$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: bt+jZYsYbyQJnFvfV7wgV/aC+giGJMhlWdYmsfh9F1o= Subject key identifier: A2:01:AF:D9:82:CF:E2:FB:F9:3A:00:4B:47:93:98:8E:3C:49:F4:D7 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0735 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0723 Signing time: Tue 12 May 2026 21:56:41 +0000 Manifest this update: Tue 12 May 2026 21:56:41 +0000 Manifest next update: Tue 19 May 2026 21:56:41 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: DhOwDS80X/65Oemrp5/eeMOVbDnsh0h27FjiGQGIelg=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 12 21:56:41 2026 GMT Not After : May 19 21:56:41 2026 GMT Subject: CN=6a03a219-3236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:47:e2:7e:f3:3e:a4:09:ad:cb:cf:36:e9:47: 54:36:4b:1c:42:95:09:a5:24:6b:cf:f3:93:a7:5f: 27:e5:0f:0c:d9:73:8d:d7:cb:53:5f:68:f4:44:48: 88:fe:2d:c8:54:f1:75:68:cc:c1:fd:72:55:34:31: 55:42:a4:a2:69:b5:1b:65:0b:ca:b3:46:f9:c8:3e: 61:c6:e4:2e:e3:c0:bd:06:3f:18:a7:35:ff:30:5d: e5:a4:a9:6d:01:0c:00:c2:c4:d8:3b:9e:05:5c:bf: 68:49:40:f9:87:c0:48:f7:ac:1b:e0:44:35:68:0b: e3:d2:ed:d2:4c:6b:ad:c0:4a:ca:bc:c0:38:54:e3: 42:b0:92:b8:a7:3f:dc:f6:f5:e5:10:a9:92:2f:52: dc:92:04:69:1b:10:06:26:b0:5c:d0:49:a4:c4:4b: 65:98:e3:ca:91:c7:eb:d1:eb:d3:b4:f1:46:7c:96: 08:e9:bb:e0:5d:32:8e:e7:08:84:2f:94:0d:1f:c1: a4:8d:3e:9a:fd:8e:05:fc:3c:23:c5:f8:b9:6e:d6: 4d:79:13:ca:23:b4:75:32:e1:be:e3:b4:ba:36:9c: c4:80:75:7f:1c:05:c8:5c:19:dc:db:09:46:2c:bd: f6:c4:02:d4:b4:3d:02:83:7c:de:22:65:cb:88:8e: 46:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:01:AF:D9:82:CF:E2:FB:F9:3A:00:4B:47:93:98:8E:3C:49:F4:D7 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:2d:fe:b1:ca:94:53:96:c2:5b:bd:55:e2:86:dc:ff:aa:40: 48:cc:33:5f:59:31:47:87:af:18:0d:c1:20:0f:5e:80:71:10: 8c:36:7b:c2:8b:35:a8:d1:ac:f2:37:dc:d9:40:8d:b9:a9:be: 72:b0:32:a3:87:b3:14:ab:19:f0:82:fb:40:d6:a4:bd:ef:ac: 7a:6e:a1:d0:2c:43:c1:49:d7:b2:ba:23:7c:c9:96:0b:d5:71: 0e:7a:c9:15:e0:90:5d:29:c4:44:ee:af:92:79:1f:83:94:ea: b0:c7:f0:4d:4d:b9:30:f0:ec:a5:77:07:b9:79:b5:16:fe:a3: 74:1d:64:fa:30:a3:f1:33:9d:42:4a:fa:28:0e:f0:5d:84:aa: c6:6c:8b:70:38:93:70:23:8f:69:55:f0:38:58:7b:fd:be:4d: 17:06:51:76:4f:14:9a:66:a9:bc:78:1c:47:95:62:fc:3a:53: 2c:78:35:70:18:dc:a5:3e:3c:aa:78:7e:ba:28:e5:af:cc:18: 69:b1:b8:9a:24:44:6e:28:4d:80:6b:96:4b:99:35:78:95:24: 7a:f1:04:f8:e4:3a:21:2b:6b:3b:b3:90:d2:ee:14:7d:83:61: e2:dc:c4:8c:91:4b:81:b7:98:d4:3b:38:d3:e0:ce:ee:28:8b: cb:b1:75:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwNTEyMjE1NjQxWhcNMjYwNTE5MjE1NjQxWjAYMRYwFAYD VQQDEw02YTAzYTIxOS0zMjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00fifvM+pAmty8826UdUNkscQpUJpSRrz/OTp18n5Q8M2XON18tTX2j0REiI /i3IVPF1aMzB/XJVNDFVQqSiabUbZQvKs0b5yD5hxuQu48C9Bj8YpzX/MF3lpKlt AQwAwsTYO54FXL9oSUD5h8BI96wb4EQ1aAvj0u3STGutwErKvMA4VONCsJK4pz/c 9vXlEKmSL1LckgRpGxAGJrBc0EmkxEtlmOPKkcfr0evTtPFGfJYI6bvgXTKO5wiE L5QNH8GkjT6a/Y4F/Dwjxfi5btZNeRPKI7R1MuG+47S6NpzEgHV/HAXIXBnc2wlG LL32xALUtD0Cg3zeImXLiI5GdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKIBr9mC z+L7+ToAS0eTmI48SfTXMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZy3+scqUU5bCW71V4obc/6pASMwzX1kxR4evGA3BIA9egHEQjDZ7wos1qNGs 8jfc2UCNuam+crAyo4ezFKsZ8IL7QNakve+sem6h0CxDwUnXsrojfMmWC9VxDnrJ FeCQXSnERO6vknkfg5TqsMfwTU25MPDspXcHuXm1Fv6jdB1k+jCj8TOdQkr6KA7w XYSqxmyLcDiTcCOPaVXwOFh7/b5NFwZRdk8UmmapvHgcR5Vi/DpTLHg1cBjcpT48 qnh+uijlr8wYabG4miREbihNgGuWS5k1eJUkevEE+OQ6IStrO7OQ0u4UfYNh4tzE jJFLgbeY1Ds40+DO7iiLy7F1hw== -----END CERTIFICATE-----Generated at Wed May 13 04:07:31 2026 by rpki-client