$ rpki-client -vvf rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.mft File: 75-XzrKSdlHWT6oC452-DaO3H5U.mft (raw, json) Hash identifier: DNaBXfh6uTLNQLDQw3l4MN5WoQGnYYcTrdGYbR4aFLw= Subject key identifier: E1:75:63:61:61:8E:41:AE:77:82:26:AD:D9:89:94:BE:D2:AC:FF:31 Authority key identifier: EF:9F:97:CE:B2:92:76:51:D6:4F:AA:02:E3:9D:BE:0D:A3:B7:1F:95 Certificate issuer: /CN=A9165588/serialNumber=EF9F97CEB2927651D64FAA02E39DBE0DA3B71F95 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.mft Manifest number: 18 Signing time: Thu 03 Apr 2025 07:19:03 +0000 Manifest this update: Thu 03 Apr 2025 07:19:03 +0000 Manifest next update: Thu 10 Apr 2025 07:19:03 +0000 Files and hashes: 1: 75-XzrKSdlHWT6oC452-DaO3H5U.crl (hash: KKvKCuRGCIeZcymiPh2ew3LTS/dgKWsy1mOSph5seq4=) 2: C405E494FCBF11EF8E586B7AC4F9AE02.roa (hash: 8p+dYc7w4P5cdTWL4po8oK48UBPSJ7b6JBGkywZrPZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.crl rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:19:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165588 Validity Not Before: Apr 3 07:19:03 2025 GMT Not After : Apr 10 07:19:03 2025 GMT Subject: CN=67ee3667-ab38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b6:3e:c6:eb:a9:1d:22:e7:b4:ec:05:9a:ee: d4:78:83:b8:94:e7:40:b5:8b:45:0f:9a:a2:10:b3: 31:63:2c:b3:f5:ce:ef:79:59:5e:28:b9:60:a5:c0: af:4a:0f:dd:3c:42:27:06:19:86:6f:c5:5d:78:e9: da:f3:be:6c:ef:33:68:32:f6:ad:05:1e:13:06:b5: 8f:bf:73:fd:a2:94:a5:40:8b:e8:a4:5a:08:5d:36: 74:33:80:b8:81:99:00:95:f8:5e:9d:47:16:0f:52: a0:20:3c:fe:63:03:07:ac:7b:1c:f8:58:c3:9e:da: b8:24:2a:8b:42:92:3a:37:a5:86:68:57:f1:1b:03: 57:56:a3:7b:d5:31:f0:20:7e:f3:d6:dc:cc:28:18: f3:66:a4:f9:11:9d:61:26:0e:62:d7:58:82:ef:22: b9:15:fd:68:71:aa:b4:2f:86:c5:33:7f:17:e2:72: c8:5c:da:2b:9c:e4:c6:50:c9:1e:d4:0a:35:8d:ba: 3b:ec:28:2d:c1:05:5d:35:ee:ab:2a:bc:e3:5a:31: 7f:c8:09:0f:88:a3:8a:51:5e:8c:eb:ac:88:36:32: bf:e4:2c:19:68:b3:b7:0b:78:c7:47:40:4e:ce:cb: fe:67:ba:37:39:14:14:08:e1:0f:30:dc:4a:6e:42: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:75:63:61:61:8E:41:AE:77:82:26:AD:D9:89:94:BE:D2:AC:FF:31 X509v3 Authority Key Identifier: keyid:EF:9F:97:CE:B2:92:76:51:D6:4F:AA:02:E3:9D:BE:0D:A3:B7:1F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:dc:5f:22:60:45:42:05:f9:15:86:d7:8c:54:ac:5d:00:70: 05:65:36:a6:32:8d:0d:12:90:aa:6c:bd:5f:df:d2:f0:98:b0: 16:32:19:37:59:dd:e1:f8:a7:7c:cc:7c:0f:cd:b7:82:df:0b: 60:13:85:da:32:9f:6a:3e:00:2d:cd:ab:9a:01:68:5c:dd:fb: e6:81:eb:c7:4e:42:1a:38:02:a2:ba:7f:ce:28:df:1c:66:bb: 7f:82:4c:a7:be:e1:ef:8f:a7:b4:9c:08:22:ba:1b:c1:2e:77: 9e:1b:99:a5:5d:cc:97:96:10:ce:20:3c:03:ae:fc:34:34:e8: f1:fd:29:5c:96:0b:a9:e3:bc:57:f9:c3:3a:25:c9:a3:e7:33: 99:61:9e:28:ed:be:af:43:fe:b6:44:40:93:c0:7a:16:db:15: db:f9:f2:77:bd:1b:23:72:b1:33:64:99:f8:85:e8:69:54:9d: b1:d4:f0:3b:e7:80:23:35:cb:26:23:3f:65:c2:00:7e:d9:f0: 35:07:14:f7:7c:27:81:04:bf:ae:31:92:f3:99:d2:cb:53:fe: f3:e2:be:6c:a8:57:17:cf:a2:bf:0c:8c:87:3c:30:b4:bd:53: a4:da:2d:a9:db:27:f6:61:dc:f9:b9:c3:a0:20:81:ed:94:8a: 3c:4b:1c:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTU4ODExMC8GA1UEBRMoRUY5Rjk3Q0VCMjkyNzY1MUQ2NEZBQTAyRTM5REJFMERB M0I3MUY5NTAeFw0yNTA0MDMwNzE5MDNaFw0yNTA0MTAwNzE5MDNaMBgxFjAUBgNV BAMTDTY3ZWUzNjY3LWFiMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPtj7G66kdIue07AWa7tR4g7iU50C1i0UPmqIQszFjLLP1zu95WV4ouWClwK9K D908QicGGYZvxV146drzvmzvM2gy9q0FHhMGtY+/c/2ilKVAi+ikWghdNnQzgLiB mQCV+F6dRxYPUqAgPP5jAwesexz4WMOe2rgkKotCkjo3pYZoV/EbA1dWo3vVMfAg fvPW3MwoGPNmpPkRnWEmDmLXWILvIrkV/WhxqrQvhsUzfxficshc2iuc5MZQyR7U CjWNujvsKC3BBV017qsqvONaMX/ICQ+Io4pRXozrrIg2Mr/kLBlos7cLeMdHQE7O y/5nujc5FBQI4Q8w3EpuQg3bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4XVjYWGO Qa53giat2YmUvtKs/zEwHwYDVR0jBBgwFoAU75+XzrKSdlHWT6oC452+DaO3H5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NTg4LzY5NDUzMUYyRkE4 NzExRUY4M0VERUMyREM0RjlBRTAyLzc1LVh6cktTZGxIV1Q2b0M0NTItRGFPM0g1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzUtWHpyS1NkbEhXVDZvQzQ1Mi1EYU8zSDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NTg4LzY5NDUzMUYyRkE4NzExRUY4M0VERUMyREM0RjlBRTAyLzc1LVh6cktTZGxI V1Q2b0M0NTItRGFPM0g1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABbcXyJgRUIF+RWG14xUrF0AcAVlNqYyjQ0SkKpsvV/f0vCYsBYyGTdZ 3eH4p3zMfA/Nt4LfC2AThdoyn2o+AC3Nq5oBaFzd++aB68dOQho4AqK6f84o3xxm u3+CTKe+4e+Pp7ScCCK6G8Eud54bmaVdzJeWEM4gPAOu/DQ06PH9KVyWC6njvFf5 wzolyaPnM5lhnijtvq9D/rZEQJPAehbbFdv58ne9GyNysTNkmfiF6GlUnbHU8Dvn gCM1yyYjP2XCAH7Z8DUHFPd8J4EEv64xkvOZ0stT/vPivmyoVxfPor8MjIc8MLS9 U6TaLanbJ/Zh3Pm5w6Agge2UijxLHMo= -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:32 2025 by rpki-client