$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: g8tsnR0tYdG1XWcqgAgaovMNzDtVztlL5khfaHJGUN8= Subject key identifier: D9:7E:1F:8D:50:64:44:36:65:91:17:10:84:00:4F:69:0C:5C:ED:14 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B3A Signing time: Mon 16 Jun 2025 19:02:38 +0000 Manifest this update: Mon 16 Jun 2025 19:02:37 +0000 Manifest next update: Mon 23 Jun 2025 19:02:37 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: /Y9YYuvc8lDBpdr/aXN2pGMpJr3YngcPHaiiFmolri0=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 19:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: Jun 16 19:02:37 2025 GMT Not After : Jun 23 19:02:37 2025 GMT Subject: CN=68506a4d-e712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b3:38:26:2f:cd:4c:a4:ea:a3:9f:84:e2:da: a9:7e:14:bd:4a:0d:49:b1:42:2c:0e:17:44:26:b7: 94:85:68:16:00:d1:66:76:0f:69:c3:f4:56:ac:9e: f7:1a:01:0f:7c:33:f4:bb:0c:02:79:94:bc:2a:df: 01:e1:d7:24:9d:7c:8d:cb:c1:de:24:f7:71:61:6b: 18:2b:78:ab:12:19:35:31:4c:b6:3c:a7:1d:66:f0: b2:7f:a6:d1:31:bc:cb:d4:60:cb:de:e3:6b:b8:44: 2e:6c:50:63:54:27:a7:8d:d4:05:23:f3:d0:73:71: 32:53:de:ed:56:29:fb:50:d4:5d:71:c1:44:58:18: 9d:b8:c6:be:fd:97:e4:3d:43:a3:96:5f:c2:4b:09: 7e:92:dc:13:57:19:a5:40:8c:63:bc:42:e6:65:5c: 4f:dd:6c:04:ad:c2:0b:39:d8:08:6a:d4:57:e6:73: d0:ee:bb:bc:8d:17:b7:6f:4f:2f:22:b4:4b:51:47: 73:e7:9e:7e:02:b0:2a:fc:76:6c:6a:a7:ea:18:15: 31:ca:34:27:d2:f7:ab:77:e2:fc:ea:81:36:c0:07: 6b:8a:00:a6:43:a1:25:fd:b9:00:f4:3f:55:56:e3: 0e:91:5c:a9:68:e9:2c:31:65:de:7c:49:8a:f3:c1: 83:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:7E:1F:8D:50:64:44:36:65:91:17:10:84:00:4F:69:0C:5C:ED:14 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3c:ad:9e:fc:c7:b9:a3:40:b4:2b:0e:12:31:41:e6:d6:da: 7f:8b:a8:fa:22:72:cd:28:a2:0b:be:42:79:02:ed:a5:e4:80: 67:11:b9:96:2c:ee:66:2b:0c:b6:ad:64:a2:e7:46:2a:8e:f9: 2e:7b:ac:08:d2:90:6b:54:9a:ba:47:d8:99:b1:03:e6:15:e2: 21:f1:ee:6b:f5:ea:26:2f:ae:10:52:11:4e:ce:c3:73:84:1f: 40:5c:8e:e4:b2:95:34:5c:23:30:42:b8:ad:49:b2:0a:98:5d: 4f:82:85:f4:8b:1e:8e:a2:b1:df:fc:bc:05:c8:be:15:71:71: 8e:10:91:f8:7b:80:e3:af:30:6b:ee:4d:59:c4:bf:86:ff:29: 1a:01:10:f5:05:54:09:b2:c9:46:f1:a5:c1:1e:53:81:25:c9: e8:9f:23:29:1e:11:1d:4a:48:d5:e0:ca:1b:c0:e8:f3:d8:c0: 48:31:bf:16:0f:31:27:82:df:75:36:ca:61:aa:bf:e9:77:a8: 24:99:a0:56:c8:98:75:ab:31:ab:2b:dc:80:da:0c:80:db:75: 79:cd:a9:99:ad:01:d3:ac:9d:74:e8:19:96:5d:c2:49:cf:5e: 0c:90:1d:19:4f:4e:eb:e4:71:86:f4:b0:70:78:c9:10:a4:ea: e8:9e:3e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwNjE2MTkwMjM3WhcNMjUwNjIzMTkwMjM3WjAYMRYwFAYD VQQDEw02ODUwNmE0ZC1lNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubM4Ji/NTKTqo5+E4tqpfhS9Sg1JsUIsDhdEJreUhWgWANFmdg9pw/RWrJ73 GgEPfDP0uwwCeZS8Kt8B4dcknXyNy8HeJPdxYWsYK3irEhk1MUy2PKcdZvCyf6bR MbzL1GDL3uNruEQubFBjVCenjdQFI/PQc3EyU97tVin7UNRdccFEWBiduMa+/Zfk PUOjll/CSwl+ktwTVxmlQIxjvELmZVxP3WwErcILOdgIatRX5nPQ7ru8jRe3b08v IrRLUUdz555+ArAq/HZsaqfqGBUxyjQn0verd+L86oE2wAdrigCmQ6El/bkA9D9V VuMOkVypaOksMWXefEmK88GDzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNl+H41Q ZEQ2ZZEXEIQAT2kMXO0UMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKPK2e/Me5o0C0Kw4SMUHm1tp/i6j6InLNKKILvkJ5Au2l5IBnEbmW LO5mKwy2rWSi50Yqjvkue6wI0pBrVJq6R9iZsQPmFeIh8e5r9eomL64QUhFOzsNz hB9AXI7kspU0XCMwQritSbIKmF1PgoX0ix6OorHf/LwFyL4VcXGOEJH4e4DjrzBr 7k1ZxL+G/ykaARD1BVQJsslG8aXBHlOBJcnonyMpHhEdSkjV4MobwOjz2MBIMb8W DzEngt91Nsphqr/pd6gkmaBWyJh1qzGrK9yA2gyA23V5zamZrQHTrJ106BmWXcJJ z14MkB0ZT07r5HGG9LBweMkQpOronj7z -----END CERTIFICATE-----Generated at Wed Jun 18 16:34:17 2025 by rpki-client