$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft File: UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft (raw, json) Hash identifier: MzcNDRYi7hTG3IPrZIodHX0Fql3TfYPjqAkg+irX6pA= Subject key identifier: 75:7B:E9:38:46:24:11:31:86:91:8A:B3:62:28:F9:79:F3:BC:DE:72 Authority key identifier: 50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 Certificate issuer: /CN=A915DE6C/serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft Manifest number: 48 Signing time: Sun 19 Oct 2025 10:49:17 +0000 Manifest this update: Sun 19 Oct 2025 10:49:16 +0000 Manifest next update: Sun 26 Oct 2025 10:49:16 +0000 Files and hashes: 1: UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl (hash: 0xrEj/dNPAh49ejMJTwIowQ1Zvj6sR8ZzzPlOXtJBts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Validity Not Before: Oct 19 10:49:16 2025 GMT Not After : Oct 26 10:49:16 2025 GMT Subject: CN=68f4c22d-b863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ef:d8:08:b3:71:79:6a:fd:8f:e8:f4:50:35: 23:0f:f3:b0:4a:e3:39:64:89:3b:1a:a9:4f:07:2d: 95:2d:fb:ea:d3:31:01:2f:61:1c:e2:3f:60:7d:e3: d8:5d:52:82:ae:7f:2f:f8:43:f6:5f:ac:6e:20:da: 02:d9:84:aa:7f:57:10:5e:ec:f3:45:31:37:3f:e5: 85:b5:da:8e:d2:95:11:ab:81:95:7d:86:84:0b:08: e0:26:dd:b7:6e:46:30:94:69:8e:ca:21:83:c2:52: 20:1e:9d:f3:65:df:ad:af:de:0d:8b:e4:5f:65:7b: 0d:d4:8e:ea:99:f5:36:d6:ed:37:2f:53:0b:e7:b2: ba:d0:dc:2f:e1:b4:96:64:80:ae:80:cb:ee:08:94: c6:81:0d:b4:83:b2:ce:a5:5c:f4:56:71:34:d0:6a: 82:91:a4:45:61:a5:cb:11:65:eb:a8:c1:42:7a:91: c6:c4:8d:15:67:39:3b:ff:c3:e2:26:d3:12:a7:68: 16:ae:46:10:e8:b2:ef:58:82:81:82:52:71:6c:0b: 7d:41:c3:b6:88:31:06:fa:6a:7c:6d:0a:ce:9d:fb: 3f:a4:eb:27:dc:10:78:83:5f:35:c4:b4:55:ea:e8: ab:8b:45:fc:de:59:ef:52:b4:df:a7:c7:f4:af:bb: ef:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:7B:E9:38:46:24:11:31:86:91:8A:B3:62:28:F9:79:F3:BC:DE:72 X509v3 Authority Key Identifier: keyid:50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:cc:89:06:4a:2f:04:21:de:e6:22:40:46:d3:05:93:c7:b5: 1f:cd:83:6c:98:a8:07:7d:5f:64:39:17:d7:26:eb:ad:6b:5a: d1:ff:41:ee:ce:69:4e:4b:3d:ad:53:82:ce:09:5a:fa:e0:cb: 70:03:85:1e:94:ae:2a:a4:ce:23:c2:32:55:21:c0:80:b4:9f: 6a:a5:57:ac:42:dc:4e:a5:6b:41:fb:fd:56:00:4c:20:c3:52: 79:61:3b:fb:3b:68:65:3a:e3:9e:36:eb:d5:24:ab:37:d3:a9: e1:05:0a:e6:dc:6e:d3:77:45:48:70:4c:c1:3d:c0:72:38:4c: d5:70:5d:ed:ec:c0:eb:e5:6c:76:3a:86:bf:9a:06:f1:8d:df: 70:ab:70:d9:e1:58:90:1a:9c:34:62:55:5d:b2:8a:f2:37:d8: a7:bd:5b:fa:a0:b6:24:62:a2:8f:7e:2c:3e:9c:d3:ea:e6:df: ff:8f:48:5a:c9:24:00:b9:38:85:49:92:ed:5f:d9:b4:0f:08: 6b:5c:a5:bf:3d:2e:b2:6b:35:58:83:9d:f2:1e:f3:9d:72:d0: d9:a4:20:c6:07:37:44:bc:a9:39:5d:10:69:93:63:93:d9:05: f3:93:91:c7:a7:a7:03:89:1b:e6:e5:d0:f6:d9:ff:9e:7c:61: 1a:e6:42:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoNTBBQUZDNkEzRUY3NUIyMkI3NjgzQ0FCNjNEODRCRTQy OTE5NTRCNDAeFw0yNTEwMTkxMDQ5MTZaFw0yNTEwMjYxMDQ5MTZaMBgxFjAUBgNV BAMTDTY4ZjRjMjJkLWI4NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+79gIs3F5av2P6PRQNSMP87BK4zlkiTsaqU8HLZUt++rTMQEvYRziP2B949hd UoKufy/4Q/ZfrG4g2gLZhKp/VxBe7PNFMTc/5YW12o7SlRGrgZV9hoQLCOAm3bdu RjCUaY7KIYPCUiAenfNl362v3g2L5F9lew3UjuqZ9TbW7TcvUwvnsrrQ3C/htJZk gK6Ay+4IlMaBDbSDss6lXPRWcTTQaoKRpEVhpcsRZeuowUJ6kcbEjRVnOTv/w+Im 0xKnaBauRhDosu9YgoGCUnFsC31Bw7aIMQb6anxtCs6d+z+k6yfcEHiDXzXEtFXq 6KuLRfzeWe9StN+nx/Svu++rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdXvpOEYk ETGGkYqzYij5efO83nIwHwYDVR0jBBgwFoAUUKr8aj73WyK3aDyrY9hL5CkZVLQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzZCQzM3NUIwNDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lLM2FEeXJZOWhMNUNrWlZM US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUtyOGFqNzNXeUszYUR5clk5aEw1Q2taVkxRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzZCQzM3NUIwNDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lL M2FEeXJZOWhMNUNrWlZMUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFjMiQZKLwQh3uYiQEbTBZPHtR/Ng2yYqAd9X2Q5F9cm661rWtH/Qe7O aU5LPa1Tgs4JWvrgy3ADhR6UriqkziPCMlUhwIC0n2qlV6xC3E6la0H7/VYATCDD UnlhO/s7aGU6454269UkqzfTqeEFCubcbtN3RUhwTME9wHI4TNVwXe3swOvlbHY6 hr+aBvGN33CrcNnhWJAanDRiVV2yivI32Ke9W/qgtiRioo9+LD6c0+rm3/+PSFrJ JAC5OIVJku1f2bQPCGtcpb89LrJrNViDnfIe851y0NmkIMYHN0S8qTldEGmTY5PZ BfOTkcenpwOJG+bl0PbZ/558YRrmQng= -----END CERTIFICATE-----Generated at Tue Oct 21 08:09:36 2025 by rpki-client