$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft File: UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft (raw, json) Hash identifier: 0ckF1g2tnbCSm14zCFWPMdWz4YeGppDkVEAQIl222kI= Subject key identifier: 63:14:0D:60:78:5E:6D:48:8D:51:F0:EE:8F:ED:1E:07:DE:07:C8:EA Authority key identifier: 50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 Certificate issuer: /CN=A915DE6C/serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft Manifest number: 11 Signing time: Thu 03 Jul 2025 08:20:48 +0000 Manifest this update: Thu 03 Jul 2025 08:20:48 +0000 Manifest next update: Thu 10 Jul 2025 08:20:48 +0000 Files and hashes: 1: UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl (hash: E5qwwSuly0ounS8QWYFTOhGlecZPFT5/BA+mV1MIrY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Validity Not Before: Jul 3 08:20:48 2025 GMT Not After : Jul 10 08:20:48 2025 GMT Subject: CN=68663d60-18bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:96:34:99:46:4f:60:3a:ae:c7:2a:3f:17: 7a:f4:8b:9e:c5:ec:6c:e3:ed:50:9f:82:0a:ad:86: 8a:29:d9:2b:0d:81:41:40:59:0c:98:be:bd:8f:da: c3:e4:5b:8c:fd:12:c1:49:41:cf:ed:85:1a:89:31: a0:eb:7f:4d:22:2d:16:c4:d4:17:ad:2e:fc:fc:62: 5f:ed:0f:b6:5d:65:c5:54:94:19:ef:9e:68:c5:49: 4f:66:91:91:4a:1f:bf:19:4e:41:d3:6b:0e:43:db: de:a6:0b:20:b6:90:b8:bd:55:b2:c4:53:01:47:cb: 84:55:76:7f:1f:cc:00:19:0a:27:03:0d:7b:4e:13: 29:b4:51:02:43:3b:e1:66:a0:30:6c:2d:40:4a:d5: d7:75:08:33:5c:e6:1c:90:ba:46:7d:68:39:24:e0: 9b:a3:8d:f8:26:53:b9:89:10:38:f1:1d:5a:b0:72: 20:10:a8:06:0d:3e:46:80:a2:73:b4:55:0a:5d:77: 04:0c:5f:0d:84:26:ad:d3:fa:d5:1c:93:c5:f8:b4: 9b:71:e6:00:a9:c7:be:59:db:e9:f4:a0:e6:f9:47: 18:ac:3e:6b:bb:5d:45:23:b2:b2:06:11:23:e2:28: 38:c4:5a:1f:ff:a6:56:e8:c0:af:75:d7:f5:85:33: 92:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:14:0D:60:78:5E:6D:48:8D:51:F0:EE:8F:ED:1E:07:DE:07:C8:EA X509v3 Authority Key Identifier: keyid:50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:8e:5c:39:78:59:53:77:4c:f6:96:91:84:c0:69:3b:0c:6b: e8:a2:fa:e8:54:bc:51:6d:1d:22:a8:36:0f:82:68:3f:99:59: 97:28:01:f6:7a:f5:09:49:90:6a:06:23:fc:d6:24:b8:5e:38: 4a:b0:67:de:02:89:1f:66:e2:51:f5:7d:13:3c:c8:4e:be:4a: 0f:25:96:30:95:59:11:08:f2:76:09:2d:4b:7d:1b:ff:46:b3: be:0b:35:53:f6:56:88:33:e5:45:e3:8a:fd:df:aa:52:64:28: 7d:4c:94:af:a4:2e:e0:81:00:1c:5f:4d:7b:c7:26:0e:e1:2a: 4e:bb:ca:68:bc:5e:83:8e:14:b7:0c:42:b3:15:00:68:38:52: 02:9e:b1:0a:26:6f:a3:37:ab:02:ed:34:9e:22:65:8b:fb:d3: 36:08:0e:c6:95:9c:78:fc:c9:ec:7c:1e:dd:3f:99:a0:b9:8c: 59:28:10:76:f3:2f:77:73:f5:d6:69:8b:d5:73:b3:be:ed:0e: 8b:56:05:c8:1c:c4:bf:8e:f8:64:b0:31:d7:96:6e:63:2f:af: 80:94:b2:b2:0b:36:00:01:42:fa:13:f5:fd:9f:ee:0a:4e:2d: 83:07:5a:cd:c8:c2:ec:79:7a:dc:c4:0f:70:93:66:dc:9d:b5: f9:8f:05:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoNTBBQUZDNkEzRUY3NUIyMkI3NjgzQ0FCNjNEODRCRTQy OTE5NTRCNDAeFw0yNTA3MDMwODIwNDhaFw0yNTA3MTAwODIwNDhaMBgxFjAUBgNV BAMTDTY4NjYzZDYwLTE4YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCsZY0mUZPYDquxyo/F3r0i57F7Gzj7VCfggqthoop2SsNgUFAWQyYvr2P2sPk W4z9EsFJQc/thRqJMaDrf00iLRbE1BetLvz8Yl/tD7ZdZcVUlBnvnmjFSU9mkZFK H78ZTkHTaw5D296mCyC2kLi9VbLEUwFHy4RVdn8fzAAZCicDDXtOEym0UQJDO+Fm oDBsLUBK1dd1CDNc5hyQukZ9aDkk4JujjfgmU7mJEDjxHVqwciAQqAYNPkaAonO0 VQpddwQMXw2EJq3T+tUck8X4tJtx5gCpx75Z2+n0oOb5RxisPmu7XUUjsrIGESPi KDjEWh//plbowK911/WFM5LfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYxQNYHhe bUiNUfDuj+0eB94HyOowHwYDVR0jBBgwFoAUUKr8aj73WyK3aDyrY9hL5CkZVLQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzZCQzM3NUIwNDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lLM2FEeXJZOWhMNUNrWlZM US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUtyOGFqNzNXeUszYUR5clk5aEw1Q2taVkxRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzZCQzM3NUIwNDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lL M2FEeXJZOWhMNUNrWlZMUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGGOXDl4WVN3TPaWkYTAaTsMa+ii+uhUvFFtHSKoNg+CaD+ZWZcoAfZ6 9QlJkGoGI/zWJLheOEqwZ94CiR9m4lH1fRM8yE6+Sg8lljCVWREI8nYJLUt9G/9G s74LNVP2Vogz5UXjiv3fqlJkKH1MlK+kLuCBABxfTXvHJg7hKk67ymi8XoOOFLcM QrMVAGg4UgKesQomb6M3qwLtNJ4iZYv70zYIDsaVnHj8yex8Ht0/maC5jFkoEHbz L3dz9dZpi9Vzs77tDotWBcgcxL+O+GSwMdeWbmMvr4CUsrILNgABQvoT9f2f7gpO LYMHWs3Iwux5etzED3CTZtydtfmPBeM= -----END CERTIFICATE-----Generated at Thu Jul 3 21:54:17 2025 by rpki-client