Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft
File:                     LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json)
Hash identifier:          hO3NEfQaIGHsV0Kir5KIZ/VcWmnmHh6hksrlDfgHdQo=
Subject key identifier:   0E:63:E1:FC:31:3F:FD:DA:A6:6D:0D:DF:49:0B:A0:CC:68:BD:BD:E9
Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9
Certificate issuer:       /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9
Certificate serial:       0753
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft
Manifest number:          0741
Signing time:             Fri 10 Jul 2026 22:11:55 +0000
Manifest this update:     Fri 10 Jul 2026 22:11:55 +0000
Manifest next update:     Fri 17 Jul 2026 22:11:55 +0000
Files and hashes:         1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: 7VsX6djbeKrarwFMhK9UjjX6V193atH6+DDHuGYuYdQ=)
                          2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=)
                          3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl
                          rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Fri 17 Jul 2026 22:11:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1875 (0x753)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9
        Validity
            Not Before: Jul 10 22:11:55 2026 GMT
            Not After : Jul 17 22:11:55 2026 GMT
        Subject: CN=6a516e2b-566d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:d0:bd:3f:3e:07:ce:90:f5:9a:04:56:1d:6b:
                    d9:61:42:89:69:b9:ce:b5:e8:bd:33:d6:f2:72:75:
                    84:ab:a3:e2:cd:a3:b9:de:e7:06:e4:2f:d0:92:11:
                    f1:58:20:07:32:6b:d8:b6:75:ab:66:e3:51:f8:6e:
                    d4:e8:37:05:a4:79:61:43:cd:35:98:a5:7e:4f:bc:
                    40:dd:80:c8:05:c6:b6:40:c3:a8:47:0c:12:b5:20:
                    aa:86:63:38:e2:4c:ae:40:42:9a:88:08:d9:5d:5c:
                    e2:70:98:f4:9b:13:c6:27:f5:0d:63:7a:5f:b8:e9:
                    50:44:33:61:65:39:9d:f4:34:5c:6e:74:78:80:90:
                    c5:d5:44:b6:82:24:4c:03:c9:4e:8c:84:e7:eb:08:
                    a2:5a:3a:ed:28:37:6d:48:94:c2:1c:c0:91:36:c8:
                    9e:bb:f7:9f:f2:d3:90:b3:98:c9:e6:83:01:d1:c3:
                    74:f5:8d:5c:a0:d8:bb:da:c6:e6:5e:8e:3c:85:b3:
                    ac:d9:a3:cd:aa:b9:5a:ea:6b:74:82:18:5b:4e:fe:
                    4a:19:0b:e8:33:57:97:2d:35:b4:40:e4:02:a8:57:
                    af:25:36:a0:e5:76:e4:dc:07:df:63:68:c0:af:05:
                    97:e8:b5:03:bc:9d:1d:c2:78:ec:ba:87:22:67:0f:
                    26:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:63:E1:FC:31:3F:FD:DA:A6:6D:0D:DF:49:0B:A0:CC:68:BD:BD:E9
            X509v3 Authority Key Identifier:
                keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:a7:50:38:df:e9:03:0b:ab:a4:59:ec:c8:cb:70:6a:a9:d7:
         06:3b:12:db:84:b1:fc:8e:95:cc:86:3f:70:14:47:21:e4:7a:
         af:4f:09:aa:d0:d9:b2:20:3b:4e:22:70:6d:77:76:19:f5:9c:
         16:15:3f:48:0c:24:40:74:d3:52:b8:49:5d:33:0e:7e:4c:81:
         68:f5:15:4c:14:43:bd:83:a6:10:12:c8:55:b7:dd:05:54:60:
         ed:b1:da:41:38:45:97:30:b2:d9:b1:a6:3c:9b:1c:c2:5d:3f:
         5a:1f:22:f8:0e:ef:cc:ac:88:8b:88:26:ed:28:47:4d:06:c1:
         02:c8:4c:d3:43:77:25:50:da:29:f6:19:f5:53:6b:43:7f:ab:
         6b:2e:49:48:8d:36:9e:74:09:59:bb:60:28:33:f9:ab:a2:38:
         b6:4c:be:28:bf:39:b9:4b:ec:ab:24:58:f2:bd:7d:f8:f8:53:
         4b:95:1b:e9:d4:84:d3:da:0b:e1:2b:27:b9:23:6e:12:80:23:
         2f:df:e9:d5:3b:c7:72:5e:20:5a:5a:5a:c1:fc:7b:d4:e0:83:
         17:c0:17:0e:e7:90:da:bf:4d:2d:69:d9:5d:2d:b5:97:e8:34:
         c3:50:90:14:3f:df:4e:f4:73:b7:bb:9b:2c:50:04:7b:c4:9a:
         9d:51:7a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 03:29:41 2026 by rpki-client