$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: VJJ/7NjZxIGt3VQLf10bQc/MnLXeXS3Qc/ptjQDMc2k= Subject key identifier: 00:30:5C:75:50:09:9D:CB:F4:F9:8E:C3:9F:6B:79:34:8C:1D:60:E9 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0ADE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0AD8 Signing time: Fri 22 Aug 2025 19:34:43 +0000 Manifest this update: Fri 22 Aug 2025 19:34:42 +0000 Manifest next update: Fri 29 Aug 2025 19:34:42 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: iXfw2TWdnGwV+10t4FGHEsMRvdhUDDj2btmzoDWz3mc=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Aug 22 19:34:42 2025 GMT Not After : Aug 29 19:34:42 2025 GMT Subject: CN=68a8c652-0196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0d:7e:58:7a:1b:fb:ae:d6:0a:b4:42:4f:80: 4d:3b:8e:53:b0:7a:71:a8:ea:59:bb:c9:78:c1:0a: 9e:67:62:18:bf:92:31:9e:fa:c9:d5:c5:f6:bc:ce: 6a:f6:0d:eb:10:08:36:c7:e2:9f:77:66:12:c8:d0: 86:6a:ca:c7:6c:ae:ad:90:5d:5a:24:40:c2:a7:33: ad:7b:93:b9:67:a4:11:7c:1d:8a:05:b9:0c:7c:f7: 7a:61:2e:16:e0:74:5e:16:d7:32:04:a8:77:01:44: 40:f7:ac:1f:92:01:5a:a8:78:ae:69:13:88:e5:f7: 36:23:20:fe:ab:a3:dd:e3:37:09:09:73:21:3c:03: 5f:d7:92:43:64:36:8c:6f:ba:0d:92:a1:bd:fb:14: 4c:f7:72:c0:26:9d:87:77:a2:75:ba:9b:63:94:de: 16:09:0f:56:bd:d9:90:e8:20:49:00:5f:88:c9:c3: c6:85:a3:16:ec:1d:79:a1:fb:e5:94:58:91:65:c6: c6:b3:58:dd:e5:0a:2c:c5:bd:2a:fa:53:61:de:40: 96:9c:9f:b1:71:a1:35:87:7e:cc:7b:f9:4b:55:e1: 94:18:8d:61:2f:d9:58:02:2a:41:4f:60:da:37:78: 36:73:f5:15:20:c9:fe:20:e6:a1:c0:84:65:8e:29: 70:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:30:5C:75:50:09:9D:CB:F4:F9:8E:C3:9F:6B:79:34:8C:1D:60:E9 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:68:c8:74:90:5b:27:d5:59:09:48:7f:5b:78:b3:fb:af:d9: 4a:c6:30:75:27:56:33:5b:79:c5:c9:fd:58:e1:2e:9c:e3:8a: 72:74:09:44:22:57:86:ad:e0:39:51:d1:49:03:f7:bb:31:ba: 13:73:7d:31:72:47:2b:5d:71:8b:fe:b6:00:00:48:06:5b:64: 9d:e9:74:e0:88:45:87:bf:a9:eb:ad:2f:7c:75:b6:c0:52:5a: e2:c4:2d:7c:d2:91:16:4e:55:4b:ec:8f:ba:b4:f3:58:0f:9d: 47:f5:5b:ab:16:b1:76:a2:fd:70:e9:2d:2f:30:af:00:97:3e: b5:2c:e0:f0:1a:c1:d7:f5:17:72:e2:ab:88:56:e0:2d:2e:25: 45:3c:29:08:29:90:ee:c5:ea:84:b5:be:f9:fd:f6:a6:35:e3: f4:0a:a6:31:c8:17:c8:84:4a:65:95:72:2f:3c:0c:73:e5:01: f3:56:aa:91:61:34:7e:ef:1f:2b:84:6c:2d:6d:31:34:0c:c5: a9:70:aa:f7:55:c6:3c:db:9b:91:e7:64:48:6f:35:6b:1c:8c: 85:eb:c2:79:c3:7b:93:53:30:9a:ba:79:c2:b2:d9:86:0e:b2: c5:90:12:ba:46:36:44:2e:f9:83:f0:06:40:6c:8d:93:54:c9: c4:b5:7c:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwODIyMTkzNDQyWhcNMjUwODI5MTkzNDQyWjAYMRYwFAYD VQQDEw02OGE4YzY1Mi0wMTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4w1+WHob+67WCrRCT4BNO45TsHpxqOpZu8l4wQqeZ2IYv5IxnvrJ1cX2vM5q 9g3rEAg2x+Kfd2YSyNCGasrHbK6tkF1aJEDCpzOte5O5Z6QRfB2KBbkMfPd6YS4W 4HReFtcyBKh3AURA96wfkgFaqHiuaROI5fc2IyD+q6Pd4zcJCXMhPANf15JDZDaM b7oNkqG9+xRM93LAJp2Hd6J1uptjlN4WCQ9WvdmQ6CBJAF+IycPGhaMW7B15ofvl lFiRZcbGs1jd5Qosxb0q+lNh3kCWnJ+xcaE1h37Me/lLVeGUGI1hL9lYAipBT2Da N3g2c/UVIMn+IOahwIRljilwTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAwXHVQ CZ3L9PmOw59reTSMHWDpMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuaMh0kFsn1VkJSH9beLP7r9lKxjB1J1YzW3nFyf1Y4S6c44pydAlE IleGreA5UdFJA/e7MboTc30xckcrXXGL/rYAAEgGW2Sd6XTgiEWHv6nrrS98dbbA UlrixC180pEWTlVL7I+6tPNYD51H9VurFrF2ov1w6S0vMK8Alz61LODwGsHX9Rdy 4quIVuAtLiVFPCkIKZDuxeqEtb75/famNeP0CqYxyBfIhEpllXIvPAxz5QHzVqqR YTR+7x8rhGwtbTE0DMWpcKr3VcY825uR52RIbzVrHIyF68J5w3uTUzCaunnCstmG DrLFkBK6RjZELvmD8AZAbI2TVMnEtXyO -----END CERTIFICATE-----Generated at Sat Aug 23 21:00:42 2025 by rpki-client