$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: m+y/34sDaZYaiRgN/fjztvadAt5/Wp4BhdIdSEnfpM4= Subject key identifier: F2:70:11:F4:FB:6C:CD:21:9E:08:6A:4C:78:6E:B9:EE:31:93:8B:ED Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0679 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 066D Signing time: Fri 30 May 2025 22:34:50 +0000 Manifest this update: Fri 30 May 2025 22:34:49 +0000 Manifest next update: Fri 06 Jun 2025 22:34:49 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: I2/FCGcOZ1gHbw9fy9Gctd7DI1LeHOp1Qt6xf3iZywI=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: 33QQuphQRYqieH70NrggQ8h+UAAXFdTttYTtHGKfVsc=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: 75t6akdtpfZ66rCaphdHE8Ci0vcMWvnaqPUEn6z8jRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 30 22:34:49 2025 GMT Not After : Jun 6 22:34:49 2025 GMT Subject: CN=683a3289-4e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:87:4b:da:ff:cb:55:f7:b0:80:90:e8:35: e8:7c:ce:9c:4e:94:fe:b6:be:a6:f1:e3:c8:ef:ca: 52:03:ce:0e:93:2c:69:e0:87:dc:05:47:01:12:e6: 79:ed:27:f7:5d:26:1b:0d:68:d3:77:23:f4:b6:3b: df:fe:e1:df:75:a9:76:56:ba:7c:3a:0e:b1:0f:98: d6:d8:f2:13:a0:d1:84:42:68:4e:4e:59:7d:b0:45: e4:97:99:ce:53:fc:bc:80:f8:fb:d7:17:f3:ea:97: b5:11:a7:be:f6:8c:b1:9a:f5:35:83:8c:13:43:0e: 97:21:18:76:c7:d7:cd:b6:ea:de:8c:37:55:e2:36: 9a:0f:7b:95:23:8f:10:57:a7:5b:e3:78:d9:e9:f4: b7:76:ca:5a:03:b5:90:e4:02:46:cb:55:a1:2f:57: 61:e4:6b:1e:b2:80:5f:54:2b:ec:43:c3:99:6a:fd: f4:44:e9:13:71:a0:d2:8e:90:69:5f:d4:9b:20:8a: fa:41:ae:5a:16:66:7d:3c:ab:7e:d8:8f:b8:a7:ab: 46:a9:af:f7:f6:59:aa:13:39:04:0b:a3:f8:1a:33: b4:b7:2b:92:c1:fd:98:6e:22:ab:13:50:a5:3a:3f: a7:c6:f1:16:20:61:b3:f2:75:c1:47:ab:64:a6:fb: f5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:70:11:F4:FB:6C:CD:21:9E:08:6A:4C:78:6E:B9:EE:31:93:8B:ED X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:47:cf:23:86:78:2e:9f:98:c8:1d:0c:6f:e7:46:93:2f:d8: 54:bc:f7:e5:ed:20:26:57:81:d3:6f:f3:1b:5e:a2:03:c8:dc: b3:26:e5:e9:c2:01:2a:8a:3d:26:fc:38:7f:db:ec:14:6c:79: 72:a4:b4:3a:66:79:3e:7a:72:70:fb:ca:72:3f:e4:3b:d3:8a: 97:75:e2:41:3e:65:fd:6d:a7:43:3c:f7:3b:a7:ee:99:dc:93: 1f:ba:34:58:4e:0f:32:42:87:b2:55:b4:83:83:47:35:f6:16: 36:f2:a3:2f:6f:80:fc:6e:5d:00:1d:e1:70:e1:b5:f4:3d:f6: 85:63:b3:4d:28:7b:42:b8:b3:37:81:84:15:b5:c5:1a:cb:5f: 45:7b:fe:cb:d2:90:4e:66:69:d3:76:2d:9e:81:b6:01:14:5c: 68:45:67:b8:a3:f6:ab:65:17:78:0f:0f:1f:27:37:3a:04:dc: c6:6f:ad:57:0b:bb:3f:08:bb:85:76:8e:96:58:60:48:47:8b: b5:de:9f:6d:12:15:33:91:f4:b3:56:af:f6:a7:23:5f:77:04: 20:95:b2:87:c2:82:08:00:d7:bd:2f:05:cf:92:32:fc:9a:76: b6:25:d1:f1:b2:35:4d:9f:71:94:bd:26:3c:bb:a9:a6:b6:98: 5b:59:8e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwNTMwMjIzNDQ5WhcNMjUwNjA2MjIzNDQ5WjAYMRYwFAYD VQQDEw02ODNhMzI4OS00ZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1+HS9r/y1X3sICQ6DXofM6cTpT+tr6m8ePI78pSA84Okyxp4IfcBUcBEuZ5 7Sf3XSYbDWjTdyP0tjvf/uHfdal2Vrp8Og6xD5jW2PIToNGEQmhOTll9sEXkl5nO U/y8gPj71xfz6pe1Eae+9oyxmvU1g4wTQw6XIRh2x9fNturejDdV4jaaD3uVI48Q V6db43jZ6fS3dspaA7WQ5AJGy1WhL1dh5GsesoBfVCvsQ8OZav30ROkTcaDSjpBp X9SbIIr6Qa5aFmZ9PKt+2I+4p6tGqa/39lmqEzkEC6P4GjO0tyuSwf2YbiKrE1Cl Oj+nxvEWIGGz8nXBR6tkpvv1hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJwEfT7 bM0hnghqTHhuue4xk4vtMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsR88jhngun5jIHQxv50aTL9hUvPfl7SAmV4HTb/MbXqIDyNyzJuXp wgEqij0m/Dh/2+wUbHlypLQ6Znk+enJw+8pyP+Q704qXdeJBPmX9badDPPc7p+6Z 3JMfujRYTg8yQoeyVbSDg0c19hY28qMvb4D8bl0AHeFw4bX0PfaFY7NNKHtCuLM3 gYQVtcUay19Fe/7L0pBOZmnTdi2egbYBFFxoRWe4o/arZRd4Dw8fJzc6BNzGb61X C7s/CLuFdo6WWGBIR4u13p9tEhUzkfSzVq/2pyNfdwQglbKHwoIIANe9LwXPkjL8 mna2JdHxsjVNn3GUvSY8u6mmtphbWY6H -----END CERTIFICATE-----Generated at Sat May 31 17:47:21 2025 by rpki-client