$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: Obc/uWTEic+dbECEh4xstK4Z2TkpmD4SO7H18zphH+A= Subject key identifier: 4E:7B:77:70:BA:12:01:53:AE:24:08:FF:93:08:AC:77:53:D4:97:6F Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 069A Signing time: Fri 22 Aug 2025 22:23:58 +0000 Manifest this update: Fri 22 Aug 2025 22:23:58 +0000 Manifest next update: Fri 29 Aug 2025 22:23:58 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: bRxNt1VP9qq++9mJZPSm8sie3U6GagHGifS+ByS7o4c=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Aug 22 22:23:58 2025 GMT Not After : Aug 29 22:23:58 2025 GMT Subject: CN=68a8edfe-1712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3c:3d:66:b8:30:06:a1:4c:be:0c:d1:2f:44: 01:b8:a0:07:ee:b6:5d:fb:65:51:01:2d:87:f5:48: 45:31:6f:34:68:29:fd:f2:87:e4:ff:62:bb:d2:5e: 3f:cf:47:f2:12:da:03:c1:fd:b9:e6:c2:b6:d8:3e: 28:da:5c:6e:42:94:3f:57:50:b5:10:9b:70:03:48: cf:4a:23:0f:2a:0d:f6:f1:2d:7c:e8:58:cf:20:99: 34:7b:e6:93:29:5f:dd:36:cd:22:da:fe:66:5c:4c: da:23:9e:2a:65:89:f6:2f:17:e6:fc:11:e1:af:91: a8:03:82:97:1f:4d:14:91:a2:f8:49:0e:27:6c:34: ac:5b:77:cc:02:1d:67:43:92:ca:a9:37:c0:49:03: f8:ce:d6:94:ec:15:53:b4:4e:5b:3b:dc:a8:6d:0e: 42:47:20:4d:b0:cc:14:14:69:93:16:d4:2c:e6:5d: 94:e2:5d:c7:01:4e:43:a1:ec:7d:c6:3d:f9:21:10: 6b:d7:3a:2e:3a:ca:33:56:41:ac:9b:30:06:f9:88: 99:ff:f3:0c:39:e1:d6:68:87:df:79:53:e1:c6:b1: 29:9e:84:df:8e:68:57:2b:e4:01:69:e9:59:fe:13: ea:9d:86:a3:49:4a:9e:72:c5:22:42:86:bc:9a:39: 65:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7B:77:70:BA:12:01:53:AE:24:08:FF:93:08:AC:77:53:D4:97:6F X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c1:e0:12:b9:3c:a8:0b:ef:7e:e6:de:1c:ec:6c:4d:c8:06: ba:01:73:ef:49:85:4b:b8:37:99:6b:2c:4d:27:1d:a2:0b:53: d9:37:fc:00:bb:2b:3a:32:81:5d:0b:cd:20:b9:75:78:de:61: 40:4d:98:57:a1:ca:f2:87:ac:80:01:71:08:f1:e1:42:d3:20: 53:4b:02:94:cd:2b:e5:55:d2:ed:0a:d1:d9:84:5d:fd:b8:11: 5c:3e:38:61:7f:36:94:88:b3:1d:70:fd:fc:1b:3b:5e:b4:f5: 77:d5:aa:94:38:57:29:c2:08:aa:ca:51:da:77:ab:8b:ec:98: 73:35:07:1f:36:98:e0:7f:5e:c2:2d:29:ba:4b:38:ca:ef:42: 39:0e:de:6b:71:e8:b9:a0:9e:aa:ac:f0:e7:05:0d:ee:45:a1: 03:ac:fe:e1:f4:8e:8a:70:8f:15:f0:a8:91:a9:29:94:54:00: 12:8f:dc:d2:5d:20:28:0e:8e:c6:dc:8a:2d:e4:af:b1:b1:6a: ff:ad:b2:64:b8:c7:3c:d8:72:9e:bf:75:50:16:4f:32:40:ca: c1:f1:47:d5:3b:bd:f2:7b:6e:34:7d:2d:77:26:3d:e1:7f:84: 34:87:53:d3:dd:64:38:bc:57:4e:1b:da:2e:0e:83:26:b3:82: d9:c2:43:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwODIyMjIyMzU4WhcNMjUwODI5MjIyMzU4WjAYMRYwFAYD VQQDEw02OGE4ZWRmZS0xNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzw9ZrgwBqFMvgzRL0QBuKAH7rZd+2VRAS2H9UhFMW80aCn98ofk/2K70l4/ z0fyEtoDwf255sK22D4o2lxuQpQ/V1C1EJtwA0jPSiMPKg328S186FjPIJk0e+aT KV/dNs0i2v5mXEzaI54qZYn2Lxfm/BHhr5GoA4KXH00UkaL4SQ4nbDSsW3fMAh1n Q5LKqTfASQP4ztaU7BVTtE5bO9yobQ5CRyBNsMwUFGmTFtQs5l2U4l3HAU5Doex9 xj35IRBr1zouOsozVkGsmzAG+YiZ//MMOeHWaIffeVPhxrEpnoTfjmhXK+QBaelZ /hPqnYajSUqecsUiQoa8mjlldwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE57d3C6 EgFTriQI/5MIrHdT1JdvMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrweASuTyoC+9+5t4c7GxNyAa6AXPvSYVLuDeZayxNJx2iC1PZN/wA uys6MoFdC80guXV43mFATZhXocryh6yAAXEI8eFC0yBTSwKUzSvlVdLtCtHZhF39 uBFcPjhhfzaUiLMdcP38GztetPV31aqUOFcpwgiqylHad6uL7JhzNQcfNpjgf17C LSm6SzjK70I5Dt5rcei5oJ6qrPDnBQ3uRaEDrP7h9I6KcI8V8KiRqSmUVAASj9zS XSAoDo7G3Iot5K+xsWr/rbJkuMc82HKev3VQFk8yQMrB8UfVO73ye240fS13Jj3h f4Q0h1PT3WQ4vFdOG9ouDoMms4LZwkMm -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:48 2025 by rpki-client