$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: M+xjzkvorJfMPLtEh0+ABTxnUYMvcwkN8gkn/JhA/fE= Subject key identifier: B7:10:CC:4A:53:FB:E7:75:24:93:2F:D2:A1:8C:DD:AA:30:0D:04:C7 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0710 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 06FE Signing time: Mon 02 Mar 2026 00:09:24 +0000 Manifest this update: Mon 02 Mar 2026 00:09:22 +0000 Manifest next update: Mon 09 Mar 2026 00:09:22 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: 5U1NvTGvvLICf7+qMGbO75jxVAX7TBUFUkbw9WApcEc=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: HAOp0TvVsReYpfNF7VS+ecQ+ronnpAxEat5elqg2RPs=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: B7D8niZNdbXyarYIfRZsjMzyjFHUhkkg3AnRqhXzd3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA, serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Mar 2 00:09:22 2026 GMT Not After : Mar 9 00:09:22 2026 GMT Subject: CN=69a4d534-6dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:0e:2d:04:7e:2d:5c:a8:23:da:74:43:70: 50:68:fc:34:3f:b1:1c:a6:22:2d:df:eb:2a:b7:60: e1:a7:1b:5e:ac:85:64:1d:5c:7f:19:bc:6b:d8:99: 9a:64:cb:ec:b0:70:3d:42:c7:ec:94:ec:dd:2d:65: a4:6c:f5:d6:10:ea:46:82:be:84:5e:f6:eb:93:7f: 82:d8:20:ab:61:77:dc:3f:73:74:88:77:f9:9b:2c: dc:8f:1b:ed:f3:05:9b:ec:8f:2d:f4:7d:b9:8b:92: fd:2e:8c:74:50:5e:d4:2c:43:9e:09:b3:e0:d3:eb: 50:92:3e:98:b5:7b:22:d1:63:e8:7e:28:79:8d:cc: 05:48:e4:79:00:47:05:cd:d0:99:98:5e:84:67:cb: 4f:be:40:e1:7f:1c:f1:94:d1:27:2b:76:7d:d6:74: e2:a2:6a:c7:a0:3f:f4:67:42:d2:24:c5:5c:3d:c1: a4:f5:58:ee:2b:eb:66:b5:32:86:28:c2:24:f3:14: 55:26:e1:84:f5:42:06:a6:bb:66:36:57:b0:3d:89: ad:a5:01:76:96:bf:8b:02:72:6a:87:50:1f:0d:0e: 7a:5b:56:fa:f8:8b:ed:69:c6:45:70:4c:aa:7f:b0: 80:31:56:e8:94:4a:99:f1:b6:3f:9f:28:21:ca:8e: c3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:10:CC:4A:53:FB:E7:75:24:93:2F:D2:A1:8C:DD:AA:30:0D:04:C7 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:6c:fb:09:91:2e:9d:31:fc:18:9e:da:d9:61:30:da:6b:c5: 7d:a0:e4:95:f6:6b:f2:a1:eb:bc:23:e1:91:0b:41:8a:4c:d1: aa:8f:c9:32:59:e3:dd:dd:b5:9c:5e:f8:00:d8:01:7a:23:6a: 3a:3c:4e:7a:bb:fc:a1:eb:ee:97:bb:4f:40:48:73:1c:a7:34: d3:de:c5:be:65:4e:e7:3e:04:4c:41:48:59:b2:5c:ed:f7:b4: 10:28:07:d0:e6:15:20:d9:4a:a4:42:12:b6:23:ba:9a:65:3a: 9b:ad:6d:3a:79:11:89:a9:cc:e1:7f:a4:44:04:d0:ee:f6:56: 89:99:98:a7:47:63:01:aa:63:fb:96:d0:fa:ef:9e:29:cc:39: dc:b2:7c:7f:9b:13:bf:bf:65:a3:39:9e:f2:61:96:28:15:6b: 09:f4:31:01:a5:35:a1:00:3c:be:ca:96:37:cc:79:43:2c:72: e6:da:72:1f:51:54:f8:b8:07:02:24:56:64:91:be:8f:45:52: 37:7f:40:90:6a:8d:9e:7d:5c:6e:7d:dd:72:5c:db:68:bb:e6: 64:8b:48:bf:4a:0a:84:f7:7b:87:1c:6f:d1:62:eb:5d:69:d4: 47:26:67:73:76:b2:77:ee:b6:ed:44:08:c4:67:d3:9d:b9:a6: a1:46:d6:77 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjYwMzAyMDAwOTIyWhcNMjYwMzA5MDAwOTIyWjAYMRYwFAYD VQQDEw02OWE0ZDUzNC02ZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLQOLQR+LVyoI9p0Q3BQaPw0P7EcpiIt3+sqt2DhpxterIVkHVx/Gbxr2Jma ZMvssHA9QsfslOzdLWWkbPXWEOpGgr6EXvbrk3+C2CCrYXfcP3N0iHf5myzcjxvt 8wWb7I8t9H25i5L9Lox0UF7ULEOeCbPg0+tQkj6YtXsi0WPofih5jcwFSOR5AEcF zdCZmF6EZ8tPvkDhfxzxlNEnK3Z91nTiomrHoD/0Z0LSJMVcPcGk9VjuK+tmtTKG KMIk8xRVJuGE9UIGprtmNlewPYmtpQF2lr+LAnJqh1AfDQ56W1b6+IvtacZFcEyq f7CAMVbolEqZ8bY/nyghyo7D+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLcQzEpT ++d1JJMv0qGM3aowDQTHMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW2z7CZEunTH8GJ7a2WEw2mvFfaDklfZr8qHrvCPhkQtBikzRqo/JMlnj3d21 nF74ANgBeiNqOjxOerv8oevul7tPQEhzHKc0097FvmVO5z4ETEFIWbJc7fe0ECgH 0OYVINlKpEIStiO6mmU6m61tOnkRianM4X+kRATQ7vZWiZmYp0djAapj+5bQ+u+e Kcw53LJ8f5sTv79lozme8mGWKBVrCfQxAaU1oQA8vsqWN8x5Qyxy5tpyH1FU+LgH AiRWZJG+j0VSN39AkGqNnn1cbn3dclzbaLvmZItIv0oKhPd7hxxv0WLrXWnURyZn c3ayd+627UQIxGfTnbmmoUbWdw== -----END CERTIFICATE-----Generated at Mon Mar 2 16:07:26 2026 by rpki-client