$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: WdMNi6/McoCZJCkR2XM+yOtGgWvIYZDC3m+HFwibuj4= Subject key identifier: E1:84:D4:37:57:F6:5B:9C:AD:79:1F:56:36:10:70:02:44:13:16:8E Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06A8 Signing time: Thu 18 Sep 2025 22:28:52 +0000 Manifest this update: Thu 18 Sep 2025 22:28:52 +0000 Manifest next update: Thu 25 Sep 2025 22:28:52 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: x9Ai2W/KUsgt4BemtRxSS+Ya8yfPkE5SGQEw8BmAjkg=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Sep 18 22:28:52 2025 GMT Not After : Sep 25 22:28:52 2025 GMT Subject: CN=68cc87a4-b5fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:f0:35:2d:67:27:71:18:cd:2b:a0:2c:14: db:19:13:9b:52:aa:d8:4e:f9:e7:82:06:60:c0:0e: 85:c4:4a:2b:5b:f9:c0:86:1a:75:f4:7e:c0:2e:e1: c9:c1:e9:04:a2:4b:8b:e2:80:bb:23:26:22:62:58: a6:04:8a:9c:8c:dc:e5:84:41:cc:29:0a:cf:1f:8a: 14:b5:a0:90:33:c5:a5:b5:44:e3:4b:cb:13:2c:e5: 83:89:7b:d2:e2:12:8e:48:29:a6:e1:bb:b7:46:57: 8b:6a:6a:86:e3:42:d9:4f:d3:0b:a4:83:b7:34:01: 8b:08:0a:b6:e2:84:cc:31:5d:5e:7d:4b:40:8a:a4: fb:21:fe:7b:ea:96:cf:52:bf:18:8d:1d:65:b4:4e: b7:de:ca:38:7c:4a:8b:f8:39:76:d6:eb:51:b8:74: 0e:f4:3c:10:75:3b:97:e0:b4:8a:91:50:6f:82:13: 3a:f1:cd:86:84:09:68:d5:e3:07:ab:79:5e:e8:b6: 8e:58:84:0d:0b:22:72:65:06:da:dc:da:9b:ad:c3: d7:21:3c:3f:04:c5:0c:fd:21:6e:82:a1:93:fa:88: b3:d1:fc:75:93:9f:99:9e:18:a6:44:ba:be:4d:ad: 91:36:bf:37:30:2b:8a:f8:12:c1:01:5d:80:2d:b5: f2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:84:D4:37:57:F6:5B:9C:AD:79:1F:56:36:10:70:02:44:13:16:8E X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:39:4b:cd:87:75:f9:ca:dc:f0:73:7f:1c:2c:9b:96:54:ad: 83:da:63:a9:76:8d:79:3f:fd:77:43:4e:9a:83:0c:d0:32:3d: 19:08:ba:3b:36:8f:61:d8:82:8c:8d:43:78:0b:d9:56:f1:0c: 41:9a:db:df:61:86:74:3d:4b:fc:b3:41:dc:27:09:ab:d0:cd: 40:13:a0:c9:b7:5b:d4:a1:b8:3f:5f:74:6e:1d:77:78:57:a0: 48:8d:a9:f2:a6:82:8d:47:40:88:2b:39:82:ce:dc:4f:06:76: d4:94:00:25:d4:f6:be:56:75:fb:ca:d7:48:61:cb:f9:87:01: 33:09:e5:8e:4f:54:e0:0b:b8:ee:0a:d5:e8:10:f5:c0:0e:6c: 0a:a0:06:73:d3:0d:3e:67:6e:3f:ca:e3:31:8c:65:76:1b:0b: dc:76:f8:96:bc:d6:86:8f:dd:76:bd:37:b1:b4:50:a4:ff:6d: 6b:f3:08:34:28:4e:bd:b4:6f:3e:2b:06:7c:a4:7d:38:f3:72: 89:aa:04:d0:11:a0:bb:ef:c0:f2:64:e7:f7:7b:8d:18:6a:a8: 23:a3:8a:a9:8e:6b:f7:98:45:0d:7c:98:94:4c:f4:f2:06:8b: 39:3a:b9:15:6a:43:e1:a3:01:43:0a:05:cd:4c:43:75:6b:b8: ca:21:01:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwOTE4MjIyODUyWhcNMjUwOTI1MjIyODUyWjAYMRYwFAYD VQQDEw02OGNjODdhNC1iNWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlbwNS1nJ3EYzSugLBTbGRObUqrYTvnnggZgwA6FxEorW/nAhhp19H7ALuHJ wekEokuL4oC7IyYiYlimBIqcjNzlhEHMKQrPH4oUtaCQM8WltUTjS8sTLOWDiXvS 4hKOSCmm4bu3RleLamqG40LZT9MLpIO3NAGLCAq24oTMMV1efUtAiqT7If576pbP Ur8YjR1ltE633so4fEqL+Dl21utRuHQO9DwQdTuX4LSKkVBvghM68c2GhAlo1eMH q3le6LaOWIQNCyJyZQba3NqbrcPXITw/BMUM/SFugqGT+oiz0fx1k5+ZnhimRLq+ Ta2RNr83MCuK+BLBAV2ALbXyCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGE1DdX 9lucrXkfVjYQcAJEExaOMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdOUvNh3X5ytzwc38cLJuWVK2D2mOpdo15P/13Q06agwzQMj0ZCLo7 No9h2IKMjUN4C9lW8QxBmtvfYYZ0PUv8s0HcJwmr0M1AE6DJt1vUobg/X3RuHXd4 V6BIjanypoKNR0CIKzmCztxPBnbUlAAl1Pa+VnX7ytdIYcv5hwEzCeWOT1TgC7ju CtXoEPXADmwKoAZz0w0+Z24/yuMxjGV2GwvcdviWvNaGj912vTextFCk/21r8wg0 KE69tG8+KwZ8pH0483KJqgTQEaC778DyZOf3e40Yaqgjo4qpjmv3mEUNfJiUTPTy Bos5OrkVakPhowFDCgXNTEN1a7jKIQGf -----END CERTIFICATE-----Generated at Fri Sep 19 02:49:48 2025 by rpki-client