$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: B5Hi3Fwmr3Rla3S/4jRu0pn5ynGjAG1TzQP+mjvV+lA= Subject key identifier: 4C:02:F6:11:26:2C:DE:FD:AB:56:95:F3:44:DC:18:76:24:32:2E:44 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0727 Signing time: Wed 20 May 2026 21:53:27 +0000 Manifest this update: Wed 20 May 2026 21:53:27 +0000 Manifest next update: Wed 27 May 2026 21:53:27 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: CC8y9l3rdUSOZz3xycCBswIdjf2K7/12tCzD9jbscIY=) 2: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) 3: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 20 21:53:27 2026 GMT Not After : May 27 21:53:27 2026 GMT Subject: CN=6a0e2d57-4fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0b:0f:2a:58:f6:ef:e1:ff:0c:b1:eb:5f:9e: 0f:65:59:7c:32:1c:91:10:c3:43:75:9d:97:86:f0: 60:80:7c:30:64:80:6f:56:51:6f:2f:e1:9e:23:c6: 72:23:48:4a:71:e6:6b:8d:dc:72:05:64:4f:1e:48: 62:84:4d:28:d6:9d:57:b6:ec:36:8d:df:1e:9d:47: 55:38:d6:41:d5:bc:4b:40:67:82:6c:03:61:e1:98: d8:92:e7:4e:a5:01:46:89:c0:50:71:68:f7:25:1d: 08:87:60:e2:e1:3a:bd:75:8b:5d:ad:6b:82:54:1b: a5:72:ab:88:bf:e4:eb:4a:56:1a:42:da:de:93:63: 83:6b:b5:e8:24:d7:24:b5:26:6f:47:2b:56:43:6d: 84:06:61:76:f4:4e:fa:58:a6:a3:54:bf:2d:04:2d: 91:c8:e0:1b:e4:5b:da:6d:c7:71:d0:83:7d:d7:25: 5b:14:6e:65:6d:9f:6c:62:06:55:43:3d:c6:c0:3b: ce:43:21:07:94:92:73:15:85:4b:c5:55:3f:94:4c: c8:65:9c:37:1e:1f:cd:ad:03:c5:56:33:8e:60:4d: e0:51:18:4d:a7:40:5f:57:1d:56:f4:39:7f:73:63: 8f:0e:aa:0d:a8:20:8f:3d:3e:5c:1a:d5:40:a7:20: 5b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:02:F6:11:26:2C:DE:FD:AB:56:95:F3:44:DC:18:76:24:32:2E:44 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:f6:1d:2c:47:ea:a7:ef:fe:66:ad:36:39:7d:ac:13:65:65: 76:48:32:29:bf:82:b4:b3:20:28:3d:cc:bf:06:e1:3c:bb:35: a3:7c:77:eb:57:df:88:e1:fa:78:90:40:fe:0e:f5:e3:ff:2b: 11:57:57:c6:ea:30:07:ef:59:11:28:ac:97:4f:bc:95:cb:50: cb:dc:06:63:ef:22:b3:6c:f3:88:e8:bb:17:48:75:93:fd:40: e5:42:ff:3f:00:5b:fd:e5:05:31:d5:89:0f:cb:6e:d2:1f:d8: 61:b4:67:44:c1:6a:50:0a:d2:a3:5e:b1:35:80:ea:15:e9:09: 9d:1b:2e:cd:9c:6b:1e:57:d8:4c:9f:14:b5:ed:00:5a:85:1e: 61:fe:88:8d:30:10:35:bf:ab:aa:90:15:23:a5:30:8b:29:7d: 7e:56:88:10:0d:b2:ea:e5:37:a5:f8:ff:d5:88:70:e5:73:50: 16:ea:d4:1f:21:48:58:0f:d3:f6:9b:b9:ca:be:13:1b:24:9d: 8c:4f:11:01:1f:e1:53:67:15:e5:d5:4b:af:de:0a:25:a3:a3: ac:07:06:8f:6d:fd:7d:f6:9a:83:5d:88:f3:00:19:d1:12:c3: 90:f3:14:1f:93:42:8f:08:d4:9a:4c:1e:92:ce:f9:b2:51:21: e8:be:1f:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwNTIwMjE1MzI3WhcNMjYwNTI3MjE1MzI3WjAYMRYwFAYD VQQDEw02YTBlMmQ1Ny00ZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AsPKlj27+H/DLHrX54PZVl8MhyREMNDdZ2XhvBggHwwZIBvVlFvL+GeI8Zy I0hKceZrjdxyBWRPHkhihE0o1p1Xtuw2jd8enUdVONZB1bxLQGeCbANh4ZjYkudO pQFGicBQcWj3JR0Ih2Di4Tq9dYtdrWuCVBulcquIv+TrSlYaQtrek2ODa7XoJNck tSZvRytWQ22EBmF29E76WKajVL8tBC2RyOAb5Fvabcdx0IN91yVbFG5lbZ9sYgZV Qz3GwDvOQyEHlJJzFYVLxVU/lEzIZZw3Hh/NrQPFVjOOYE3gURhNp0BfVx1W9Dl/ c2OPDqoNqCCPPT5cGtVApyBbPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEwC9hEm LN79q1aV80TcGHYkMi5EMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbfYdLEfqp+/+Zq02OX2sE2VldkgyKb+CtLMgKD3MvwbhPLs1o3x361ffiOH6 eJBA/g714/8rEVdXxuowB+9ZESisl0+8lctQy9wGY+8is2zziOi7F0h1k/1A5UL/ PwBb/eUFMdWJD8tu0h/YYbRnRMFqUArSo16xNYDqFekJnRsuzZxrHlfYTJ8Ute0A WoUeYf6IjTAQNb+rqpAVI6Uwiyl9flaIEA2y6uU3pfj/1Yhw5XNQFurUHyFIWA/T 9pu5yr4TGySdjE8RAR/hU2cV5dVLr94KJaOjrAcGj239ffaag12I8wAZ0RLDkPMU H5NCjwjUmkweks75slEh6L4f4Q== -----END CERTIFICATE-----Generated at Thu May 21 09:37:37 2026 by rpki-client