$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: XGWQG/MULS+nJKhiBlRi8A64TDOpUO8VxGNvyYswzxE= Subject key identifier: B6:4D:02:B7:B7:72:E4:57:8D:FA:00:6B:2C:E4:12:24:2B:F6:27:EA Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 0694 Signing time: Sun 10 Aug 2025 22:19:52 +0000 Manifest this update: Sun 10 Aug 2025 22:19:52 +0000 Manifest next update: Sun 17 Aug 2025 22:19:52 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: aukb0ANEpDw8c4EX9iNTiVLiLwS9WLAR+cdt1GJTyc0=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: WC17u871QRbv9L0eEf3wRpZbTARtAM6LAemuxBHqCWE=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: mMd+OVrFW5GAoQGXV5q8W888lgwtgTWX8rE/7aryuNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Aug 10 22:19:52 2025 GMT Not After : Aug 17 22:19:52 2025 GMT Subject: CN=68991b08-3079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:48:9f:70:c9:5d:3d:85:5b:11:0e:16:d6: 1d:4e:e4:30:69:83:dd:70:8d:52:5a:d3:55:85:cb: 08:f0:0b:67:7e:59:59:e7:16:5e:47:51:50:25:68: 78:06:1c:b3:8f:53:eb:b4:cf:ca:5a:97:fa:e3:43: dc:78:b8:d5:a1:e4:53:0a:c6:41:bc:5b:08:b4:44: 0c:5d:76:02:5c:e2:27:e9:83:66:89:90:50:25:2a: 57:4c:03:ed:4d:57:dc:9e:19:67:86:32:61:17:b7: 5d:1f:e3:7c:fd:ca:79:1f:14:fa:05:61:9a:39:6b: 04:80:9c:70:eb:16:f1:9b:3f:21:66:48:36:ee:55: 8d:d4:91:dc:a0:9b:8b:82:eb:e1:bb:ae:85:27:bd: fa:fd:22:4c:a4:17:2b:72:4d:86:ce:20:36:db:58: c9:be:57:d0:e5:1c:71:b5:aa:78:85:ee:d9:04:95: 6f:c2:d1:ff:00:85:db:17:d0:97:3a:20:9c:7c:17: 6e:50:fc:13:c0:d6:dd:b3:f7:96:af:e0:87:31:fb: b6:fa:fc:dc:1d:12:5f:e7:c7:c0:7b:b5:fb:83:bb: f5:3a:68:d2:10:53:86:1a:b4:d5:65:2a:59:aa:ae: b3:89:a1:0a:f8:40:5d:59:c3:72:8c:88:df:50:37: fe:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4D:02:B7:B7:72:E4:57:8D:FA:00:6B:2C:E4:12:24:2B:F6:27:EA X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:ee:f5:65:f5:4a:e2:30:b9:44:78:2a:1d:71:17:14:a0:b0: c7:06:b4:66:10:89:66:97:e8:20:bc:96:4c:12:0e:f2:57:06: df:cd:c2:d8:85:92:df:e3:78:7b:8f:b8:fb:1d:4d:54:4a:52: 83:68:61:2a:c0:9c:69:73:3a:25:a3:c3:99:82:93:10:96:8b: fc:ad:3d:b3:de:eb:2b:37:81:47:cd:33:51:ed:1e:b7:bf:7e: ff:23:45:e8:21:36:3a:ff:29:54:a2:42:c0:de:88:dd:dc:41: 44:d5:6a:51:4b:66:7e:65:1e:5b:d9:fb:18:d8:38:72:1c:93: b1:0a:2e:38:a3:db:be:2f:a9:0f:fc:11:5d:20:28:16:6c:ea: bc:22:80:b1:5a:ab:c7:4a:5f:4a:a3:7e:b4:ff:11:10:2b:38: cb:25:74:c1:3e:a6:e1:c4:77:c9:bd:0e:c8:9c:d7:d5:b9:30: 3c:b4:81:af:26:ed:54:ff:31:b3:0a:92:e5:a0:c7:a0:ed:91: 83:e1:2c:51:05:fc:73:fc:73:e7:3c:be:e5:6b:e4:85:d8:f8: c4:76:9d:92:0e:d7:20:4c:e6:fb:c1:ff:9c:7d:48:99:08:95: d0:70:24:c3:d8:88:c8:25:48:4d:0a:57:89:15:c2:a9:50:b8: 0d:93:36:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjUwODEwMjIxOTUyWhcNMjUwODE3MjIxOTUyWjAYMRYwFAYD VQQDEw02ODk5MWIwOC0zMDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/JIn3DJXT2FWxEOFtYdTuQwaYPdcI1SWtNVhcsI8AtnfllZ5xZeR1FQJWh4 Bhyzj1PrtM/KWpf640PceLjVoeRTCsZBvFsItEQMXXYCXOIn6YNmiZBQJSpXTAPt TVfcnhlnhjJhF7ddH+N8/cp5HxT6BWGaOWsEgJxw6xbxmz8hZkg27lWN1JHcoJuL guvhu66FJ736/SJMpBcrck2GziA221jJvlfQ5Rxxtap4he7ZBJVvwtH/AIXbF9CX OiCcfBduUPwTwNbds/eWr+CHMfu2+vzcHRJf58fAe7X7g7v1OmjSEFOGGrTVZSpZ qq6ziaEK+EBdWcNyjIjfUDf+qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZNAre3 cuRXjfoAayzkEiQr9ifqMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk7vVl9UriMLlEeCodcRcUoLDHBrRmEIlml+ggvJZMEg7yVwbfzcLY hZLf43h7j7j7HU1USlKDaGEqwJxpczolo8OZgpMQlov8rT2z3usrN4FHzTNR7R63 v37/I0XoITY6/ylUokLA3ojd3EFE1WpRS2Z+ZR5b2fsY2DhyHJOxCi44o9u+L6kP /BFdICgWbOq8IoCxWqvHSl9Ko360/xEQKzjLJXTBPqbhxHfJvQ7InNfVuTA8tIGv Ju1U/zGzCpLloMeg7ZGD4SxRBfxz/HPnPL7la+SF2PjEdp2SDtcgTOb7wf+cfUiZ CJXQcCTD2IjIJUhNCleJFcKpULgNkzas -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:37 2025 by rpki-client