$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: YdBokffYBMku4GqhkvSpRo4IAKbjfFAOOMXSxcET/6o= Subject key identifier: 28:57:98:AE:0D:AB:8F:5C:C4:CE:C5:33:E2:B2:35:16:6B:0E:25:66 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 026D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 0268 Signing time: Mon 02 Mar 2026 00:24:29 +0000 Manifest this update: Mon 02 Mar 2026 00:24:27 +0000 Manifest next update: Mon 09 Mar 2026 00:24:27 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: DvSMnJy+xL2lqb/+xTMmSVlw5u4fL8rjOEtvxBwd58I=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: D5QNOEYZTaVxGTG0sg1pVADh30TxHcQUWw6CHAWGbF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Mar 2 00:24:27 2026 GMT Not After : Mar 9 00:24:27 2026 GMT Subject: CN=69a4d8bc-eaed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f1:73:57:90:d5:f4:38:5e:c7:dd:ee:58:d4: ce:7a:74:9f:ac:34:16:c8:44:bc:24:0e:94:1c:79: 28:9f:89:23:fa:f7:29:5f:a2:98:23:51:09:4e:15: f4:29:80:6b:96:f1:e8:fd:39:75:9d:bb:f6:c7:c3: 0a:bf:77:3d:a1:80:a0:a6:73:6e:57:4a:6f:56:33: 82:fd:dc:cb:0b:7a:46:7b:13:c6:ba:e9:31:20:8e: 54:68:c5:03:21:4f:4c:5b:8d:b3:85:ae:9f:0a:11: b7:c9:14:45:81:6d:ef:7a:37:2b:d3:a2:70:17:69: 68:a1:93:f6:4f:aa:c2:13:9d:92:48:cc:84:37:b0: e7:0d:cf:30:c9:16:3e:a5:f2:ff:7b:f3:77:81:a1: 41:a7:60:06:61:d1:55:93:e9:7c:65:38:41:60:ad: 2e:b6:6c:3b:14:a9:4d:d5:d8:b6:f5:c0:87:b5:42: f8:ae:22:8c:25:92:14:d0:30:8b:07:00:98:68:7a: ba:a3:b7:04:6d:fb:a7:b0:de:5c:2d:9a:c9:6a:39: ed:9c:aa:33:2b:e9:79:d6:3d:40:6f:44:dd:0c:01: 49:37:95:00:ce:9d:1d:62:89:e0:d5:cf:a6:7d:2d: a5:ec:da:20:e9:41:d2:08:98:1e:d1:c5:32:18:ca: 23:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:57:98:AE:0D:AB:8F:5C:C4:CE:C5:33:E2:B2:35:16:6B:0E:25:66 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:a6:e7:49:0b:81:88:33:43:77:1b:c4:60:8d:3d:39:49:f4: 3c:fc:5a:9b:95:5d:db:8a:4c:1f:35:bc:e8:c4:97:99:6d:5f: 46:ab:26:95:e7:8a:ef:76:8d:46:6e:99:ea:50:59:f5:4a:c9: 7c:6f:c5:a3:81:7b:99:ce:3a:4f:cd:3d:87:70:73:cb:d3:8e: 65:a9:2a:a1:e3:56:34:06:96:8f:4a:ad:07:9c:2f:8f:a7:6a: d8:a1:fa:b7:4d:c0:ea:e5:0d:07:6b:ae:d7:09:65:ac:94:2e: a2:8c:08:25:c8:e5:da:f4:4e:11:7b:d5:06:02:9f:8b:56:36: d3:9d:d7:d1:b2:d3:ba:d9:44:7e:c8:90:68:7c:0c:eb:26:46: b7:09:4d:8c:5b:d2:24:5b:6e:23:38:7b:39:2f:c2:9a:b2:86: 46:9c:f7:bd:51:32:e5:55:c2:f9:83:e3:65:b5:46:f2:21:9c: d7:b7:35:8b:3f:6c:48:cd:c6:29:99:fc:2c:2a:91:9f:e9:c4: a6:07:ef:60:46:d7:65:2c:30:c6:6e:96:74:d1:78:e5:f1:7f: a9:f5:96:b1:09:9e:a4:a9:02:ec:91:8b:f8:d0:33:ef:b0:7c: 08:71:bf:51:30:78:9b:2f:3e:db:aa:8d:0c:e3:3d:7d:c0:c0: b1:9f:2a:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwMzAyMDAyNDI3WhcNMjYwMzA5MDAyNDI3WjAYMRYwFAYD VQQDEw02OWE0ZDhiYy1lYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfFzV5DV9Dhex93uWNTOenSfrDQWyES8JA6UHHkon4kj+vcpX6KYI1EJThX0 KYBrlvHo/Tl1nbv2x8MKv3c9oYCgpnNuV0pvVjOC/dzLC3pGexPGuukxII5UaMUD IU9MW42zha6fChG3yRRFgW3vejcr06JwF2looZP2T6rCE52SSMyEN7DnDc8wyRY+ pfL/e/N3gaFBp2AGYdFVk+l8ZThBYK0utmw7FKlN1di29cCHtUL4riKMJZIU0DCL BwCYaHq6o7cEbfunsN5cLZrJajntnKozK+l51j1Ab0TdDAFJN5UAzp0dYong1c+m fS2l7Nog6UHSCJge0cUyGMojbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFChXmK4N q49cxM7FM+KyNRZrDiVmMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF6bnSQuBiDNDdxvEYI09OUn0PPxam5Vd24pMHzW86MSXmW1fRqsmleeK73aN Rm6Z6lBZ9UrJfG/Fo4F7mc46T809h3Bzy9OOZakqoeNWNAaWj0qtB5wvj6dq2KH6 t03A6uUNB2uu1wllrJQuoowIJcjl2vROEXvVBgKfi1Y2053X0bLTutlEfsiQaHwM 6yZGtwlNjFvSJFtuIzh7OS/CmrKGRpz3vVEy5VXC+YPjZbVG8iGc17c1iz9sSM3G KZn8LCqRn+nEpgfvYEbXZSwwxm6WdNF45fF/qfWWsQmepKkC7JGL+NAz77B8CHG/ UTB4my8+26qNDOM9fcDAsZ8qgg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:20:34 2026 by rpki-client