$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: H+6/18aD9b5LGMtQ8Wm5XA+06+biWjjYKdm+95XXn34= Subject key identifier: E2:67:9C:BD:E1:3A:D2:B8:7B:AC:82:37:50:DE:AD:91:C1:16:B0:2F Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0717 Signing time: Sat 18 Apr 2026 21:48:06 +0000 Manifest this update: Sat 18 Apr 2026 21:48:06 +0000 Manifest next update: Sat 25 Apr 2026 21:48:06 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: vaeozbqEJVz7o+kGf//AJIHrXAAej0igH7+4C2cb/RE=) 2: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) 3: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 21:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Apr 18 21:48:06 2026 GMT Not After : Apr 25 21:48:06 2026 GMT Subject: CN=69e3fc16-d4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:41:ac:d6:30:15:b4:7f:3e:91:0a:a0:77: 50:da:ca:93:0e:28:76:83:4f:7b:e8:83:2f:86:73: ba:be:1c:6f:fa:a5:7b:2a:f2:97:47:02:6e:0b:1f: 71:b1:9d:55:4d:b7:bb:50:b6:fd:d7:f2:a8:e5:c1: 6c:22:e2:68:c6:9b:2b:27:c5:10:72:df:0b:56:1c: e3:91:ff:88:83:6d:68:28:36:6d:69:84:5a:e5:e9: 00:8e:b2:c9:65:25:6f:18:44:f5:75:36:c2:c0:28: 50:46:b1:9c:ca:e2:b9:07:f8:a3:ef:56:08:71:44: 3e:ad:58:44:8c:2b:e1:7d:3a:f3:e9:97:51:76:12: 3e:f5:30:70:30:e9:e9:3d:bb:83:b4:61:e0:a0:92: 77:ad:af:fa:7c:62:4f:47:fb:78:f7:b3:81:9a:ce: 7d:0c:e1:92:a3:dc:72:7b:0d:5f:90:6b:a1:bb:f9: e7:c3:e4:33:0c:7a:94:2b:85:c9:24:16:9b:bb:16: 0d:56:32:5c:fa:0c:82:00:97:3a:de:69:e8:83:42: 21:6d:35:1e:e8:d2:76:46:11:1e:60:4e:36:34:2c: 72:9b:ff:db:89:29:de:03:a5:1d:52:32:0f:3d:d5: 69:f6:ec:63:a8:94:f5:81:67:c8:77:fa:c5:8b:4d: 59:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:67:9C:BD:E1:3A:D2:B8:7B:AC:82:37:50:DE:AD:91:C1:16:B0:2F X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:a3:ab:4d:a0:33:4f:bd:a7:f4:8e:82:7c:f0:a4:71:90:36: 6d:11:63:8c:75:db:0a:86:88:46:60:8e:f2:b2:51:2b:86:ed: 11:ad:2c:b1:16:84:90:68:09:ed:e2:29:fc:4a:b2:e7:53:9d: fc:c1:81:30:b4:af:97:69:fe:d4:d7:fa:50:48:47:30:ac:1c: 2a:07:dd:95:ef:1a:a8:79:2a:a3:4a:17:86:38:ef:9a:b0:f2: bf:50:80:22:1e:50:5a:a0:bf:03:69:e8:84:d8:4b:41:75:71: 24:a3:67:df:c9:35:32:c3:03:79:56:43:a5:67:c1:b7:53:0c: ba:29:74:24:07:fb:06:a8:81:58:1c:00:eb:f1:67:ff:d8:ec: c4:d9:44:e6:4f:a5:c0:c0:33:5b:ef:6c:52:f6:d4:05:20:f3: 52:56:64:c6:02:b0:94:59:95:71:6e:2b:f1:0a:52:de:cc:98: 48:fb:0d:10:ec:06:ea:45:b2:0b:dd:e1:f7:4b:72:f7:9c:d5: 0b:76:d0:c0:92:83:13:28:78:7d:dc:11:fc:fc:4f:56:fe:bc: 3c:4f:9e:4f:58:0e:19:71:d1:f3:d4:59:00:c1:00:ea:5b:d3: 8d:4f:9d:30:90:d1:c9:e6:fc:aa:40:2a:4f:a8:77:7b:37:60: 72:04:f5:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwNDE4MjE0ODA2WhcNMjYwNDI1MjE0ODA2WjAYMRYwFAYD VQQDEw02OWUzZmMxNi1kNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxZBrNYwFbR/PpEKoHdQ2sqTDih2g0976IMvhnO6vhxv+qV7KvKXRwJuCx9x sZ1VTbe7ULb91/Ko5cFsIuJoxpsrJ8UQct8LVhzjkf+Ig21oKDZtaYRa5ekAjrLJ ZSVvGET1dTbCwChQRrGcyuK5B/ij71YIcUQ+rVhEjCvhfTrz6ZdRdhI+9TBwMOnp PbuDtGHgoJJ3ra/6fGJPR/t497OBms59DOGSo9xyew1fkGuhu/nnw+QzDHqUK4XJ JBabuxYNVjJc+gyCAJc63mnog0IhbTUe6NJ2RhEeYE42NCxym//biSneA6UdUjIP PdVp9uxjqJT1gWfId/rFi01Z7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOJnnL3h OtK4e6yCN1DerZHBFrAvMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUqOrTaAzT72n9I6CfPCkcZA2bRFjjHXbCoaIRmCO8rJRK4btEa0ssRaEkGgJ 7eIp/Eqy51Od/MGBMLSvl2n+1Nf6UEhHMKwcKgfdle8aqHkqo0oXhjjvmrDyv1CA Ih5QWqC/A2nohNhLQXVxJKNn38k1MsMDeVZDpWfBt1MMuil0JAf7BqiBWBwA6/Fn /9jsxNlE5k+lwMAzW+9sUvbUBSDzUlZkxgKwlFmVcW4r8QpS3syYSPsNEOwG6kWy C93h90ty95zVC3bQwJKDEyh4fdwR/PxPVv68PE+eT1gOGXHR89RZAMEA6lvTjU+d MJDRyeb8qkAqT6h3ezdgcgT1PA== -----END CERTIFICATE-----Generated at Sun Apr 19 10:06:53 2026 by rpki-client