$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: eUnw0FK6hDV8uYt2NEzwfBtw5lp0k0OU/bNlZwSlTS0= Subject key identifier: 60:C0:90:EE:C4:A5:0B:49:F4:64:50:43:34:33:E9:53:12:78:E7:93 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B5C Signing time: Fri 22 Aug 2025 19:13:46 +0000 Manifest this update: Fri 22 Aug 2025 19:13:46 +0000 Manifest next update: Fri 29 Aug 2025 19:13:46 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: nVkmDVNpyBfrHlzVbKxrKNDqkAJyBgoTWRFsyBL9noI=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: Aug 22 19:13:46 2025 GMT Not After : Aug 29 19:13:46 2025 GMT Subject: CN=68a8c16a-615b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e4:2e:60:3b:43:a3:86:b0:52:f5:39:a4:4f: 55:ef:34:30:d6:a7:7f:13:2e:6e:89:51:8e:bd:d8: 4b:d9:ad:9d:56:4c:b3:b8:61:07:cf:05:e3:47:3f: c7:02:8c:54:af:98:32:13:5b:6a:17:b8:18:5b:40: 83:6b:71:b3:0f:eb:78:d7:00:35:04:88:66:0d:ba: a4:98:44:97:e9:e9:41:c7:71:71:e3:64:7d:fd:2c: d2:a8:fd:6b:1a:05:31:73:c6:f7:2c:26:84:a7:0a: 4d:7c:9b:ad:34:aa:7d:43:14:b8:a7:83:0b:bf:e5: da:a3:c6:5d:8d:dd:1a:d5:10:27:0e:8c:8f:a0:70: 2b:72:f9:ff:28:69:d0:e6:8b:5f:27:e2:f2:74:fd: 0f:40:6a:ad:1b:aa:da:c7:08:6d:f7:b9:64:a7:ff: e0:be:b8:97:11:ae:7c:47:82:f4:6c:fa:c2:66:4e: ba:c9:64:e5:8e:a9:80:f3:f9:80:ba:9d:6a:c7:21: a8:8d:9b:df:96:21:3d:a8:5a:ec:19:c7:98:2f:aa: da:29:1d:3e:f3:8a:60:67:cc:f6:69:4a:09:7c:a0: 9e:83:38:fc:b3:5c:bb:28:9f:43:ab:21:48:8c:0c: 34:aa:11:d2:a0:38:78:49:79:e0:ef:8b:0d:eb:07: 01:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C0:90:EE:C4:A5:0B:49:F4:64:50:43:34:33:E9:53:12:78:E7:93 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:85:07:a1:10:be:c7:a8:80:0b:bd:0f:d0:6c:db:3f:c3:54: 5d:c8:8f:2e:29:44:a5:c3:3b:0b:5d:71:0f:91:cc:ba:44:6a: 6a:f7:ff:e7:79:62:1e:5c:e3:2a:77:d4:f0:ed:bd:45:b7:23: 64:45:39:c5:a2:34:b3:02:5b:02:9d:29:70:0a:a5:87:87:64: 89:f4:f3:01:ab:87:1e:36:7b:4f:12:3f:de:f1:bd:73:d1:58: f4:3d:54:0c:f3:c6:df:0a:c8:c9:cb:c1:02:3f:59:27:37:51: b7:1a:b2:50:d5:fe:c3:9a:2b:c5:b8:51:e8:ee:07:c9:3d:38: c7:f2:de:f7:8a:6e:87:ea:31:7a:57:2a:a3:e0:87:31:a9:ee: c2:18:09:4c:8d:60:29:ba:81:7e:71:35:a5:98:77:1a:4b:1a: 69:a0:9f:3b:c4:6e:71:ea:6a:f4:6b:49:c9:81:5d:98:5b:b7: ce:fa:c2:05:c3:cf:15:a8:8e:64:15:76:28:24:3c:8a:c3:b6: fd:8c:ad:b4:c5:17:a1:d4:2d:7d:c9:34:99:99:68:2a:ac:38: c6:dc:12:1f:87:96:1e:7d:f3:5c:f5:8b:c3:57:6c:f5:11:8c: ca:11:a8:f3:56:fb:2a:01:6a:0a:e5:b3:27:3e:35:dc:dc:3f: 8e:91:e5:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwODIyMTkxMzQ2WhcNMjUwODI5MTkxMzQ2WjAYMRYwFAYD VQQDEw02OGE4YzE2YS02MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouQuYDtDo4awUvU5pE9V7zQw1qd/Ey5uiVGOvdhL2a2dVkyzuGEHzwXjRz/H AoxUr5gyE1tqF7gYW0CDa3GzD+t41wA1BIhmDbqkmESX6elBx3Fx42R9/SzSqP1r GgUxc8b3LCaEpwpNfJutNKp9QxS4p4MLv+Xao8Zdjd0a1RAnDoyPoHArcvn/KGnQ 5otfJ+LydP0PQGqtG6raxwht97lkp//gvriXEa58R4L0bPrCZk66yWTljqmA8/mA up1qxyGojZvfliE9qFrsGceYL6raKR0+84pgZ8z2aUoJfKCegzj8s1y7KJ9DqyFI jAw0qhHSoDh4SXng74sN6wcBbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDAkO7E pQtJ9GRQQzQz6VMSeOeTMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFhQehEL7HqIALvQ/QbNs/w1RdyI8uKUSlwzsLXXEPkcy6RGpq9//n eWIeXOMqd9Tw7b1FtyNkRTnFojSzAlsCnSlwCqWHh2SJ9PMBq4ceNntPEj/e8b1z 0Vj0PVQM88bfCsjJy8ECP1knN1G3GrJQ1f7DmivFuFHo7gfJPTjH8t73im6H6jF6 Vyqj4Icxqe7CGAlMjWApuoF+cTWlmHcaSxppoJ87xG5x6mr0a0nJgV2YW7fO+sIF w88VqI5kFXYoJDyKw7b9jK20xReh1C19yTSZmWgqrDjG3BIfh5YeffNc9YvDV2z1 EYzKEajzVvsqAWoK5bMnPjXc3D+OkeUu -----END CERTIFICATE-----Generated at Sun Aug 24 00:04:38 2025 by rpki-client