$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: GkBH2Cx9bdJGpY4gWZD8sNTsJSYG/yuf1Y1jT7qL9Xk= Subject key identifier: 41:16:B2:F8:56:51:CC:3A:CE:2D:4C:DA:AB:78:30:5C:CC:7B:4E:F5 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 027A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 0275 Signing time: Fri 27 Mar 2026 01:27:51 +0000 Manifest this update: Fri 27 Mar 2026 01:27:51 +0000 Manifest next update: Fri 03 Apr 2026 01:27:51 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: ytcZmPhyFQJnPO0jL5QhSdI1eSsC/YjgGWe5aNN7EQU=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: D5QNOEYZTaVxGTG0sg1pVADh30TxHcQUWw6CHAWGbF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 634 (0x27a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Mar 27 01:27:51 2026 GMT Not After : Apr 3 01:27:51 2026 GMT Subject: CN=69c5dd17-5aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:64:ee:19:0b:b1:c8:c1:c2:12:5e:39:80:8d: 3d:38:de:c0:a4:56:bf:62:ff:91:ca:02:97:83:8b: 89:98:fa:d7:67:3a:b9:a2:87:d9:3c:8c:d2:6a:a7: 0d:18:83:5b:7d:3f:36:1c:5d:71:12:5b:d8:6b:f9: 8a:17:8d:e7:13:43:bf:92:0f:9d:d3:be:d9:8a:77: dc:de:1b:68:18:1a:36:5b:91:4b:e2:32:9d:14:a6: 9b:cf:f4:5f:13:f6:fb:87:2f:be:32:b5:d1:d2:56: 81:10:35:86:9e:f1:b1:86:1e:4e:96:fb:60:16:4c: ae:33:72:c0:95:59:d1:d0:e5:7d:a0:62:5a:a1:dc: 3a:d2:8e:cb:75:66:fc:4a:4f:ea:49:af:90:71:50: 35:88:d8:da:e5:8c:01:09:25:45:11:f8:52:02:84: 87:bd:49:48:ed:d8:ad:40:4c:08:4d:70:da:f6:68: 97:c9:35:2a:3e:c7:53:81:61:b8:88:87:d8:93:93: 90:9a:d1:e8:3c:db:23:3a:ec:f6:d3:7d:dc:c1:06: b3:8e:cc:dc:da:4b:8f:17:ed:31:87:15:15:0f:e8: ec:d3:a3:1a:95:54:7a:3f:e0:a7:1d:a4:d8:4f:5c: 47:d4:8a:10:ff:b4:bc:bf:de:f8:dc:ef:d1:bc:82: ad:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:16:B2:F8:56:51:CC:3A:CE:2D:4C:DA:AB:78:30:5C:CC:7B:4E:F5 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:86:b3:8c:c4:63:32:76:0e:27:11:4a:6c:28:41:1c:33:42: 78:de:23:be:3e:5e:30:2b:a9:e3:dc:7f:2b:fa:55:44:8d:d0: 1a:0f:68:e2:5a:f9:59:ec:50:b2:61:78:55:f5:26:89:5b:b1: d6:f4:e1:ea:9d:1a:9d:0c:3e:74:4e:81:ab:5e:ed:f1:6b:c9: 0b:65:80:b8:59:94:d0:3b:7e:ac:ae:0c:d5:7f:62:4e:10:c0: 7a:d4:53:d2:e7:1f:22:1f:5b:df:a8:ea:21:45:8b:36:95:37: 36:33:05:1b:3b:34:f0:a5:01:22:1d:9f:33:37:23:9e:46:77: 11:b6:f6:df:dd:ca:b3:f3:a1:ae:dc:33:56:c5:10:d8:cc:e1: 98:59:b0:83:c6:79:f7:b8:b0:c5:72:d8:c5:6c:fd:09:48:82: 9c:36:dd:b5:a1:71:e8:2c:ff:22:73:ee:cc:72:9f:67:7e:96: 00:78:da:89:59:a1:fa:73:f0:73:bd:b3:0b:55:a3:e5:7d:dd: eb:91:c4:79:89:c1:74:68:74:a2:e3:78:ed:e1:84:bb:31:a6: ab:ca:68:c9:7f:34:1b:28:8e:69:61:18:52:40:ce:63:9a:b2: b2:d4:f6:a5:11:00:38:c7:c2:3c:42:71:d6:e3:7b:4d:e3:d2: 00:6e:04:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwMzI3MDEyNzUxWhcNMjYwNDAzMDEyNzUxWjAYMRYwFAYD VQQDEw02OWM1ZGQxNy01YWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2TuGQuxyMHCEl45gI09ON7ApFa/Yv+RygKXg4uJmPrXZzq5oofZPIzSaqcN GINbfT82HF1xElvYa/mKF43nE0O/kg+d077Zinfc3htoGBo2W5FL4jKdFKabz/Rf E/b7hy++MrXR0laBEDWGnvGxhh5OlvtgFkyuM3LAlVnR0OV9oGJaodw60o7LdWb8 Sk/qSa+QcVA1iNja5YwBCSVFEfhSAoSHvUlI7ditQEwITXDa9miXyTUqPsdTgWG4 iIfYk5OQmtHoPNsjOuz2033cwQazjszc2kuPF+0xhxUVD+js06MalVR6P+CnHaTY T1xH1IoQ/7S8v9743O/RvIKtWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEWsvhW Ucw6zi1M2qt4MFzMe071MB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAU4azjMRjMnYOJxFKbChBHDNCeN4jvj5eMCup49x/K/pVRI3QGg9o4lr5WexQ smF4VfUmiVux1vTh6p0anQw+dE6Bq17t8WvJC2WAuFmU0Dt+rK4M1X9iThDAetRT 0ucfIh9b36jqIUWLNpU3NjMFGzs08KUBIh2fMzcjnkZ3Ebb2393Ks/OhrtwzVsUQ 2MzhmFmwg8Z597iwxXLYxWz9CUiCnDbdtaFx6Cz/InPuzHKfZ36WAHjaiVmh+nPw c72zC1Wj5X3d65HEeYnBdGh0ouN47eGEuzGmq8poyX80GyiOaWEYUkDOY5qystT2 pREAOMfCPEJx1uN7TePSAG4E+Q== -----END CERTIFICATE-----Generated at Fri Mar 27 05:21:25 2026 by rpki-client