$ rpki-client -vvf rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft File: UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft (raw, json) Hash identifier: SS8MoWxcrHzakSYOazJF0wHvN8hCvfXxTKAjZg4e4As= Subject key identifier: A5:33:2A:61:27:57:24:65:38:58:C1:76:15:AD:0C:AD:45:60:28:CA Authority key identifier: 50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 Certificate issuer: /CN=A915DE6C/serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft Manifest number: 2B Signing time: Sat 23 Aug 2025 07:59:23 +0000 Manifest this update: Sat 23 Aug 2025 07:59:22 +0000 Manifest next update: Sat 30 Aug 2025 07:59:22 +0000 Files and hashes: 1: UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl (hash: GZtdFiaaVfGJVpkX6V+Ce0O7o8rEBK/aNmPfQGSIgXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DE6C, serialNumber=50AAFC6A3EF75B22B7683CAB63D84BE4291954B4 Validity Not Before: Aug 23 07:59:22 2025 GMT Not After : Aug 30 07:59:22 2025 GMT Subject: CN=68a974db-ef5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:52:a0:98:4d:34:f2:fc:70:30:df:79:b6: 83:18:e8:15:9d:c4:3f:cd:f2:f2:d2:f6:79:aa:c4: a3:40:27:87:d2:ba:69:75:9d:bf:85:bd:9e:2a:61: b4:a4:3d:a7:98:8d:5e:da:df:20:cb:de:72:58:48: ce:c3:a1:dd:53:d4:61:f2:c6:76:50:27:f7:0e:f2: 84:00:fa:5e:61:1d:14:54:3d:cc:63:8d:16:b5:47: 8c:22:8b:56:7c:f6:a3:80:19:bd:62:a8:c6:e3:08: b2:d0:9f:c6:67:13:b6:7b:23:1a:5c:96:b5:34:67: b6:af:5f:49:99:64:3e:30:95:c4:09:9a:60:09:37: cb:07:22:f9:20:05:e9:5d:6f:69:10:e5:00:bf:06: 18:14:0e:94:ee:81:3b:38:92:c6:c6:36:96:46:f7: 35:cd:de:b2:3f:b1:49:73:bf:1c:6e:1f:16:49:95: 4b:c9:06:1e:3d:94:96:c3:83:7a:a7:92:df:84:64: 47:69:5c:53:48:a9:a1:ad:2b:35:1f:1b:a2:21:1f: d7:b6:fa:82:d5:0c:80:b5:b7:95:8f:1a:37:5b:e5: f4:3e:19:21:6e:26:41:28:72:c2:6b:ce:e1:c4:b0: 81:c0:a7:00:e0:b2:35:25:a9:14:5a:26:e5:16:b1: cd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:33:2A:61:27:57:24:65:38:58:C1:76:15:AD:0C:AD:45:60:28:CA X509v3 Authority Key Identifier: keyid:50:AA:FC:6A:3E:F7:5B:22:B7:68:3C:AB:63:D8:4B:E4:29:19:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UKr8aj73WyK3aDyrY9hL5CkZVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DE6C/6BC375B043D411F090B47668C4F9AE02/UKr8aj73WyK3aDyrY9hL5CkZVLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:0e:1a:64:61:ab:87:18:0c:f8:04:1e:45:e9:6d:d0:51:86: 21:51:8a:ed:7f:d8:31:c1:a6:93:a8:dd:bb:96:55:0a:49:40: 08:72:49:8c:a8:d9:61:bd:03:7d:40:d6:1b:07:a3:74:2c:0a: bb:45:30:01:ae:51:06:7a:ab:be:6a:4b:5a:67:d3:3d:a9:94: 3b:3f:2c:eb:8e:bc:a3:37:ad:e2:ad:3d:81:94:8b:c2:d3:dd: b7:4a:66:d9:ad:5f:96:29:17:bd:ee:9c:51:34:93:e0:94:b1: 6f:0a:a9:fa:a4:95:c7:5f:cc:f7:d7:c1:93:83:b3:9f:4e:d2: ee:12:e6:b6:5a:fd:49:41:12:b5:a4:33:52:f3:a1:be:bd:ea: 70:12:67:15:38:77:81:09:99:e5:75:da:55:72:fe:f7:69:fb: 71:ae:0e:2e:7d:8d:af:e7:58:5e:df:da:14:1b:71:59:c6:e2: 14:58:e0:64:05:ea:6c:20:52:7e:6c:8d:8f:f6:e1:b3:53:2e: 3f:37:e6:a2:24:26:0c:5c:a1:97:0b:e0:fd:5e:7d:de:cb:00: e9:ba:5f:66:38:8c:8d:4b:07:37:21:c3:95:13:4c:8a:a0:d8: 50:02:54:da:1f:98:d9:3d:a3:e3:4f:a4:1d:27:94:a6:94:2f: d8:38:da:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 REU2QzExMC8GA1UEBRMoNTBBQUZDNkEzRUY3NUIyMkI3NjgzQ0FCNjNEODRCRTQy OTE5NTRCNDAeFw0yNTA4MjMwNzU5MjJaFw0yNTA4MzAwNzU5MjJaMBgxFjAUBgNV BAMTDTY4YTk3NGRiLWVmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC08FKgmE008vxwMN95toMY6BWdxD/N8vLS9nmqxKNAJ4fSuml1nb+FvZ4qYbSk PaeYjV7a3yDL3nJYSM7Dod1T1GHyxnZQJ/cO8oQA+l5hHRRUPcxjjRa1R4wii1Z8 9qOAGb1iqMbjCLLQn8ZnE7Z7IxpclrU0Z7avX0mZZD4wlcQJmmAJN8sHIvkgBeld b2kQ5QC/BhgUDpTugTs4ksbGNpZG9zXN3rI/sUlzvxxuHxZJlUvJBh49lJbDg3qn kt+EZEdpXFNIqaGtKzUfG6IhH9e2+oLVDIC1t5WPGjdb5fQ+GSFuJkEocsJrzuHE sIHApwDgsjUlqRRaJuUWsc1VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpTMqYSdX JGU4WMF2Fa0MrUVgKMowHwYDVR0jBBgwFoAUUKr8aj73WyK3aDyrY9hL5CkZVLQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVERTZDLzZCQzM3NUIwNDNE NDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lLM2FEeXJZOWhMNUNrWlZM US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUtyOGFqNzNXeUszYUR5clk5aEw1Q2taVkxRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE RTZDLzZCQzM3NUIwNDNENDExRjA5MEI0NzY2OEM0RjlBRTAyL1VLcjhhajczV3lL M2FEeXJZOWhMNUNrWlZMUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACYOGmRhq4cYDPgEHkXpbdBRhiFRiu1/2DHBppOo3buWVQpJQAhySYyo 2WG9A31A1hsHo3QsCrtFMAGuUQZ6q75qS1pn0z2plDs/LOuOvKM3reKtPYGUi8LT 3bdKZtmtX5YpF73unFE0k+CUsW8KqfqklcdfzPfXwZODs59O0u4S5rZa/UlBErWk M1Lzob696nASZxU4d4EJmeV12lVy/vdp+3GuDi59ja/nWF7f2hQbcVnG4hRY4GQF 6mwgUn5sjY/24bNTLj835qIkJgxcoZcL4P1efd7LAOm6X2Y4jI1LBzchw5UTTIqg 2FACVNofmNk9o+NPpB0nlKaUL9g42tA= -----END CERTIFICATE-----Generated at Sat Aug 23 10:59:29 2025 by rpki-client