$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: jKSPXO/ZFsyK2dO+pUAsv5W8nZzXe1tur84zthqCoXA= Subject key identifier: F1:45:CF:29:23:67:1F:71:A5:77:AF:EA:8E:C6:C7:02:08:35:67:16 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 065C Signing time: Thu 24 Apr 2025 22:13:00 +0000 Manifest this update: Thu 24 Apr 2025 22:12:59 +0000 Manifest next update: Thu 01 May 2025 22:12:59 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: CJzUO2Fna5/snOe2dXtppl0AQUJKa3swT1n9Kjc77K8=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: 33QQuphQRYqieH70NrggQ8h+UAAXFdTttYTtHGKfVsc=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: 75t6akdtpfZ66rCaphdHE8Ci0vcMWvnaqPUEn6z8jRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Apr 24 22:12:59 2025 GMT Not After : May 1 22:12:59 2025 GMT Subject: CN=680ab76c-e737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:09:a6:7d:2d:b3:79:03:97:c5:9f:38:56: c5:37:08:00:be:64:b0:0e:a7:4b:7b:4b:1f:a1:74: c6:2e:b1:9c:96:00:fc:9f:3e:51:7b:83:a6:32:66: e2:fe:ee:24:84:24:03:8a:ce:a7:cc:88:1c:d6:2a: af:8d:a7:86:14:1f:1d:34:81:6f:49:bb:d4:37:fb: 03:a1:3c:41:cf:f1:52:61:23:cc:e6:6d:7b:ce:40: 61:d3:7d:ba:1f:07:98:e7:65:24:d9:af:43:f1:08: 0c:87:4e:a6:84:96:5d:1b:91:31:60:e5:e8:cb:2e: aa:c8:2a:dd:bb:90:2e:da:b2:4c:8e:ff:80:9b:67: 23:eb:9c:ee:7b:21:b7:bf:e4:79:ca:95:fd:eb:11: f9:52:24:14:f4:bc:94:3f:14:c5:e5:3e:57:0e:a2: ff:63:c9:26:34:67:31:13:31:85:87:15:f5:d9:dd: 19:32:1b:36:c3:e7:16:86:7a:cb:45:c7:2a:2f:a2: 0d:7d:ef:44:37:76:fd:18:47:14:04:a3:ec:91:4c: fb:e7:16:5a:2e:55:3a:c4:39:d8:ed:94:9c:52:07: 3e:af:b0:f5:60:bf:0b:fc:1e:8b:2f:73:a7:f0:a4: bb:7f:67:82:7c:9f:28:5e:d8:0c:7b:3e:64:f7:71: 1d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:45:CF:29:23:67:1F:71:A5:77:AF:EA:8E:C6:C7:02:08:35:67:16 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:8d:28:39:63:c3:09:7e:98:19:cd:23:5f:b6:48:ee:ce:e7: 08:de:44:f4:42:b5:7d:0f:ca:92:64:65:df:7f:60:32:fd:52: 1e:70:98:47:d9:80:f6:b4:23:ea:33:36:8b:e3:38:db:fe:ec: ef:d0:bd:48:bc:ae:15:a7:2b:25:cf:8a:56:33:ca:2b:39:bf: 37:d8:bd:c5:db:db:e6:40:8d:37:1a:d4:51:84:72:53:9d:15: d5:0b:1d:d9:a9:c0:ce:81:ed:1f:24:d1:31:ed:f1:af:b4:31: 8c:e9:2e:2a:11:4d:32:f5:31:ee:0e:01:b7:a5:04:b6:50:7c: e8:f8:fa:5e:b9:bb:f5:3e:62:86:29:52:08:04:ea:8f:27:2d: f2:91:2e:b0:d6:76:54:9a:91:f1:7a:ee:3d:0a:32:00:61:c0: d4:b1:5b:ac:15:61:b6:72:8e:11:9e:7a:ea:50:af:ed:0a:1f: 5b:fb:f3:7b:44:63:4d:68:6f:83:6c:1b:92:be:9f:d4:f0:e9: 8d:fd:71:d6:db:32:10:b6:26:b3:14:7b:69:19:4c:8b:43:fd: 9d:4b:f1:f7:2c:3f:5f:a1:68:80:ee:02:69:92:40:e7:6b:10: 73:8c:36:08:a2:0f:13:7b:ed:39:3e:31:ef:53:17:cc:60:58: f2:96:27:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwNDI0MjIxMjU5WhcNMjUwNTAxMjIxMjU5WjAYMRYwFAYD VQQDEw02ODBhYjc2Yy1lNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+cJpn0ts3kDl8WfOFbFNwgAvmSwDqdLe0sfoXTGLrGclgD8nz5Re4OmMmbi /u4khCQDis6nzIgc1iqvjaeGFB8dNIFvSbvUN/sDoTxBz/FSYSPM5m17zkBh0326 HweY52Uk2a9D8QgMh06mhJZdG5ExYOXoyy6qyCrdu5Au2rJMjv+Am2cj65zueyG3 v+R5ypX96xH5UiQU9LyUPxTF5T5XDqL/Y8kmNGcxEzGFhxX12d0ZMhs2w+cWhnrL RccqL6INfe9EN3b9GEcUBKPskUz75xZaLlU6xDnY7ZScUgc+r7D1YL8L/B6LL3On 8KS7f2eCfJ8oXtgMez5k93EdMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFFzykj Zx9xpXev6o7GxwIINWcWMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHjSg5Y8MJfpgZzSNftkjuzucI3kT0QrV9D8qSZGXff2Ay/VIecJhH 2YD2tCPqMzaL4zjb/uzv0L1IvK4Vpyslz4pWM8orOb832L3F29vmQI03GtRRhHJT nRXVCx3ZqcDOge0fJNEx7fGvtDGM6S4qEU0y9THuDgG3pQS2UHzo+Ppeubv1PmKG KVIIBOqPJy3ykS6w1nZUmpHxeu49CjIAYcDUsVusFWG2co4RnnrqUK/tCh9b+/N7 RGNNaG+DbBuSvp/U8OmN/XHW2zIQtiazFHtpGUyLQ/2dS/H3LD9foWiA7gJpkkDn axBzjDYIog8Te+05PjHvUxfMYFjylidW -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:57 2025 by rpki-client