$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: 3uioWgEO9QRn/chbAb9YjsCyczFwBubpAbYy9m58lhI= Subject key identifier: EA:58:CC:8F:CC:13:6F:EC:7C:4B:A0:AB:46:A6:20:DE:D6:3A:F5:5F Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 0206 Signing time: Sat 23 Aug 2025 02:22:15 +0000 Manifest this update: Sat 23 Aug 2025 02:22:14 +0000 Manifest next update: Sat 30 Aug 2025 02:22:14 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: 8WsdXqLI2gGqUXgyDMI11/1NdBgiWh2cebA8dqJuIo4=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Aug 23 02:22:14 2025 GMT Not After : Aug 30 02:22:14 2025 GMT Subject: CN=68a925d7-1dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a0:e9:4f:20:65:55:f4:ee:bf:b4:05:6d:fe: c0:ef:3d:47:17:92:08:84:ae:f2:b8:30:13:0d:72: 40:e4:da:29:74:f2:be:51:ee:69:8d:87:aa:5d:e3: 05:f5:35:16:ef:60:f0:c4:f6:c5:d8:cf:71:80:41: 94:ff:54:4a:0c:08:30:2c:ea:6c:a5:b1:87:59:d2: 5d:3e:f1:7b:da:06:a4:d7:03:ab:83:58:df:b0:99: 80:66:71:61:1c:4f:e3:97:c3:1f:0d:ec:28:d9:95: d6:e2:58:57:74:c5:04:c8:47:73:0c:86:5b:5b:09: e7:0e:10:a1:70:c2:9f:91:39:75:b5:09:4d:4e:b0: 81:dd:9a:43:a6:0e:9e:8a:a6:8f:01:91:10:3f:54: 16:ba:90:f6:df:f3:24:b5:a3:ea:12:94:66:6c:15: 12:78:c8:87:e1:75:6e:91:1f:a3:74:6e:4a:31:e6: 86:5b:18:a1:7f:0b:09:ec:f3:93:b7:c0:97:ad:51: b3:3b:59:c3:9b:ad:2f:66:89:09:24:96:bf:e9:fc: e8:10:f8:2f:0e:7e:3e:50:82:03:57:47:3a:2f:ba: ba:1f:8c:b8:88:0f:50:81:25:a6:17:85:b6:3f:e6: ac:d2:8d:85:23:b4:04:64:82:cf:20:fe:48:40:84: a6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:58:CC:8F:CC:13:6F:EC:7C:4B:A0:AB:46:A6:20:DE:D6:3A:F5:5F X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:15:0d:2b:bf:05:6e:59:4c:c2:0a:5d:6e:12:15:3a:67:49: eb:ae:1b:f8:4d:d4:f5:4a:22:0d:65:b7:d7:0f:ee:fe:af:ff: 50:13:b4:b4:42:cb:d9:4e:f9:a6:c9:af:c1:70:b6:ad:83:59: da:78:a1:0f:8b:ef:40:20:c9:eb:ad:a8:22:20:cf:ae:91:86: 0a:8b:12:2c:be:ac:2d:a5:2c:61:a3:48:b7:98:65:4e:c5:70: 1c:8f:8b:dd:d8:d0:e0:5d:a7:47:d8:11:0b:6a:4d:ff:09:92: eb:67:e6:e1:56:cd:2a:a6:38:81:3e:73:d0:55:1d:cc:95:16: 68:7a:28:a6:34:36:b1:fb:9e:09:12:9f:99:1c:fc:dd:64:06: 70:e7:48:e4:af:2f:10:3e:58:a1:e2:ae:7f:2d:cf:11:cb:6f: 9c:31:c6:10:6c:b1:c8:d6:a7:2a:c9:59:67:be:f2:c0:99:dc: b7:98:0f:bb:9a:a8:b5:46:2d:f0:f0:cb:32:22:cd:75:99:06: 9c:9b:3b:2f:13:8a:70:42:df:a9:ef:02:39:4f:5c:f9:27:c7: 2a:f4:3f:9b:39:d3:fe:22:23:f6:16:57:55:2d:c9:82:69:1c: 8e:d7:15:03:ea:55:82:f5:de:25:76:d2:3d:64:7d:30:72:c1: cd:6b:96:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUwODIzMDIyMjE0WhcNMjUwODMwMDIyMjE0WjAYMRYwFAYD VQQDEw02OGE5MjVkNy0xZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaDpTyBlVfTuv7QFbf7A7z1HF5IIhK7yuDATDXJA5NopdPK+Ue5pjYeqXeMF 9TUW72DwxPbF2M9xgEGU/1RKDAgwLOpspbGHWdJdPvF72gak1wOrg1jfsJmAZnFh HE/jl8MfDewo2ZXW4lhXdMUEyEdzDIZbWwnnDhChcMKfkTl1tQlNTrCB3ZpDpg6e iqaPAZEQP1QWupD23/MktaPqEpRmbBUSeMiH4XVukR+jdG5KMeaGWxihfwsJ7POT t8CXrVGzO1nDm60vZokJJJa/6fzoEPgvDn4+UIIDV0c6L7q6H4y4iA9QgSWmF4W2 P+as0o2FI7QEZILPIP5IQISmqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpYzI/M E2/sfEugq0amIN7WOvVfMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6FQ0rvwVuWUzCCl1uEhU6Z0nrrhv4TdT1SiINZbfXD+7+r/9QE7S0 QsvZTvmmya/BcLatg1naeKEPi+9AIMnrragiIM+ukYYKixIsvqwtpSxho0i3mGVO xXAcj4vd2NDgXadH2BELak3/CZLrZ+bhVs0qpjiBPnPQVR3MlRZoeiimNDax+54J Ep+ZHPzdZAZw50jkry8QPlih4q5/Lc8Ry2+cMcYQbLHI1qcqyVlnvvLAmdy3mA+7 mqi1Ri3w8MsyIs11mQacmzsvE4pwQt+p7wI5T1z5J8cq9D+bOdP+IiP2FldVLcmC aRyO1xUD6lWC9d4ldtI9ZH0wcsHNa5Yh -----END CERTIFICATE-----Generated at Sat Aug 23 22:23:18 2025 by rpki-client