$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: kryqWEiae2ZGoQIeSkbiqRHGbPFOABCX7AAGK5m62R8= Subject key identifier: 97:82:38:6F:68:BD:AD:AE:7D:C4:D5:B3:48:43:63:DD:87:45:B4:C3 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 01EC Signing time: Thu 03 Jul 2025 02:36:43 +0000 Manifest this update: Thu 03 Jul 2025 02:36:42 +0000 Manifest next update: Thu 10 Jul 2025 02:36:42 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: I4F1kuBHDeiUokWjgvHYXe4fKvr8k7bAFO57xVDSKF4=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Jul 3 02:36:42 2025 GMT Not After : Jul 10 02:36:42 2025 GMT Subject: CN=6865ecba-96ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:9f:a9:ae:e2:68:e1:64:d4:eb:45:59:60: 05:01:30:bb:de:2c:5f:18:55:3d:b7:e7:88:a6:eb: 5b:2f:f0:75:78:28:98:8d:e6:48:5e:5e:d4:0d:ff: b5:ca:cd:07:64:90:05:4e:ce:f2:9f:2d:fa:6f:59: fa:1e:66:ee:ba:98:de:ac:a2:8d:20:ae:f9:1b:2d: 19:bd:f4:80:04:ec:7f:7b:98:cc:d5:ff:eb:3f:35: 2d:ab:31:b0:79:e9:6d:30:36:69:36:ce:58:ce:72: 9a:af:54:3a:33:b4:9d:2d:49:9c:87:f7:59:a2:76: 8c:51:3b:7c:db:42:94:03:e6:97:36:42:7f:5d:c7: c1:21:22:d5:75:fb:64:dd:b1:37:27:6f:4d:9e:01: 6a:62:12:1d:e5:c0:f5:42:7e:f9:06:5c:f4:1b:16: 95:06:0a:56:ee:b8:83:b7:2c:0b:be:a1:82:37:11: 17:17:34:26:03:a7:11:37:a0:93:69:69:53:8f:3d: bf:31:c5:5c:0f:4b:93:e0:f9:a5:75:c6:63:6d:9c: 80:db:1a:4b:6f:1b:98:15:f8:09:96:08:28:8e:43: ce:81:90:0c:dc:df:56:4d:ed:38:92:d7:14:04:ae: 06:f2:2c:e5:64:ab:6e:75:18:20:9c:d0:98:cf:34: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:82:38:6F:68:BD:AD:AE:7D:C4:D5:B3:48:43:63:DD:87:45:B4:C3 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:27:2d:fd:43:30:f5:31:a6:08:a6:5a:e2:44:f6:5d:ec:da: 74:c7:c2:83:b1:4b:c1:6a:7f:33:33:5d:3b:21:60:7d:ad:b3: 25:d5:ce:96:e6:a2:8f:72:03:15:ee:69:a5:45:81:d9:78:e7: 64:38:2d:02:86:17:20:e5:c8:70:a6:24:43:dd:52:f5:ab:3c: c5:ba:f2:3e:4e:75:81:d5:b1:f9:d3:a6:6b:d6:7b:f0:d5:7e: 40:ec:cd:7b:91:28:ef:ab:ac:3e:65:97:a5:53:74:a2:46:aa: 8f:9d:2f:9d:a6:fb:9c:67:72:70:d6:66:b0:02:c4:28:22:53: 56:ba:f1:8d:9e:05:63:f6:7d:85:92:07:50:0f:20:3a:59:30: f5:5d:cd:ea:85:3c:cc:27:3f:cd:83:3b:b6:b1:ea:bd:e2:1d: 49:e4:13:55:c1:30:2f:a5:87:ab:b9:cc:72:02:e5:27:5d:55: f6:13:06:dc:01:dc:2d:f1:9c:36:f3:2b:13:15:29:82:f0:31: 36:c1:32:ac:c8:67:16:2e:1d:35:91:f9:77:5f:2a:e6:59:f2: 28:81:b0:70:5c:77:37:0d:53:29:2c:71:a5:dc:20:de:3b:cb: cc:cf:6a:ea:d2:03:d9:5d:52:92:da:7d:f7:62:ff:24:9a:cc: 6d:cb:05:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUwNzAzMDIzNjQyWhcNMjUwNzEwMDIzNjQyWjAYMRYwFAYD VQQDEw02ODY1ZWNiYS05NmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwGfqa7iaOFk1OtFWWAFATC73ixfGFU9t+eIputbL/B1eCiYjeZIXl7UDf+1 ys0HZJAFTs7yny36b1n6HmbuupjerKKNIK75Gy0ZvfSABOx/e5jM1f/rPzUtqzGw eeltMDZpNs5YznKar1Q6M7SdLUmch/dZonaMUTt820KUA+aXNkJ/XcfBISLVdftk 3bE3J29NngFqYhId5cD1Qn75Blz0GxaVBgpW7riDtywLvqGCNxEXFzQmA6cRN6CT aWlTjz2/McVcD0uT4PmldcZjbZyA2xpLbxuYFfgJlggojkPOgZAM3N9WTe04ktcU BK4G8izlZKtudRggnNCYzzRSgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeCOG9o va2ufcTVs0hDY92HRbTDMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyJy39QzD1MaYIplriRPZd7Np0x8KDsUvBan8zM107IWB9rbMl1c6W 5qKPcgMV7mmlRYHZeOdkOC0Chhcg5chwpiRD3VL1qzzFuvI+TnWB1bH506Zr1nvw 1X5A7M17kSjvq6w+ZZelU3SiRqqPnS+dpvucZ3Jw1mawAsQoIlNWuvGNngVj9n2F kgdQDyA6WTD1Xc3qhTzMJz/Ngzu2seq94h1J5BNVwTAvpYerucxyAuUnXVX2Ewbc Adwt8Zw28ysTFSmC8DE2wTKsyGcWLh01kfl3XyrmWfIogbBwXHc3DVMpLHGl3CDe O8vMz2rq0gPZXVKS2n33Yv8kmsxtywX+ -----END CERTIFICATE-----Generated at Fri Jul 4 20:27:29 2025 by rpki-client