$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: UwPMiMS0IuMRkPzhqNIVbjlQ3Iba18iPyqLH2nfxlKk= Subject key identifier: 1A:FB:64:B3:5E:E9:6B:BF:91:F0:AB:83:C4:E3:A3:54:EF:7C:02:40 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B79 Signing time: Sat 18 Oct 2025 19:54:31 +0000 Manifest this update: Sat 18 Oct 2025 19:54:30 +0000 Manifest next update: Sat 25 Oct 2025 19:54:30 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: Rgkd3feZqUbbtpaqYT7NcUkJ5jMCcsWttrY+oBRMaNI=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: Oct 18 19:54:30 2025 GMT Not After : Oct 25 19:54:30 2025 GMT Subject: CN=68f3f076-2f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e1:04:45:be:c3:ce:63:ff:32:e1:d3:e8:71: 38:fd:85:91:29:7a:fa:ec:0f:54:78:03:09:8c:50: 28:b7:aa:9a:ae:9b:cd:ae:19:8a:e2:43:fa:dd:d7: 72:82:92:16:7c:6e:ce:ed:1b:91:7b:a0:cb:5e:8e: b8:69:82:e6:19:5c:6b:cb:d3:18:d8:e8:eb:40:13: 7f:8b:5a:bf:e8:94:9f:25:78:e0:f6:28:cb:6e:02: 85:e3:fa:95:e5:a7:86:64:6a:35:75:4e:c5:ab:1f: ce:fd:2f:ae:8e:e7:e9:c9:82:d6:70:c0:19:f1:02: ac:52:f5:8a:c3:ce:3e:32:f4:8a:61:88:40:b7:28: 75:6f:c1:b4:95:7a:3f:b7:7a:16:e3:8b:d3:62:85: 81:6f:a2:7f:3c:7b:04:ff:c2:3d:df:1f:9f:5d:da: 47:98:ca:93:15:e7:1c:ea:00:d4:06:da:91:6d:f7: 16:e5:fb:79:ed:96:05:60:58:37:78:20:17:40:93: e9:e9:b8:0c:68:21:1d:ac:e8:74:12:52:85:02:6a: ab:5c:0b:c0:c6:a4:6a:3c:e8:bf:5a:16:90:88:24: ee:5e:60:dd:91:df:a9:ac:68:ba:da:fc:4e:4f:ef: 5f:b3:54:d1:94:96:be:50:be:a5:7e:2d:bd:2b:99: a6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FB:64:B3:5E:E9:6B:BF:91:F0:AB:83:C4:E3:A3:54:EF:7C:02:40 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:bc:37:3d:b1:c3:f3:3f:3c:cb:c6:61:2c:39:11:4e:a8:6f: 05:a0:37:00:7b:b7:01:c7:6b:7d:7c:7b:6d:78:db:24:60:4b: e9:39:01:5f:b5:cd:41:5a:16:68:fc:b6:12:70:d7:35:20:fa: 7a:a4:fb:fb:27:5c:63:9e:3c:35:f7:26:cd:35:68:4f:f5:6c: 86:72:1c:19:59:06:56:6d:dd:a5:ba:d8:95:d5:a4:fb:f1:da: 95:85:ef:92:c5:ee:0e:4c:18:ef:58:c1:d7:ae:bd:c1:52:d0: 77:d6:5f:2f:1d:cf:a0:95:9f:fd:6b:e6:91:18:e2:f5:d7:da: e0:5e:56:b6:25:16:67:3f:db:47:70:76:97:6c:49:34:a3:c9: 95:ed:67:14:b6:1d:e6:b8:24:70:27:29:8a:04:b0:f6:b3:f3: eb:9b:7b:61:b5:d3:65:dd:9b:96:80:c2:c9:cb:fc:18:cb:1b: aa:6c:de:4b:31:67:a8:8b:87:17:b8:23:ce:36:a6:bc:af:ad: bf:13:81:e1:83:61:10:7f:71:b0:d9:3b:70:f3:f7:06:68:db: 2c:30:ed:77:e1:25:8b:5e:f6:8a:fa:5e:2e:b9:13:9a:8a:b3: 6c:b4:f0:7b:2c:56:01:ab:c8:fb:78:70:32:29:a4:9b:c3:5f: 9e:3c:59:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUxMDE4MTk1NDMwWhcNMjUxMDI1MTk1NDMwWjAYMRYwFAYD VQQDEw02OGYzZjA3Ni0yZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+EERb7DzmP/MuHT6HE4/YWRKXr67A9UeAMJjFAot6qarpvNrhmK4kP63ddy gpIWfG7O7RuRe6DLXo64aYLmGVxry9MY2OjrQBN/i1q/6JSfJXjg9ijLbgKF4/qV 5aeGZGo1dU7Fqx/O/S+ujufpyYLWcMAZ8QKsUvWKw84+MvSKYYhAtyh1b8G0lXo/ t3oW44vTYoWBb6J/PHsE/8I93x+fXdpHmMqTFecc6gDUBtqRbfcW5ft57ZYFYFg3 eCAXQJPp6bgMaCEdrOh0ElKFAmqrXAvAxqRqPOi/WhaQiCTuXmDdkd+prGi62vxO T+9fs1TRlJa+UL6lfi29K5mm/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr7ZLNe 6Wu/kfCrg8Tjo1TvfAJAMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALvDc9scPzPzzLxmEsORFOqG8FoDcAe7cBx2t9fHtteNskYEvpOQFf tc1BWhZo/LYScNc1IPp6pPv7J1xjnjw19ybNNWhP9WyGchwZWQZWbd2lutiV1aT7 8dqVhe+Sxe4OTBjvWMHXrr3BUtB31l8vHc+glZ/9a+aRGOL119rgXla2JRZnP9tH cHaXbEk0o8mV7WcUth3muCRwJymKBLD2s/Prm3thtdNl3ZuWgMLJy/wYyxuqbN5L MWeoi4cXuCPONqa8r62/E4Hhg2EQf3Gw2Ttw8/cGaNssMO134SWLXvaK+l4uuROa irNstPB7LFYBq8j7eHAyKaSbw1+ePFno -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:30 2025 by rpki-client