$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: GElCciwKYrhWe1QaONxkEM0YO0wdK7LXkl5aw/mL0pc= Subject key identifier: 58:F8:26:05:22:7C:A3:0E:80:9F:F5:14:24:D1:5E:6D:3E:15:EE:38 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0AC4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0ABE Signing time: Wed 02 Jul 2025 19:43:24 +0000 Manifest this update: Wed 02 Jul 2025 19:43:23 +0000 Manifest next update: Wed 09 Jul 2025 19:43:23 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: 8C9yTQu86Rvq5E5wviZY4U3ND32D0gTgNDNJeBSp5BI=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2756 (0xac4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Jul 2 19:43:23 2025 GMT Not After : Jul 9 19:43:23 2025 GMT Subject: CN=68658bdb-e8e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:d0:e4:b6:73:52:6a:74:8b:c5:bf:4d:d3:18: 48:a8:80:3a:10:48:ac:ce:0e:10:65:bd:90:88:5c: 53:6d:6b:63:0c:99:0b:17:8e:a7:4b:b9:43:87:61: 72:4b:d3:52:fe:93:6b:6b:8b:fd:c4:32:f2:15:84: e0:58:86:3c:e6:85:d1:59:e9:58:c2:a5:e7:57:c8: 92:ad:3c:3f:93:55:4f:27:0b:c7:34:6a:e6:f9:af: c2:d6:3b:ea:bc:6d:41:d2:84:99:99:50:f5:fa:4a: 47:e3:00:dc:b8:14:64:a7:62:63:26:34:04:06:a9: 8d:b3:ce:54:29:ef:5e:ee:45:ae:9c:09:6c:94:f0: da:a9:fa:80:5d:bf:64:62:16:32:99:2f:f2:98:57: 54:f1:b6:89:76:6c:2d:69:65:44:b7:4b:f7:cf:32: 9f:2f:75:ec:6e:02:e2:9b:ef:2f:34:45:8e:43:7b: 03:93:19:8d:cb:da:64:95:d2:12:80:38:bd:e3:32: af:68:11:af:f9:96:eb:47:66:c6:42:b5:4c:7d:71: 96:4c:95:b3:d6:8d:4f:a1:36:8d:82:ab:63:53:23: 63:d6:b9:e9:21:1b:54:e9:72:f8:4d:8c:8c:29:db: bc:ce:0a:c1:1f:95:22:47:74:ab:8d:d4:c7:f7:ee: 61:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F8:26:05:22:7C:A3:0E:80:9F:F5:14:24:D1:5E:6D:3E:15:EE:38 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a8:57:37:1e:dd:c0:cd:ec:6c:31:8e:f2:05:67:f2:11:52: 0a:8d:09:d6:ff:78:b9:53:f0:25:c1:da:6e:8f:6c:33:4b:d2: ff:c9:1a:f0:c4:b3:89:27:34:a4:6a:b1:52:50:27:7c:0f:1c: c5:1f:4c:60:7b:d4:15:03:c8:b6:42:e5:6e:55:54:e4:00:b2: 02:1f:a4:f2:8c:1d:d4:97:0c:fe:46:c9:f4:13:d5:b9:9c:5e: 00:5b:73:fe:d4:1c:d7:ad:19:44:52:18:c1:53:1f:20:c1:d9: 0c:99:f6:e5:74:54:c1:f6:42:9c:65:9e:8b:0e:84:53:86:c8: c6:77:1a:79:84:2f:fb:c3:ed:8b:02:22:bd:f1:d2:6e:4c:48: 8b:85:b0:b1:89:b0:56:d3:d0:16:a9:f9:be:dc:b1:13:8b:93: bb:a4:3b:4a:6e:50:da:cb:80:05:16:16:7a:60:d9:98:f0:ff: 2f:2e:97:66:c6:cf:aa:f1:7e:be:a3:8c:bb:e4:30:27:5b:c9: 1b:dd:57:9a:09:b4:6a:67:2b:88:0b:d2:a8:e1:19:18:40:b4: 24:d9:5d:7f:94:28:c7:93:98:3b:91:e6:97:fc:0b:25:3f:5b: 48:78:ca:d2:48:74:0d:52:ef:1d:d4:14:a0:70:14:5f:ba:6e: 6f:16:7a:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwNzAyMTk0MzIzWhcNMjUwNzA5MTk0MzIzWjAYMRYwFAYD VQQDEw02ODY1OGJkYi1lOGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9tDktnNSanSLxb9N0xhIqIA6EEiszg4QZb2QiFxTbWtjDJkLF46nS7lDh2Fy S9NS/pNra4v9xDLyFYTgWIY85oXRWelYwqXnV8iSrTw/k1VPJwvHNGrm+a/C1jvq vG1B0oSZmVD1+kpH4wDcuBRkp2JjJjQEBqmNs85UKe9e7kWunAlslPDaqfqAXb9k YhYymS/ymFdU8baJdmwtaWVEt0v3zzKfL3XsbgLim+8vNEWOQ3sDkxmNy9pkldIS gDi94zKvaBGv+ZbrR2bGQrVMfXGWTJWz1o1PoTaNgqtjUyNj1rnpIRtU6XL4TYyM Kdu8zgrBH5UiR3SrjdTH9+5haQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj4JgUi fKMOgJ/1FCTRXm0+Fe44MB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGqFc3Ht3AzexsMY7yBWfyEVIKjQnW/3i5U/Alwdpuj2wzS9L/yRrw xLOJJzSkarFSUCd8DxzFH0xge9QVA8i2QuVuVVTkALICH6TyjB3Ulwz+Rsn0E9W5 nF4AW3P+1BzXrRlEUhjBUx8gwdkMmfbldFTB9kKcZZ6LDoRThsjGdxp5hC/7w+2L AiK98dJuTEiLhbCxibBW09AWqfm+3LETi5O7pDtKblDay4AFFhZ6YNmY8P8vLpdm xs+q8X6+o4y75DAnW8kb3VeaCbRqZyuIC9Ko4RkYQLQk2V1/lCjHk5g7keaX/Asl P1tIeMrSSHQNUu8d1BSgcBRfum5vFnqs -----END CERTIFICATE-----Generated at Fri Jul 4 02:11:37 2025 by rpki-client