$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: Dy89+rN2XI7rNS2X6iJaJhDoG8U8e7zFzrysdgKwwvo= Subject key identifier: 07:C2:B9:8C:92:79:67:9D:F2:E8:6A:1A:FB:AB:3A:1D:F2:7F:D6:33 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 028D Signing time: Wed 13 May 2026 01:46:22 +0000 Manifest this update: Wed 13 May 2026 01:46:21 +0000 Manifest next update: Wed 20 May 2026 01:46:21 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: HYobWGwtbblWXx+pQIFGCdLv5xTuX0GBZ1+eozLqE9E=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: D5QNOEYZTaVxGTG0sg1pVADh30TxHcQUWw6CHAWGbF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: May 13 01:46:21 2026 GMT Not After : May 20 01:46:21 2026 GMT Subject: CN=6a03d7ed-11ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6b:b0:5f:94:9d:03:a1:b3:60:33:ee:e8:7e: 22:8b:1d:60:91:2f:91:17:42:af:35:10:1c:e3:9f: ec:d2:75:14:5a:0e:84:a5:df:72:4b:43:d1:d0:70: ae:f9:c6:73:d7:12:f2:64:00:5d:fe:4c:4c:ea:1d: df:b9:ad:1b:0e:e4:3d:6d:a4:9a:16:cb:80:cf:b2: 9c:90:6f:35:33:d5:0a:9c:9e:ae:3a:e8:c4:ce:67: 2b:e1:2a:ad:55:20:66:6e:41:b3:ed:2f:2b:46:e9: a8:f1:ea:e3:1f:f3:51:7d:50:2c:e6:17:bb:b1:23: 2e:59:9a:76:54:7d:ce:10:54:a5:8b:c0:0d:e4:c6: 67:19:9f:da:2c:c0:c7:34:5c:cb:c0:bb:bf:61:b5: c7:f1:36:2e:43:e3:8f:d5:ce:0a:73:32:1f:47:ae: d2:d6:60:9b:c9:ea:f8:65:8a:09:d9:f1:04:2c:c4: 9e:71:60:2f:22:6d:3a:71:3a:63:a2:ce:eb:0a:f4: de:12:a5:f1:49:d9:e8:fb:85:4a:d3:29:25:51:6c: 7c:e1:e3:51:0c:bc:53:bd:c1:a8:13:87:db:9f:6c: c4:60:6f:e2:b1:d5:c2:86:44:a6:47:a3:6e:7f:46: 21:dc:06:3d:6b:b8:ce:c5:7c:c3:5a:94:65:b1:31: df:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C2:B9:8C:92:79:67:9D:F2:E8:6A:1A:FB:AB:3A:1D:F2:7F:D6:33 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:93:21:59:63:93:ef:e5:a6:e4:4d:17:3a:7c:86:ed:96:70: 45:a0:ad:34:7a:3a:84:f1:24:c8:2d:cd:d6:03:e5:6f:35:c0: 15:43:8b:6c:41:a2:c1:95:b7:b9:ba:35:1d:5e:4e:89:0d:a2: 62:83:ae:08:b2:39:27:3a:68:73:70:34:f1:96:dc:26:68:be: 17:29:98:a6:d3:4f:de:a1:db:da:78:d0:69:2c:c4:5d:97:bc: 9d:56:c7:ac:92:b7:6e:16:87:b4:8e:9e:bb:10:81:9f:1d:1f: f6:52:d8:0d:27:5e:fe:67:f4:19:a6:6c:29:17:9b:0d:28:66: 89:c0:1c:70:4d:ea:cd:ff:b6:77:12:d1:f9:83:a9:c6:74:b2: 0e:45:ea:63:fa:bb:29:12:45:2e:40:08:5a:8b:4e:bd:ed:c3: 05:5d:55:64:13:55:78:c0:34:ef:b3:3a:6b:db:1f:64:80:9c: 59:26:46:14:18:45:fe:6b:6c:65:2f:83:6d:64:28:1e:56:46: 29:33:86:9e:fe:51:16:19:51:08:34:af:59:12:2c:6b:bf:11: fb:af:53:7e:7b:e7:b7:7e:ea:5f:b8:ae:9d:73:54:52:7c:0a: 70:f8:a4:9f:45:47:4a:77:0d:74:37:82:de:ad:de:5a:ad:83: 8b:e7:ab:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwNTEzMDE0NjIxWhcNMjYwNTIwMDE0NjIxWjAYMRYwFAYD VQQDEw02YTAzZDdlZC0xMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WuwX5SdA6GzYDPu6H4iix1gkS+RF0KvNRAc45/s0nUUWg6Epd9yS0PR0HCu +cZz1xLyZABd/kxM6h3fua0bDuQ9baSaFsuAz7KckG81M9UKnJ6uOujEzmcr4Sqt VSBmbkGz7S8rRumo8erjH/NRfVAs5he7sSMuWZp2VH3OEFSli8AN5MZnGZ/aLMDH NFzLwLu/YbXH8TYuQ+OP1c4KczIfR67S1mCbyer4ZYoJ2fEELMSecWAvIm06cTpj os7rCvTeEqXxSdno+4VK0yklUWx84eNRDLxTvcGoE4fbn2zEYG/isdXChkSmR6Nu f0Yh3AY9a7jOxXzDWpRlsTHfAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAfCuYyS eWed8uhqGvurOh3yf9YzMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg5MhWWOT7+Wm5E0XOnyG7ZZwRaCtNHo6hPEkyC3N1gPlbzXAFUOLbEGiwZW3 ubo1HV5OiQ2iYoOuCLI5Jzpoc3A08ZbcJmi+FymYptNP3qHb2njQaSzEXZe8nVbH rJK3bhaHtI6euxCBnx0f9lLYDSde/mf0GaZsKRebDShmicAccE3qzf+2dxLR+YOp xnSyDkXqY/q7KRJFLkAIWotOve3DBV1VZBNVeMA077M6a9sfZICcWSZGFBhF/mts ZS+DbWQoHlZGKTOGnv5RFhlRCDSvWRIsa78R+69Tfnvnt37qX7iunXNUUnwKcPik n0VHSncNdDeC3q3eWq2Di+erUA== -----END CERTIFICATE-----Generated at Wed May 13 11:01:04 2026 by rpki-client