$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: AxMUQlt/49Dt/b+xMuufgA7m/dcUhd7RuyOZJwUT5H8= Subject key identifier: 70:94:2F:FB:C5:58:46:15:1B:4F:BC:77:AC:60:93:4E:C5:6D:F5:6D Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0680 Signing time: Wed 02 Jul 2025 23:02:31 +0000 Manifest this update: Wed 02 Jul 2025 23:02:30 +0000 Manifest next update: Wed 09 Jul 2025 23:02:30 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: XC9pMSAz8JnaCWVrJIPWJGnYdjgzeQThyDdez1p4R0Y=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Jul 2 23:02:30 2025 GMT Not After : Jul 9 23:02:30 2025 GMT Subject: CN=6865ba86-8f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f8:c4:05:6b:44:fa:eb:18:f5:2d:0a:db:88: ae:24:38:85:d4:ff:13:78:52:e3:96:44:ec:c3:56: 44:08:3f:e6:3d:1e:2c:00:1c:7f:b2:14:30:55:47: c8:15:02:55:42:70:28:7d:79:59:67:d1:0f:42:c8: 9f:24:73:af:fa:0e:dc:64:d2:33:47:6d:30:0b:ce: ca:91:5b:ad:b8:79:bf:4f:58:0a:1c:60:04:a5:01: e4:47:e1:db:20:24:cb:01:87:5f:c8:ae:5e:6c:6f: 13:9b:73:da:e1:dd:4b:96:0a:ae:0f:4d:f7:67:a5: bd:da:0f:f1:94:c4:9a:fe:e3:61:57:64:48:40:e7: 30:74:a2:e6:bc:f1:2f:ca:e3:c4:10:0a:01:09:7d: b9:2a:8b:a1:ed:36:c7:d5:e5:7e:b0:0b:c7:08:1f: 29:5c:b0:b7:07:48:9c:79:2d:5d:d6:11:50:33:6e: 8a:f5:df:76:2a:14:05:46:16:d7:f4:a6:89:14:6a: 3c:ca:da:83:be:e4:ff:60:3e:78:12:14:cc:3d:16: c0:7e:9b:38:69:11:7f:c5:dd:57:1b:4a:2e:ff:d2: f2:32:7d:71:c0:72:7a:15:42:dd:7a:96:9b:ac:9b: 98:69:ea:4f:b0:d5:fd:bc:75:a3:83:e2:3e:fa:c9: c0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:94:2F:FB:C5:58:46:15:1B:4F:BC:77:AC:60:93:4E:C5:6D:F5:6D X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bc:50:e1:4f:10:37:2e:2b:24:27:18:84:33:ac:88:4c:70: 6e:23:20:6f:06:b5:36:fb:4c:0d:9d:53:ed:7a:40:88:95:cf: f0:8d:ff:22:41:63:6d:5a:74:af:fa:7d:6f:73:d5:c8:4e:d0: f7:37:11:9e:06:49:af:d1:13:9b:c4:7a:bb:b9:26:e8:6e:e2: 55:c7:44:de:f6:5d:0a:6d:de:61:51:bb:5c:cd:d2:38:d4:c3: ef:32:2f:ee:69:34:13:a0:6e:c1:8e:67:20:99:c2:3c:1d:6d: 96:19:19:0b:e5:c9:2d:ab:5d:bf:d5:05:8f:9a:d1:75:16:11: 2f:27:f2:c6:cb:4a:97:0d:c1:39:d2:50:52:6d:57:4a:00:de: 0b:30:7e:70:b1:38:d2:b6:c7:c9:d9:27:1f:71:e7:48:e4:80: 4e:7e:3f:cb:e0:95:84:9b:de:c7:d1:04:12:5b:a5:fc:66:6a: e8:33:9b:7d:7b:63:4a:f4:34:55:8a:c1:37:2d:06:4f:21:c9: 70:65:78:3c:96:79:fa:96:27:83:36:46:1b:d8:5d:f9:7a:3b: 42:75:38:00:37:f0:44:e3:af:5d:b9:a7:79:98:cf:42:df:1d: 95:0e:26:33:1d:64:17:fb:9c:a7:51:2a:2c:a9:03:95:8b:e1: bf:31:65:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwNzAyMjMwMjMwWhcNMjUwNzA5MjMwMjMwWjAYMRYwFAYD VQQDEw02ODY1YmE4Ni04ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvjEBWtE+usY9S0K24iuJDiF1P8TeFLjlkTsw1ZECD/mPR4sABx/shQwVUfI FQJVQnAofXlZZ9EPQsifJHOv+g7cZNIzR20wC87KkVutuHm/T1gKHGAEpQHkR+Hb ICTLAYdfyK5ebG8Tm3Pa4d1LlgquD033Z6W92g/xlMSa/uNhV2RIQOcwdKLmvPEv yuPEEAoBCX25Kouh7TbH1eV+sAvHCB8pXLC3B0iceS1d1hFQM26K9d92KhQFRhbX 9KaJFGo8ytqDvuT/YD54EhTMPRbAfps4aRF/xd1XG0ou/9LyMn1xwHJ6FULdepab rJuYaepPsNX9vHWjg+I++snA3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCUL/vF WEYVG0+8d6xgk07FbfVtMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvvFDhTxA3LiskJxiEM6yITHBuIyBvBrU2+0wNnVPtekCIlc/wjf8i QWNtWnSv+n1vc9XITtD3NxGeBkmv0RObxHq7uSbobuJVx0Te9l0Kbd5hUbtczdI4 1MPvMi/uaTQToG7BjmcgmcI8HW2WGRkL5cktq12/1QWPmtF1FhEvJ/LGy0qXDcE5 0lBSbVdKAN4LMH5wsTjStsfJ2ScfcedI5IBOfj/L4JWEm97H0QQSW6X8ZmroM5t9 e2NK9DRVisE3LQZPIclwZXg8lnn6lieDNkYb2F35ejtCdTgAN/BE469duad5mM9C 3x2VDiYzHWQX+5ynUSosqQOVi+G/MWUr -----END CERTIFICATE-----Generated at Thu Jul 3 17:38:41 2025 by rpki-client