$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: rYSB2JGeMnbYZ2c37Y5stce2TliFPSAB5QbV+A3Q4og= Subject key identifier: 79:2B:54:B4:35:FB:AC:90:1F:E2:56:81:86:DF:05:8B:C3:0C:1C:53 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0C99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0C80 Signing time: Sun 10 Aug 2025 18:25:54 +0000 Manifest this update: Sun 10 Aug 2025 18:25:53 +0000 Manifest next update: Sun 17 Aug 2025 18:25:53 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: nF3Z0zI4T89UdLIhQEa/xEGhHpmJGVxUSGmcl2Tb7qg=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: n01/3EIjRvyLbA9XmobgbcsSzY3lQa7SmWy3AZPr1nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 18:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3225 (0xc99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83, serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Aug 10 18:25:53 2025 GMT Not After : Aug 17 18:25:53 2025 GMT Subject: CN=6898e431-8d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:78:ef:5e:c1:34:7b:c2:13:ad:03:b6:80:a7: 79:87:1b:df:91:06:9f:ad:84:0a:9c:bc:c5:0c:d4: a9:05:7d:30:40:c6:4f:b1:81:df:72:96:2d:55:90: ec:79:69:d5:01:b9:71:67:90:33:71:b9:5d:15:a5: 0a:fd:55:b4:4c:1f:65:11:90:d5:ff:84:56:f6:32: c1:ae:de:72:7e:b9:9f:88:8a:80:7c:5c:50:e7:56: 84:02:3f:7e:8d:b9:20:5b:f4:b9:ed:55:3b:be:ae: f2:8e:ef:39:94:30:4c:5c:9e:9f:30:8b:98:cc:09: 08:cd:5f:5c:80:a2:4c:de:f2:2f:42:ce:f4:1d:74: ca:57:e7:b2:82:2e:7a:6e:79:98:f6:e0:1b:02:4b: dc:32:23:fe:6f:2c:34:fb:ee:88:86:44:56:5e:cb: 53:2d:1b:01:27:af:1d:8a:62:4d:d8:aa:5a:e4:0d: ed:4d:4d:06:b3:00:b5:fc:11:69:8e:73:a5:96:e9: bb:e4:a8:c0:78:47:a1:de:50:e2:09:ce:16:30:96: 7d:4b:4b:bb:58:de:5d:1e:d6:4c:bb:9d:bd:32:bd: a6:1a:d2:06:ab:9d:e9:4f:2a:8a:0a:d9:56:30:69: d7:1d:02:9e:5d:1c:dd:4b:67:a7:73:6c:cc:8e:58: 16:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2B:54:B4:35:FB:AC:90:1F:E2:56:81:86:DF:05:8B:C3:0C:1C:53 X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:6c:24:aa:f3:c2:3d:18:e7:84:12:85:4e:3e:40:42:a5:8d: 07:ac:38:76:63:33:c6:1e:a9:9d:ac:c4:54:a7:27:f5:b1:70: 88:f1:b3:5d:7d:af:62:26:e1:a5:46:16:e3:23:f0:63:88:97: 34:ed:8e:e1:02:f5:4b:0d:d6:1e:4e:f7:6e:69:2e:4e:c5:ea: 66:b7:52:a2:93:6f:df:76:52:f7:14:19:5e:65:64:fc:79:93: 17:af:dd:5c:df:d4:5d:94:8b:24:c9:7b:1e:ae:ee:81:c5:d6: 3b:e0:71:34:84:2e:63:2a:6b:5f:6d:a7:41:f5:04:7f:cb:be: 8f:6a:80:99:19:38:a3:2a:9f:03:84:4e:7b:5d:53:49:0a:fa: 6e:0e:71:f1:d9:77:c8:32:7a:36:20:6b:6d:22:7a:0a:98:03: 5d:86:7b:06:26:24:11:2e:61:29:55:f7:b9:5f:65:f2:5f:62: e9:ab:ce:db:20:b5:9c:6b:c1:4e:23:43:67:6b:44:c0:da:bc: 0e:c2:bc:18:c0:07:9c:8b:34:32:8f:ce:ff:5a:6f:57:dc:d4: 90:db:ae:4c:51:2a:ae:48:01:72:12:ac:2d:6a:fb:9e:5a:59: b3:cb:9e:c6:65:a0:5e:5c:37:a9:cb:d7:73:b8:d4:3a:2a:52: a6:a0:8b:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjUwODEwMTgyNTUzWhcNMjUwODE3MTgyNTUzWjAYMRYwFAYD VQQDEw02ODk4ZTQzMS04ZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XjvXsE0e8ITrQO2gKd5hxvfkQafrYQKnLzFDNSpBX0wQMZPsYHfcpYtVZDs eWnVAblxZ5AzcbldFaUK/VW0TB9lEZDV/4RW9jLBrt5yfrmfiIqAfFxQ51aEAj9+ jbkgW/S57VU7vq7yju85lDBMXJ6fMIuYzAkIzV9cgKJM3vIvQs70HXTKV+eygi56 bnmY9uAbAkvcMiP+byw0++6IhkRWXstTLRsBJ68dimJN2Kpa5A3tTU0GswC1/BFp jnOllum75KjAeEeh3lDiCc4WMJZ9S0u7WN5dHtZMu529Mr2mGtIGq53pTyqKCtlW MGnXHQKeXRzdS2enc2zMjlgW5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkrVLQ1 +6yQH+JWgYbfBYvDDBxTMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXbCSq88I9GOeEEoVOPkBCpY0HrDh2YzPGHqmdrMRUpyf1sXCI8bNd fa9iJuGlRhbjI/BjiJc07Y7hAvVLDdYeTvduaS5Oxepmt1Kik2/fdlL3FBleZWT8 eZMXr91c39RdlIskyXseru6BxdY74HE0hC5jKmtfbadB9QR/y76PaoCZGTijKp8D hE57XVNJCvpuDnHx2XfIMno2IGttInoKmANdhnsGJiQRLmEpVfe5X2XyX2Lpq87b ILWca8FOI0Nna0TA2rwOwrwYwAecizQyj87/Wm9X3NSQ265MUSquSAFyEqwtavue Wlmzy57GZaBeXDepy9dzuNQ6KlKmoItn -----END CERTIFICATE-----Generated at Tue Aug 12 18:19:01 2025 by rpki-client