$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: lUxO0eX5Ggo9DH9fMKyPQ1y6+XJQINhvAUKRFFnoEU8= Subject key identifier: A2:D5:01:AB:BE:21:3D:6A:EA:C0:E6:30:C7:9D:56:7C:75:0A:19:3E Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 071C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 070A Signing time: Tue 24 Mar 2026 21:39:24 +0000 Manifest this update: Tue 24 Mar 2026 21:39:23 +0000 Manifest next update: Tue 31 Mar 2026 21:39:23 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: romfLPo/bA6s2bTorOVuEc4u4fVr/u1N4+UMIQY7vZs=) 2: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) 3: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1820 (0x71c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Mar 24 21:39:23 2026 GMT Not After : Mar 31 21:39:23 2026 GMT Subject: CN=69c3048b-4602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6d:4e:3a:47:cb:f7:34:d1:41:a5:68:e5:83: 1c:c8:a5:07:79:34:af:d9:0f:52:b8:a1:f2:eb:b8: 16:ec:be:fd:1e:d8:c0:4a:b8:ea:ef:22:71:7a:b6: 04:da:66:e7:1a:5b:52:d2:46:bd:b6:c0:15:c6:63: 96:d6:18:b8:7b:ed:95:49:91:5d:b8:45:69:40:ea: 4c:58:df:e4:a5:7d:40:d4:2c:f1:c7:c1:4d:75:af: e3:7e:b2:f4:61:a8:47:33:5c:4f:c5:72:58:fb:81: a0:05:2d:ec:a8:47:f4:2f:cb:1f:33:2f:b8:a5:53: e3:ad:28:5a:f7:7c:eb:21:c8:19:66:2e:76:99:0c: bc:0a:bd:8a:87:97:9c:ea:b4:bd:cb:5f:dd:69:13: c9:4c:d3:80:3a:06:2f:92:3f:51:1b:d8:a4:bc:5b: fe:bb:91:f8:49:f6:d0:03:79:5d:e6:c4:e4:a5:7e: c7:87:f1:d3:b3:a2:d8:ce:80:06:5b:d3:92:a2:cf: 49:95:15:1c:62:94:2f:5b:bf:7e:69:ef:70:76:d6: 11:01:48:42:d4:29:2e:ab:87:08:1d:fd:fa:1c:67: 45:33:fa:57:8b:6b:56:73:5f:a6:95:3f:90:23:11: 6e:ec:12:22:ae:b9:ca:58:a6:0d:d6:35:6d:b9:2c: c5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D5:01:AB:BE:21:3D:6A:EA:C0:E6:30:C7:9D:56:7C:75:0A:19:3E X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:11:33:73:3c:21:ed:53:3d:f8:81:e6:58:d9:fb:02:9b:f1: ad:f0:8c:57:8d:59:54:24:46:fb:fb:4c:ff:d1:a2:9e:fa:07: 3c:82:e6:5c:0a:d9:95:76:58:fd:37:a0:34:48:87:88:8c:e0: 8c:46:e4:cf:b2:a8:73:00:ca:34:a9:0a:b5:2b:b6:a6:2f:dd: 03:63:c6:0b:cc:d1:13:42:4e:83:59:5e:95:c0:e0:1f:04:2e: e5:56:22:50:1a:dd:67:dd:14:7e:1a:ba:84:a5:e9:e1:ab:d7: 8e:e8:67:05:b4:9e:d3:a3:b4:f9:41:49:cf:2b:ec:2d:f9:25: 0b:67:24:af:bb:75:d4:24:5a:fb:07:b1:00:54:96:7f:af:40: b3:82:9e:0b:db:66:7a:6e:03:60:57:24:49:5e:92:b0:7b:bb: 19:2f:86:01:c6:06:3a:d5:fa:06:fc:1b:dd:64:a5:90:84:ca: 8b:26:69:fe:27:1f:de:c3:5d:52:1c:d8:17:f1:9a:3d:15:45: e2:8a:f6:b4:7f:b0:44:f4:d6:fd:a1:74:06:ce:0c:ba:f3:7f: 1d:c9:fe:ff:c6:81:81:05:78:92:5d:f7:8b:50:37:17:8b:e5: bf:19:fb:b8:a3:fc:22:a8:25:83:6e:f6:6e:49:be:5f:c2:fc: df:c5:93:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwMzI0MjEzOTIzWhcNMjYwMzMxMjEzOTIzWjAYMRYwFAYD VQQDEw02OWMzMDQ4Yi00NjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkW1OOkfL9zTRQaVo5YMcyKUHeTSv2Q9SuKHy67gW7L79HtjASrjq7yJxerYE 2mbnGltS0ka9tsAVxmOW1hi4e+2VSZFduEVpQOpMWN/kpX1A1Czxx8FNda/jfrL0 YahHM1xPxXJY+4GgBS3sqEf0L8sfMy+4pVPjrSha93zrIcgZZi52mQy8Cr2Kh5ec 6rS9y1/daRPJTNOAOgYvkj9RG9ikvFv+u5H4SfbQA3ld5sTkpX7Hh/HTs6LYzoAG W9OSos9JlRUcYpQvW79+ae9wdtYRAUhC1Ckuq4cIHf36HGdFM/pXi2tWc1+mlT+Q IxFu7BIirrnKWKYN1jVtuSzFmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKLVAau+ IT1q6sDmMMedVnx1Chk+MB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFREzczwh7VM9+IHmWNn7ApvxrfCMV41ZVCRG+/tM/9GinvoHPILmXArZlXZY /TegNEiHiIzgjEbkz7KocwDKNKkKtSu2pi/dA2PGC8zRE0JOg1lelcDgHwQu5VYi UBrdZ90Ufhq6hKXp4avXjuhnBbSe06O0+UFJzyvsLfklC2ckr7t11CRa+wexAFSW f69As4KeC9tmem4DYFckSV6SsHu7GS+GAcYGOtX6Bvwb3WSlkITKiyZp/icf3sNd UhzYF/GaPRVF4or2tH+wRPTW/aF0Bs4MuvN/Hcn+/8aBgQV4kl33i1A3F4vlvxn7 uKP8Iqglg272bkm+X8L838WTew== -----END CERTIFICATE-----Generated at Thu Mar 26 19:14:59 2026 by rpki-client