$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: 3OTKb/zpwE3GCAxqOnvdJaDGg69NMcSlQkEyMk4F3Es= Subject key identifier: 04:28:84:72:8A:CA:75:E2:8D:21:37:92:B6:DC:E4:52:00:79:45:66 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0666 Signing time: Wed 14 May 2025 22:26:43 +0000 Manifest this update: Wed 14 May 2025 22:26:42 +0000 Manifest next update: Wed 21 May 2025 22:26:42 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: CB24PTBN9HQVohWzhiylhyWHpgw50W2LiDvtMOxT5YE=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: 33QQuphQRYqieH70NrggQ8h+UAAXFdTttYTtHGKfVsc=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: 75t6akdtpfZ66rCaphdHE8Ci0vcMWvnaqPUEn6z8jRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 14 22:26:42 2025 GMT Not After : May 21 22:26:42 2025 GMT Subject: CN=682518a3-c584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:51:b1:d8:fc:39:6f:0a:15:7c:db:c6:2f:9e: 74:18:21:f3:de:da:ea:e9:8a:51:3e:ff:43:a1:1f: 2b:b7:37:e5:0f:73:8a:5a:36:ab:b4:51:3f:9d:b4: 14:44:63:81:fb:1d:cb:81:93:df:6f:54:72:be:17: 14:c2:dd:6a:3a:6e:c6:2a:95:32:fe:5c:94:01:92: ec:80:37:48:61:49:c4:0a:a5:b2:03:52:5d:ba:19: 52:a0:c2:b7:2b:6f:bf:a6:1c:b8:4a:08:fe:2c:0c: 2c:01:71:27:93:85:ec:70:8b:69:e6:14:c9:4e:3f: 5d:aa:34:ed:d6:c2:a5:72:b9:43:c4:03:82:10:94: 27:fb:00:63:e4:fb:f4:b1:d0:0b:1e:79:91:0e:ed: e7:64:75:9c:b7:2c:7e:b8:86:29:3f:4b:f8:ee:b7: 43:31:3e:11:da:99:85:59:8e:69:70:e2:3d:74:b4: 01:3f:87:b8:bd:55:6c:c2:e2:77:f5:2e:34:54:08: 16:91:fd:5a:1d:1b:c8:9e:ff:b4:d1:3d:c8:b0:90: ed:38:fe:ac:c1:cd:e6:c6:07:7f:49:8b:c6:a1:e0: c1:b5:fa:e2:d2:e9:1a:59:92:0e:78:2e:f1:33:b6: 27:c5:36:3b:f3:70:8f:23:64:dd:6a:65:ed:7b:ac: 29:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:28:84:72:8A:CA:75:E2:8D:21:37:92:B6:DC:E4:52:00:79:45:66 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:3d:e9:8d:4d:16:56:bb:f7:3a:7f:17:ef:fa:a7:d6:e7:f3: cc:1a:ba:6e:8a:3b:cd:1e:1e:c0:4f:e1:63:40:ed:2c:38:c7: 53:46:48:29:6a:db:63:c4:4c:6f:63:81:30:2a:8e:88:9b:07: 38:d5:93:f9:4d:b7:f7:4e:fd:a7:46:35:63:6c:8b:b8:5a:30: 09:ab:f4:76:a4:5c:03:fc:7e:97:30:54:be:64:eb:c0:93:33: 66:b6:4f:f1:8e:6e:4f:4e:71:6f:c3:93:27:26:86:c6:45:1d: 3b:9c:c5:56:70:7a:39:98:0d:99:8d:dd:fc:ef:10:29:40:ed: 2c:66:29:40:a8:1b:5c:08:83:42:81:8f:f0:7a:56:6f:0e:b9: 25:ba:eb:da:48:4c:e4:76:0f:7a:e5:fa:1f:d1:a9:eb:b6:72: a4:dc:f7:86:37:c1:fc:a8:74:03:23:ef:00:1f:b6:4f:18:5c: 8f:1a:d9:ba:b0:57:9e:30:b6:34:00:ae:6f:a5:e2:b9:ee:58: bf:a6:67:af:7e:46:c2:a0:10:de:f9:f7:86:18:d3:9c:86:38: 9e:3d:1b:60:35:13:4a:6a:52:90:e8:fe:02:5a:c8:10:e8:05: dd:d3:32:08:ea:3d:60:18:55:9a:eb:75:17:88:6b:7b:6d:52: 85:a8:f3:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwNTE0MjIyNjQyWhcNMjUwNTIxMjIyNjQyWjAYMRYwFAYD VQQDEw02ODI1MThhMy1jNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VGx2Pw5bwoVfNvGL550GCHz3trq6YpRPv9DoR8rtzflD3OKWjartFE/nbQU RGOB+x3LgZPfb1RyvhcUwt1qOm7GKpUy/lyUAZLsgDdIYUnECqWyA1JduhlSoMK3 K2+/phy4Sgj+LAwsAXEnk4XscItp5hTJTj9dqjTt1sKlcrlDxAOCEJQn+wBj5Pv0 sdALHnmRDu3nZHWctyx+uIYpP0v47rdDMT4R2pmFWY5pcOI9dLQBP4e4vVVswuJ3 9S40VAgWkf1aHRvInv+00T3IsJDtOP6swc3mxgd/SYvGoeDBtfri0ukaWZIOeC7x M7YnxTY783CPI2TdamXte6wphQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQohHKK ynXijSE3krbc5FIAeUVmMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0PemNTRZWu/c6fxfv+qfW5/PMGrpuijvNHh7AT+FjQO0sOMdTRkgp attjxExvY4EwKo6Imwc41ZP5Tbf3Tv2nRjVjbIu4WjAJq/R2pFwD/H6XMFS+ZOvA kzNmtk/xjm5PTnFvw5MnJobGRR07nMVWcHo5mA2Zjd387xApQO0sZilAqBtcCINC gY/welZvDrkluuvaSEzkdg965fof0anrtnKk3PeGN8H8qHQDI+8AH7ZPGFyPGtm6 sFeeMLY0AK5vpeK57li/pmevfkbCoBDe+feGGNOchjiePRtgNRNKalKQ6P4CWsgQ 6AXd0zII6j1gGFWa63UXiGt7bVKFqPMT -----END CERTIFICATE-----Generated at Fri May 16 21:01:03 2025 by rpki-client