$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: PVlfNV72JhgcXYzLaG+ItZig76d6ulLfp2i9qCh6+XM= Subject key identifier: 64:6A:57:2B:69:13:0F:8F:8B:48:D7:55:C5:39:45:D9:88:5F:34:8A Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 02A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 029D Signing time: Thu 11 Jun 2026 03:44:20 +0000 Manifest this update: Thu 11 Jun 2026 03:44:20 +0000 Manifest next update: Thu 18 Jun 2026 03:44:20 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: XeHweUtOffVtM3mZJWIxsdqdQK5a3tY8fdC4yTFdur0=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: APIqB/dvvUVn5+cObtrosdByB0+EzYXdZcA3HC29e9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Jun 11 03:44:20 2026 GMT Not After : Jun 18 03:44:20 2026 GMT Subject: CN=6a2a2f14-7be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:43:e1:dd:09:1e:57:77:24:d7:7a:e8:e3:47: 5b:49:fd:eb:a3:26:6c:97:47:8f:c5:d0:f7:bc:dd: 08:02:d4:b5:94:58:58:38:81:98:4a:98:1d:29:63: 51:9a:f7:49:c8:0b:26:03:fa:5e:1a:be:a8:c2:53: 2a:7d:3c:ee:a2:af:df:bd:0a:37:cb:15:68:6e:fb: d8:2f:62:10:e1:18:c7:ee:4c:1d:3e:8f:3c:b9:c3: ed:5c:54:60:e6:a4:2b:f0:ec:a3:9c:ee:23:c5:7d: d8:a4:50:d1:2b:ed:95:58:76:85:af:7c:d9:aa:fa: f0:6b:57:e3:c9:86:d7:99:6c:30:16:63:eb:ca:48: 33:e3:d7:9d:bf:9d:9f:ee:1c:d4:cb:8b:f0:54:07: d0:56:79:7e:ab:d8:c2:1b:33:e8:d6:ca:40:e7:dd: 6f:82:85:0c:2d:c0:a8:d5:15:9c:b2:b5:9a:77:a7: 27:3d:07:fe:0a:76:f7:c0:e0:91:63:fd:a1:69:43: a4:9a:b5:d6:69:09:01:52:26:6c:d6:a0:76:c8:09: 4b:91:ee:3f:8b:e7:b5:35:5c:8a:0f:5c:49:c0:23: 84:d8:27:4c:e1:93:4b:cc:cc:97:f5:86:dd:e7:89: 96:9c:10:fb:4c:32:76:0a:a3:c4:95:08:31:01:07: 63:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6A:57:2B:69:13:0F:8F:8B:48:D7:55:C5:39:45:D9:88:5F:34:8A X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:99:ac:89:26:d7:a4:f1:5d:bc:0a:41:41:79:79:dc:4a:07: 67:c1:6a:b2:69:3c:37:b3:c8:e6:14:fe:02:a3:8c:0b:71:de: 4b:be:7b:4b:9b:f8:38:4c:b2:8b:bf:bf:2f:3a:54:f9:61:df: 5e:3a:ab:bf:1c:4f:be:c2:2a:06:5e:40:11:ba:77:f6:ba:d2: 40:f4:cd:d4:5c:03:fc:ea:ba:18:31:43:71:24:4d:af:10:c4: db:23:b8:a2:7e:36:7f:cd:f1:9c:af:a8:5d:81:f9:ec:3e:dc: bd:94:64:6c:4d:89:54:a2:51:6a:ab:15:58:f5:7f:78:59:0b: ff:0b:de:10:32:ee:d3:dc:8d:fc:fb:58:0d:68:6a:7f:8c:d6: c1:f4:c7:e6:c1:37:a4:ba:8d:88:cf:88:87:1c:fd:f2:01:14: 76:e7:e7:ca:29:52:84:6a:1f:35:79:36:ca:7d:3a:60:de:71: b8:d0:b1:1d:02:e3:9a:c4:56:90:7a:13:42:fb:85:78:53:e5: 3e:70:c9:de:e0:77:c4:90:4c:2c:a9:34:4c:fe:29:7e:7f:93: 75:f9:ae:9f:ce:18:0f:6a:04:54:ad:99:de:c0:62:ee:f4:aa: 46:1d:42:00:74:3d:fb:53:7e:18:9e:59:a7:36:a9:aa:35:f3: b9:55:85:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwNjExMDM0NDIwWhcNMjYwNjE4MDM0NDIwWjAYMRYwFAYD VQQDEw02YTJhMmYxNC03YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0Ph3QkeV3ck13ro40dbSf3royZsl0ePxdD3vN0IAtS1lFhYOIGYSpgdKWNR mvdJyAsmA/peGr6owlMqfTzuoq/fvQo3yxVobvvYL2IQ4RjH7kwdPo88ucPtXFRg 5qQr8OyjnO4jxX3YpFDRK+2VWHaFr3zZqvrwa1fjyYbXmWwwFmPrykgz49edv52f 7hzUy4vwVAfQVnl+q9jCGzPo1spA591vgoUMLcCo1RWcsrWad6cnPQf+Cnb3wOCR Y/2haUOkmrXWaQkBUiZs1qB2yAlLke4/i+e1NVyKD1xJwCOE2CdM4ZNLzMyX9Ybd 54mWnBD7TDJ2CqPElQgxAQdjWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGRqVytp Ew+Pi0jXVcU5RdmIXzSKMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABJmsiSbXpPFdvApBQXl53EoHZ8Fqsmk8N7PI5hT+AqOMC3HeS757S5v4OEyy i7+/LzpU+WHfXjqrvxxPvsIqBl5AEbp39rrSQPTN1FwD/Oq6GDFDcSRNrxDE2yO4 on42f83xnK+oXYH57D7cvZRkbE2JVKJRaqsVWPV/eFkL/wveEDLu09yN/PtYDWhq f4zWwfTH5sE3pLqNiM+Ihxz98gEUdufnyilShGofNXk2yn06YN5xuNCxHQLjmsRW kHoTQvuFeFPlPnDJ3uB3xJBMLKk0TP4pfn+Tdfmun84YD2oEVK2Z3sBi7vSqRh1C AHQ9+1N+GJ5ZpzapqjXzuVWF0Q== -----END CERTIFICATE-----Generated at Sat Jun 13 02:23:37 2026 by rpki-client