$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: a4wkG+XQladS+jKd09+3HHmpiNNhsHleVVAGVuR7TpU= Subject key identifier: 48:DD:EE:56:2D:5A:76:61:55:96:DE:A7:60:1E:37:B9:75:34:6D:FE Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0710 Signing time: Sat 04 Apr 2026 21:42:39 +0000 Manifest this update: Sat 04 Apr 2026 21:42:38 +0000 Manifest next update: Sat 11 Apr 2026 21:42:38 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: nXhR24Guse31kDGKh/JXbt7t3gHcjOKKt20mL9ASvHo=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Apr 4 21:42:38 2026 GMT Not After : Apr 11 21:42:38 2026 GMT Subject: CN=69d185cf-28ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:48:70:9c:41:f3:9b:45:c6:99:f5:83:c1:9d: 23:ff:ee:68:f7:15:ab:d7:50:6c:74:7f:35:40:7b: e8:01:fd:4b:a6:da:73:1f:3a:cd:a6:eb:9b:f1:45: 5e:37:11:fa:46:2e:a5:14:0b:6f:5f:cf:52:42:e6: ae:ef:1b:22:5f:ed:60:f5:9a:ee:c1:96:37:b9:57: 94:2a:19:5c:1b:dd:ca:04:61:16:fd:9e:16:ef:1e: aa:95:75:b1:4c:b2:5b:96:dd:e4:4b:da:5b:94:9a: c9:ef:1f:a7:e3:20:4a:16:5e:fa:c0:32:97:9d:d5: be:04:5f:28:e7:fe:f7:2e:58:f1:ce:a0:6f:55:b2: 6c:32:3c:3a:f4:22:f5:a9:37:f4:ba:fe:89:7f:a1: a6:58:c2:20:2e:ed:ff:64:84:20:fd:6a:f2:88:cb: be:d8:06:73:6c:72:a9:6b:66:f9:f3:4d:02:7e:fb: 07:b9:66:0d:68:32:63:16:59:62:aa:0c:e5:5a:b8: b5:c7:eb:c4:29:8b:4a:0a:d2:65:06:d3:dc:14:2e: e5:5c:0e:72:53:4e:17:37:19:16:72:76:19:e8:0a: ff:2e:42:28:e1:99:5e:a4:62:9d:c2:56:c1:59:91: ea:8b:a6:83:d9:ae:af:21:e5:65:5d:55:51:08:a6: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DD:EE:56:2D:5A:76:61:55:96:DE:A7:60:1E:37:B9:75:34:6D:FE X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:bd:12:e2:1a:9e:bc:ad:60:78:9d:69:41:89:07:e9:1a:89: 18:1a:29:8f:1b:8b:c8:50:14:64:6c:6c:57:cd:6d:0d:81:89: 51:64:e8:70:12:3d:a8:01:a2:3e:69:90:de:3d:bd:e1:60:4b: d6:cb:c1:7f:29:32:77:36:5c:30:7d:b0:7f:cb:fe:1b:7f:51: fc:f7:79:d0:4c:1d:38:7e:c3:89:5f:96:d5:9c:83:67:da:cc: f5:63:e9:be:b8:d1:4e:96:4b:1e:51:ae:aa:a9:44:89:9c:91: 6c:f7:2c:0a:66:6d:3d:6d:0f:a1:4d:44:6f:02:8a:ab:ef:9a: 6f:b6:9f:0b:ab:bb:6b:31:b4:c5:9f:4e:6b:3b:6e:3a:2c:a5: b0:36:ea:97:27:c6:99:a3:51:0b:47:be:51:19:14:6d:a9:66: f2:0c:d5:93:08:10:bb:24:0c:66:2f:39:9e:f7:ff:a3:32:f5: 05:c9:15:a4:54:6f:7f:63:34:11:1a:93:b8:ec:41:23:75:13: f4:a2:68:02:65:99:08:12:2f:30:19:7a:9b:f1:a4:0c:6f:7f: f8:92:92:d9:3f:a7:19:58:15:cb:03:52:7c:c0:be:80:b4:9c: 7a:b4:56:f2:53:cb:70:8c:7a:b2:07:67:26:6e:76:55:ef:89: 7d:35:dd:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwNDA0MjE0MjM4WhcNMjYwNDExMjE0MjM4WjAYMRYwFAYD VQQDEw02OWQxODVjZi0yOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUhwnEHzm0XGmfWDwZ0j/+5o9xWr11BsdH81QHvoAf1LptpzHzrNpuub8UVe NxH6Ri6lFAtvX89SQuau7xsiX+1g9ZruwZY3uVeUKhlcG93KBGEW/Z4W7x6qlXWx TLJblt3kS9pblJrJ7x+n4yBKFl76wDKXndW+BF8o5/73LljxzqBvVbJsMjw69CL1 qTf0uv6Jf6GmWMIgLu3/ZIQg/WryiMu+2AZzbHKpa2b5800CfvsHuWYNaDJjFlli qgzlWri1x+vEKYtKCtJlBtPcFC7lXA5yU04XNxkWcnYZ6Ar/LkIo4ZlepGKdwlbB WZHqi6aD2a6vIeVlXVVRCKZCUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEjd7lYt WnZhVZbep2AeN7l1NG3+MB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK70S4hqevK1geJ1pQYkH6RqJGBopjxuLyFAUZGxsV81tDYGJUWTocBI9qAGi PmmQ3j294WBL1svBfykydzZcMH2wf8v+G39R/Pd50EwdOH7DiV+W1ZyDZ9rM9WPp vrjRTpZLHlGuqqlEiZyRbPcsCmZtPW0PoU1EbwKKq++ab7afC6u7azG0xZ9Oaztu OiylsDbqlyfGmaNRC0e+URkUbalm8gzVkwgQuyQMZi85nvf/ozL1BckVpFRvf2M0 ERqTuOxBI3UT9KJoAmWZCBIvMBl6m/GkDG9/+JKS2T+nGVgVywNSfMC+gLScerRW 8lPLcIx6sgdnJm52Ve+JfTXdPg== -----END CERTIFICATE-----Generated at Mon Apr 6 02:22:53 2026 by rpki-client