$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: f6htBYVEqH8AJTZgn1h6jrvQQU1dqNjzW79zEaJoSzA= Subject key identifier: B3:D0:8A:C9:47:E5:92:08:B6:4D:3A:ED:39:1B:55:2E:ED:A6:BA:49 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06BF Signing time: Sun 02 Nov 2025 22:07:29 +0000 Manifest this update: Sun 02 Nov 2025 22:07:28 +0000 Manifest next update: Sun 09 Nov 2025 22:07:28 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: FaijEY3kDFe+Ti0kUI7I9GfllDAERUT1b2iq8TAzYAk=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Nov 2 22:07:28 2025 GMT Not After : Nov 9 22:07:28 2025 GMT Subject: CN=6907d621-8328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8e:30:20:ba:34:5d:55:07:ce:8b:6c:e0:8d: 2a:64:a8:07:c3:6b:64:6d:83:9b:fa:d0:da:0c:2f: 30:39:bd:e1:11:18:1e:f5:a7:4f:8d:61:85:85:7b: 4f:aa:2f:f4:89:4a:b9:67:af:00:d8:3a:6c:1c:7b: ea:02:f8:9c:12:83:22:26:15:ce:73:2a:ee:17:96: 1f:77:0d:02:74:c9:b3:07:21:62:cf:b1:ea:1d:bb: 95:a4:15:a0:4b:94:40:3e:ae:f0:d8:fe:27:83:af: 45:e3:aa:a6:4b:2f:cf:e6:d7:4e:26:04:d1:26:2c: 65:7d:2d:f5:c3:bc:9e:c7:66:79:66:cd:7f:9f:6a: be:43:38:2e:3c:a2:eb:46:75:f6:50:1d:fa:02:59: cb:c3:9b:af:e0:ad:0c:db:50:66:d4:94:75:b3:22: fe:95:50:e5:d7:44:8a:cb:94:3e:62:c1:f4:81:76: 69:ba:51:9f:3e:d0:ab:30:ca:ee:99:c7:9c:d3:88: ff:c0:16:71:82:76:e8:1b:3c:46:30:af:7f:c4:70: 45:f1:13:65:70:25:24:3b:ac:26:e4:19:5d:8e:c2: a5:5c:eb:8e:53:9a:2b:41:da:5b:6c:6e:46:c1:3d: f0:f5:57:18:c4:da:dd:8b:32:61:6e:db:fb:12:b3: ad:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D0:8A:C9:47:E5:92:08:B6:4D:3A:ED:39:1B:55:2E:ED:A6:BA:49 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a3:e5:49:ba:28:5b:41:db:93:7d:f0:f8:0f:cf:83:d2:ed: 5a:09:27:80:09:2e:be:ca:01:4b:f6:38:f2:57:32:53:85:43: 89:98:d5:a8:70:d1:0e:d2:50:d3:82:f8:54:ac:b9:7c:e0:1c: 01:87:6e:06:69:c2:5f:81:05:2c:a3:a6:a6:d8:62:0d:d5:52: 5b:c4:87:d2:b4:ac:c3:cb:24:76:8b:3c:a9:dc:75:85:ad:3c: 89:ed:4b:10:72:5a:17:48:b7:0f:67:ee:0d:b0:59:ff:0f:f8: b6:96:4f:f8:7b:ff:04:76:7a:66:c0:b1:14:2f:2b:93:57:f5: 86:68:73:41:cc:d3:9d:bf:d6:75:f9:7b:21:b9:5c:5f:80:29: f9:06:ab:af:87:f3:ea:d4:98:0d:4e:5f:e4:ef:c2:0a:c1:2a: 70:fc:8e:36:ee:cd:03:2e:9d:88:c8:01:20:38:8f:58:85:ab: ac:57:c6:72:b4:0d:63:b5:b2:fe:a7:5a:c1:4c:e9:c4:eb:71: 30:f3:38:1a:c6:c3:2c:a2:5d:96:98:7a:f2:8e:1f:f6:b1:08: bd:e9:0d:14:46:85:02:2e:10:5d:b1:cc:83:d1:26:75:78:51: 3c:a4:2f:d2:43:01:5c:f5:4e:25:24:58:a3:37:59:94:a5:88: 92:ab:6c:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUxMTAyMjIwNzI4WhcNMjUxMTA5MjIwNzI4WjAYMRYwFAYD VQQDEw02OTA3ZDYyMS04MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnY4wILo0XVUHzots4I0qZKgHw2tkbYOb+tDaDC8wOb3hERge9adPjWGFhXtP qi/0iUq5Z68A2DpsHHvqAvicEoMiJhXOcyruF5Yfdw0CdMmzByFiz7HqHbuVpBWg S5RAPq7w2P4ng69F46qmSy/P5tdOJgTRJixlfS31w7yex2Z5Zs1/n2q+QzguPKLr RnX2UB36AlnLw5uv4K0M21Bm1JR1syL+lVDl10SKy5Q+YsH0gXZpulGfPtCrMMru mcec04j/wBZxgnboGzxGMK9/xHBF8RNlcCUkO6wm5BldjsKlXOuOU5orQdpbbG5G wT3w9VcYxNrdizJhbtv7ErOtnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPQislH 5ZIItk067TkbVS7tprpJMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFo+VJuihbQduTffD4D8+D0u1aCSeACS6+ygFL9jjyVzJThUOJmNWo cNEO0lDTgvhUrLl84BwBh24GacJfgQUso6am2GIN1VJbxIfStKzDyyR2izyp3HWF rTyJ7UsQcloXSLcPZ+4NsFn/D/i2lk/4e/8EdnpmwLEULyuTV/WGaHNBzNOdv9Z1 +XshuVxfgCn5Bquvh/Pq1JgNTl/k78IKwSpw/I427s0DLp2IyAEgOI9YhausV8Zy tA1jtbL+p1rBTOnE63Ew8zgaxsMsol2WmHryjh/2sQi96Q0URoUCLhBdscyD0SZ1 eFE8pC/SQwFc9U4lJFijN1mUpYiSq2zR -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:39 2025 by rpki-client