$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: 10rGVOeHqVu+UfHMgiLMNsNkoWxko6N8uu2hiSHirf0= Subject key identifier: BF:43:28:AA:7F:29:36:A4:A2:28:FD:39:0E:B6:C0:B8:39:D4:6C:1B Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B42 Signing time: Wed 02 Jul 2025 19:21:51 +0000 Manifest this update: Wed 02 Jul 2025 19:21:51 +0000 Manifest next update: Wed 09 Jul 2025 19:21:51 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: UXCbD6+ebXM8+HSr3C15+kwwBRqO0nXFsiqdvINO8gM=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: Jul 2 19:21:51 2025 GMT Not After : Jul 9 19:21:51 2025 GMT Subject: CN=686586cf-8a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cc:17:99:a1:88:e6:c2:94:16:67:d0:cf:63: 73:b5:32:61:c1:a6:fb:59:31:82:2d:13:ed:d0:64: fd:38:91:97:0a:45:8d:8b:d1:c7:04:36:79:9f:8c: 2a:f0:e2:2b:c2:67:30:72:4a:07:25:1c:d1:d4:5b: de:90:b8:c0:a2:28:75:52:84:0f:c8:e9:e9:15:a9: f6:9d:25:dd:25:10:ab:75:37:48:1e:90:a6:35:75: ed:74:01:62:b5:80:96:dd:da:21:7f:61:0a:5b:1a: e0:27:ff:0e:f9:86:66:6e:82:7f:e3:9e:0c:91:cd: 3b:48:c8:c6:fe:10:03:b1:79:64:ec:b7:b6:ce:c0: 20:da:f9:a2:1b:58:28:b5:ee:fc:6d:2c:87:b7:d9: f4:b1:86:82:18:c6:a7:fa:aa:11:12:9c:4e:b0:c9: d4:bd:46:29:dc:81:d3:a9:b0:05:68:b5:1e:83:6b: c8:fd:52:73:8c:de:08:08:51:25:91:fd:1f:fa:af: a0:aa:6d:0a:fd:54:cd:2e:7a:01:e2:cf:0a:9b:06: 18:02:08:e2:58:2c:68:a3:d6:a0:17:4d:7d:8b:fd: 8a:30:15:c2:02:39:4a:29:0e:e0:90:3c:47:be:99: b4:ea:16:c5:ed:4c:b6:98:7e:ee:09:a0:3d:77:6d: ba:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:43:28:AA:7F:29:36:A4:A2:28:FD:39:0E:B6:C0:B8:39:D4:6C:1B X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:30:59:b7:0a:cc:68:99:d5:3c:e0:6b:de:e6:1f:ec:86:d9: 5b:5a:00:56:8b:ec:43:e7:5a:80:72:07:97:1b:14:0b:4f:4b: fe:55:f2:68:bb:9a:f6:8b:eb:66:74:c0:bc:29:c5:ab:6a:99: 9b:54:ec:49:cd:14:44:f5:76:a5:d0:64:91:09:07:32:c3:b3: 1f:30:ec:b4:a3:1b:3b:9e:7a:56:12:f0:40:59:3a:98:ea:50: 81:8b:e7:5b:03:21:8e:77:f9:d0:53:38:9d:48:cb:ad:4b:b6: 78:f1:96:03:3a:29:c2:3e:54:ab:8b:32:0c:4d:da:08:6a:88: 07:77:ab:71:c9:d3:b8:d1:60:ce:6d:38:e9:74:1d:91:4a:8d: ed:fe:0e:81:aa:76:5e:a1:f3:83:fc:af:b4:71:35:d6:f5:27: 75:de:3e:3c:ce:d0:0a:13:d3:cf:92:4e:55:41:ea:32:a5:42: ad:b6:9a:aa:15:03:88:be:b1:6b:31:8b:6d:c6:bb:23:c5:42: ff:af:58:d7:b0:92:62:74:09:5f:52:89:c7:60:2b:ed:0f:11: a6:f9:ce:07:f6:9a:d9:30:ad:5a:d3:29:99:c2:84:a0:06:4c: 9e:f5:3e:63:15:c0:2b:06:5e:e2:27:17:df:66:0c:2a:6d:86: 60:0c:b1:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwNzAyMTkyMTUxWhcNMjUwNzA5MTkyMTUxWjAYMRYwFAYD VQQDEw02ODY1ODZjZi04YTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncwXmaGI5sKUFmfQz2NztTJhwab7WTGCLRPt0GT9OJGXCkWNi9HHBDZ5n4wq 8OIrwmcwckoHJRzR1FvekLjAoih1UoQPyOnpFan2nSXdJRCrdTdIHpCmNXXtdAFi tYCW3dohf2EKWxrgJ/8O+YZmboJ/454Mkc07SMjG/hADsXlk7Le2zsAg2vmiG1go te78bSyHt9n0sYaCGMan+qoREpxOsMnUvUYp3IHTqbAFaLUeg2vI/VJzjN4ICFEl kf0f+q+gqm0K/VTNLnoB4s8KmwYYAgjiWCxoo9agF019i/2KMBXCAjlKKQ7gkDxH vpm06hbF7Uy2mH7uCaA9d226TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9DKKp/ KTakoij9OQ62wLg51GwbMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKMFm3CsxomdU84Gve5h/shtlbWgBWi+xD51qAcgeXGxQLT0v+VfJo u5r2i+tmdMC8KcWrapmbVOxJzRRE9Xal0GSRCQcyw7MfMOy0oxs7nnpWEvBAWTqY 6lCBi+dbAyGOd/nQUzidSMutS7Z48ZYDOinCPlSrizIMTdoIaogHd6txydO40WDO bTjpdB2RSo3t/g6BqnZeofOD/K+0cTXW9Sd13j48ztAKE9PPkk5VQeoypUKttpqq FQOIvrFrMYttxrsjxUL/r1jXsJJidAlfUonHYCvtDxGm+c4H9prZMK1a0ymZwoSg Bkye9T5jFcArBl7iJxffZgwqbYZgDLEt -----END CERTIFICATE-----Generated at Thu Jul 3 07:06:03 2025 by rpki-client