$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: rk/UZEUjGSudZU9ur6uM5tN+2G7yyVd8maUKWHlJ91M= Subject key identifier: 88:14:6C:BF:BA:D8:36:33:A8:48:D0:72:87:98:56:89:2D:1E:15:85 Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 022B Signing time: Wed 05 Nov 2025 02:03:53 +0000 Manifest this update: Wed 05 Nov 2025 02:03:52 +0000 Manifest next update: Wed 12 Nov 2025 02:03:52 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: XRXFEBy7gu2l9JXbU8oSh/PhsFCcYDhVHMJ6zb0y1MM=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Nov 5 02:03:52 2025 GMT Not After : Nov 12 02:03:52 2025 GMT Subject: CN=690ab088-1b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:09:2d:8b:0c:f5:8d:f0:6e:10:89:fa:74:0c: f7:0b:31:b6:16:a5:77:3b:0e:4b:06:87:4a:64:00: bb:10:fa:fc:c5:72:4c:96:c5:33:1f:b6:ee:41:82: e5:61:b1:9d:51:3d:0e:74:89:87:57:73:29:f1:bf: 54:3b:5c:73:05:97:f9:6b:c1:b4:e0:ca:d0:4c:fd: f6:26:28:42:6f:e9:6e:05:3f:52:c0:f3:92:d9:f1: 89:9b:5b:d1:0f:b7:b5:93:c3:a1:46:43:e6:eb:29: 6b:8d:d7:94:17:ca:3f:2d:f9:d6:ba:9c:a1:1a:5c: 20:99:eb:22:b0:1c:ce:e3:33:a9:48:8c:6e:3e:e5: 41:28:34:78:11:ac:f0:36:bf:bc:cc:36:0e:74:bf: c8:a5:cd:a0:d8:52:6d:48:d7:ad:70:8d:ca:81:a5: 64:c2:b4:57:e5:01:28:b7:51:0a:b6:ff:2c:b3:9b: 3b:2c:64:4e:0a:74:c7:06:21:40:84:70:84:24:48: b9:25:1f:43:43:b9:90:5c:6d:3d:bd:f7:92:a5:c5: 25:d2:ca:eb:bd:cd:90:93:b9:c1:94:31:40:e0:80: 20:5b:6c:4f:d1:46:88:b2:32:9e:65:94:e6:cb:aa: b9:51:9c:76:cf:61:ef:60:d3:c3:b9:63:f2:f1:ab: 4b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:14:6C:BF:BA:D8:36:33:A8:48:D0:72:87:98:56:89:2D:1E:15:85 X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:17:70:73:6e:dd:47:e7:3c:97:99:63:82:c2:19:64:8a:ac: c2:d0:ed:de:10:c8:24:7e:db:a6:3d:06:34:23:af:e8:2e:b8: 85:61:71:f9:00:fc:5e:8f:44:06:0f:e5:a8:56:73:20:de:c8: a8:6d:7f:d7:8a:77:ef:37:57:9c:c2:29:b4:97:f0:f6:bb:1d: 00:fa:51:14:99:14:d6:f2:c5:80:17:bf:3c:d2:3d:ea:a6:aa: 67:50:2c:e0:96:8a:46:e1:30:37:5e:31:ba:b8:51:fb:c5:8b: 3e:88:33:82:83:ac:22:b9:97:14:a4:36:2a:9e:40:ce:eb:3c: 79:0d:13:0a:15:16:3b:2a:a1:82:17:a9:c6:37:7a:ec:01:f6: f1:19:b1:24:b3:fc:67:41:11:55:41:7e:2c:c3:e0:91:7f:29: 89:3b:69:5d:0d:5c:9e:1f:7e:5a:d7:d0:b7:4b:c4:29:0a:95: 8f:88:af:14:91:36:4e:79:2e:91:e1:1b:46:75:8a:19:3d:66: 08:81:76:f4:cb:19:df:f0:99:ff:47:27:c5:e1:91:ab:71:20: 21:cf:d0:82:94:0e:55:cd:2b:c0:c1:c9:f9:97:cf:51:f3:de: 4f:70:77:db:19:64:58:03:fb:38:65:48:b1:0d:90:c9:c8:6c: de:ce:f5:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUxMTA1MDIwMzUyWhcNMjUxMTEyMDIwMzUyWjAYMRYwFAYD VQQDEw02OTBhYjA4OC0xYjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQktiwz1jfBuEIn6dAz3CzG2FqV3Ow5LBodKZAC7EPr8xXJMlsUzH7buQYLl YbGdUT0OdImHV3Mp8b9UO1xzBZf5a8G04MrQTP32JihCb+luBT9SwPOS2fGJm1vR D7e1k8OhRkPm6ylrjdeUF8o/LfnWupyhGlwgmesisBzO4zOpSIxuPuVBKDR4Eazw Nr+8zDYOdL/Ipc2g2FJtSNetcI3KgaVkwrRX5QEot1EKtv8ss5s7LGROCnTHBiFA hHCEJEi5JR9DQ7mQXG09vfeSpcUl0srrvc2Qk7nBlDFA4IAgW2xP0UaIsjKeZZTm y6q5UZx2z2HvYNPDuWPy8atLQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgUbL+6 2DYzqEjQcoeYVoktHhWFMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQF3Bzbt1H5zyXmWOCwhlkiqzC0O3eEMgkftumPQY0I6/oLriFYXH5 APxej0QGD+WoVnMg3siobX/XinfvN1ecwim0l/D2ux0A+lEUmRTW8sWAF7880j3q pqpnUCzglopG4TA3XjG6uFH7xYs+iDOCg6wiuZcUpDYqnkDO6zx5DRMKFRY7KqGC F6nGN3rsAfbxGbEks/xnQRFVQX4sw+CRfymJO2ldDVyeH35a19C3S8QpCpWPiK8U kTZOeS6R4RtGdYoZPWYIgXb0yxnf8Jn/RyfF4ZGrcSAhz9CClA5VzSvAwcn5l89R 895PcHfbGWRYA/s4ZUixDZDJyGzezvVC -----END CERTIFICATE-----Generated at Wed Nov 5 15:52:02 2025 by rpki-client