$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: ETA0JgS6hrgApa/B665h15r9f+tV/CvkaOYnY9hQkik= Subject key identifier: 6E:B7:9F:FB:94:91:51:87:24:62:FC:1C:6B:C3:E4:D9:4B:01:47:9E Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 027F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 027A Signing time: Sun 05 Apr 2026 01:26:36 +0000 Manifest this update: Sun 05 Apr 2026 01:26:36 +0000 Manifest next update: Sun 12 Apr 2026 01:26:36 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: apP+vvvr3nIhWS3eU2J5cXMIshPbqSWN1oGF1gZihfY=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: D5QNOEYZTaVxGTG0sg1pVADh30TxHcQUWw6CHAWGbF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Apr 5 01:26:36 2026 GMT Not After : Apr 12 01:26:36 2026 GMT Subject: CN=69d1ba4c-d01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:84:f3:02:f0:bc:22:24:be:7c:72:27:63:ee: 3d:0c:25:a3:05:61:7c:86:64:2a:0c:b0:f9:2f:df: 41:66:dd:98:53:3d:9f:c2:19:ff:dc:0e:af:fd:c7: 00:68:9e:5b:83:fe:6a:8b:17:25:a1:2b:93:8d:9b: 77:5b:e9:c0:be:23:42:fb:3a:21:86:cf:b3:e0:b5: 7e:bb:33:b7:fb:c3:b6:c2:e7:06:a3:43:2a:9d:cf: 4f:e2:f2:56:22:a8:66:59:28:dd:e9:91:8e:2d:0d: 68:05:6c:60:81:2c:dc:36:61:56:9b:63:3c:89:db: c4:51:f1:8c:6a:52:fe:08:37:d3:63:72:a1:e4:1a: 65:05:46:30:6f:35:dd:87:01:cb:dd:aa:c7:8f:7a: 58:1d:88:02:10:2b:6b:fc:6a:1c:ac:64:d2:50:2f: 67:10:8f:6c:3f:23:86:05:85:05:89:31:d3:c1:b5: 7b:81:e4:01:b9:08:85:89:df:5f:68:a4:b2:e1:b8: 58:5f:67:b5:a8:9b:63:e3:be:24:82:35:41:e8:7d: 62:3d:dd:91:a3:74:f5:04:17:f9:fa:4b:70:24:3a: 65:4a:96:ed:38:7f:94:cb:07:80:95:c4:92:c9:35: 42:a8:e0:26:67:ae:13:14:8d:f4:46:25:3b:4b:8d: fc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B7:9F:FB:94:91:51:87:24:62:FC:1C:6B:C3:E4:D9:4B:01:47:9E X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:72:ab:66:15:43:47:73:89:b7:71:17:f7:0c:f5:3a:30:1b: 98:66:67:d6:af:cf:33:b9:c8:c7:3c:33:9a:83:9e:1e:31:54: 20:cd:05:52:ef:b9:8d:a7:07:fc:32:68:25:10:93:6b:e4:43: 75:39:06:ce:a4:33:f2:6c:a0:e3:76:2b:8e:00:57:9b:95:4a: f0:60:83:8b:6d:3c:71:f5:4e:d7:11:bd:14:33:c0:0d:47:9b: 36:65:cd:c8:5c:22:74:89:08:cf:85:88:53:e6:3c:c5:ee:c2: 14:8b:fa:a9:b8:75:fb:c1:df:32:56:d4:b1:6b:82:09:e0:d0: 2e:71:54:ad:1a:e4:95:83:78:e5:4a:fc:6d:7f:cb:25:6c:71: f0:2f:e0:4e:17:3b:b7:53:33:1b:83:e7:f9:72:b2:1d:1f:ab: d8:c3:bd:ae:73:0d:da:5c:88:05:38:04:39:10:bb:ad:4e:de: 76:b2:76:0c:92:a1:a6:94:74:69:14:e0:2d:2b:27:c3:b1:32: 09:55:be:fe:0d:f8:f4:35:77:40:d1:7a:f2:d5:ec:42:8c:8c: 30:8e:4d:80:2c:f7:fc:76:50:c2:f4:60:0d:eb:8e:c1:d1:f8: fe:92:55:e3:1b:cc:9d:4b:54:0e:fd:38:df:40:ed:c2:73:da: 73:9b:cf:59 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjYwNDA1MDEyNjM2WhcNMjYwNDEyMDEyNjM2WjAYMRYwFAYD VQQDEw02OWQxYmE0Yy1kMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk4TzAvC8IiS+fHInY+49DCWjBWF8hmQqDLD5L99BZt2YUz2fwhn/3A6v/ccA aJ5bg/5qixcloSuTjZt3W+nAviNC+zohhs+z4LV+uzO3+8O2wucGo0Mqnc9P4vJW IqhmWSjd6ZGOLQ1oBWxggSzcNmFWm2M8idvEUfGMalL+CDfTY3Kh5BplBUYwbzXd hwHL3arHj3pYHYgCECtr/GocrGTSUC9nEI9sPyOGBYUFiTHTwbV7geQBuQiFid9f aKSy4bhYX2e1qJtj474kgjVB6H1iPd2Ro3T1BBf5+ktwJDplSpbtOH+UyweAlcSS yTVCqOAmZ64TFI30RiU7S438wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG63n/uU kVGHJGL8HGvD5NlLAUeeMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYnKrZhVDR3OJt3EX9wz1OjAbmGZn1q/PM7nIxzwzmoOeHjFUIM0FUu+5jacH /DJoJRCTa+RDdTkGzqQz8myg43YrjgBXm5VK8GCDi208cfVO1xG9FDPADUebNmXN yFwidIkIz4WIU+Y8xe7CFIv6qbh1+8HfMlbUsWuCCeDQLnFUrRrklYN45Ur8bX/L JWxx8C/gThc7t1MzG4Pn+XKyHR+r2MO9rnMN2lyIBTgEORC7rU7edrJ2DJKhppR0 aRTgLSsnw7EyCVW+/g349DV3QNF68tXsQoyMMI5NgCz3/HZQwvRgDeuOwdH4/pJV 4xvMnUtUDv0430DtwnPac5vPWQ== -----END CERTIFICATE-----Generated at Mon Apr 6 10:11:18 2026 by rpki-client