjzSVXkva8aOfB+HmvFnEdUljXH 1h30hGnQKmJZLRc08hDhCgoMLBZdkryNbd8ohtplgvfWO48lbQGyBPo88zy2pHkJ aFTeTVqLJWvieaGVvxb7dYVkWagJvuVXs0DJo1M1i+eKGs2OM9od3sC8uCg0bTqI 7qumyPxU6nNcUz/sGRpWbFuVLQqD6Mzm -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:33 2025 by rpki-client