$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: Yv+AhW9UocJxRyepZhLu1UOOKiSTlmIp9V+2Jv1xacw= Subject key identifier: A1:4E:5B:35:24:B4:E0:D7:F2:A8:1F:F9:5A:92:83:8F:5A:56:0E:ED Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0C8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0C72 Signing time: Fri 18 Jul 2025 18:36:33 +0000 Manifest this update: Fri 18 Jul 2025 18:36:33 +0000 Manifest next update: Fri 25 Jul 2025 18:36:33 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: Mf5U58uSx7T63jBlYDRjc6loGknABosKSpWYS/QZioY=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: I8Ss/Oj3Q9umSrFxZnObaXQe/cu017hGcC027pv/vs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83, serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Jul 18 18:36:33 2025 GMT Not After : Jul 25 18:36:33 2025 GMT Subject: CN=687a9431-b1be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:24:06:36:85:e5:51:9c:22:c4:aa:b6:1d: 13:ab:fe:d2:1f:3b:14:1f:cc:ba:19:ad:5f:cb:5f: 67:89:ba:c7:f3:83:b6:2b:1e:43:74:5e:cd:59:f7: 6f:83:2c:db:5d:5a:f7:f2:15:9d:9d:c3:d8:37:c6: ba:65:01:41:45:d3:0e:c6:32:97:07:23:f0:89:b3: 6d:3e:06:3f:b1:39:41:60:4d:17:e8:9d:2e:c9:ce: 4c:8f:b0:68:be:39:ad:a0:4b:cc:f3:23:ae:07:80: fe:7e:78:a9:9c:9d:7f:03:5e:62:d8:ac:d5:92:27: 62:09:40:af:9b:6e:c7:06:54:f9:5f:16:17:28:42: 73:b6:ce:17:f7:be:71:df:bf:44:78:4b:cc:29:95: 48:95:e7:96:3f:1f:8c:a0:6b:9e:d1:4a:47:f6:e3: 95:3f:e6:b3:ed:00:33:80:9f:9c:a6:a3:51:06:f8: 61:b1:42:48:2e:75:db:97:ce:b9:56:99:b4:8a:90: 23:75:a5:46:e1:17:46:49:f9:e3:90:c3:ad:98:10: 59:30:d8:09:99:47:8d:d9:be:16:22:a1:a4:bf:58: 3d:da:6f:ea:d8:00:32:e2:54:25:c2:fc:f8:58:ad: fa:46:ef:f9:32:5e:73:13:da:66:d7:41:46:06:fb: 2f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:4E:5B:35:24:B4:E0:D7:F2:A8:1F:F9:5A:92:83:8F:5A:56:0E:ED X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:89:03:b1:43:1a:6f:e2:30:95:19:1d:91:1a:84:ef:43:d6: 20:88:63:23:2e:5b:52:e2:10:d6:cd:2b:99:3c:03:19:b4:53: e7:1a:4c:31:58:94:1a:98:b8:a3:17:f3:7f:92:14:46:22:65: de:b0:24:63:37:05:3a:d0:a8:e4:13:1d:78:a2:cf:5f:0f:a1: 95:7f:fa:7e:c7:77:cc:53:6f:d6:51:87:9f:e0:b3:2c:1b:4b: cc:18:d4:6b:23:74:30:a7:f1:b5:22:0a:9c:32:04:aa:6d:8a: 75:ae:e9:ce:05:f9:be:0a:63:8a:12:f3:61:d3:f4:ab:2e:40: de:b2:3e:eb:fe:45:da:7a:37:ab:e9:4c:44:ff:2d:02:7d:a5: ff:96:ee:4a:a9:18:0a:8e:34:74:3b:81:b9:d7:d6:78:c8:bc: b4:e3:aa:02:4a:5d:cc:92:94:52:3f:b3:96:cc:97:4b:11:a0: 49:f0:8d:2f:67:f0:fc:15:d9:98:67:49:0e:e5:a3:48:b4:5c: 40:c9:ce:09:8d:41:bc:8c:59:cd:02:b3:fd:1c:6a:c7:16:6f: bd:b2:64:4d:40:62:d7:ac:4c:2e:b0:60:4e:27:17:9b:9c:ff: bb:8a:14:de:41:66:f4:fd:ef:32:df:eb:5b:f6:ab:0c:85:db: c8:b6:9d:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjUwNzE4MTgzNjMzWhcNMjUwNzI1MTgzNjMzWjAYMRYwFAYD VQQDEw02ODdhOTQzMS1iMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBIkBjaF5VGcIsSqth0Tq/7SHzsUH8y6Ga1fy19nibrH84O2Kx5DdF7NWfdv gyzbXVr38hWdncPYN8a6ZQFBRdMOxjKXByPwibNtPgY/sTlBYE0X6J0uyc5Mj7Bo vjmtoEvM8yOuB4D+fnipnJ1/A15i2KzVkidiCUCvm27HBlT5XxYXKEJzts4X975x 379EeEvMKZVIleeWPx+MoGue0UpH9uOVP+az7QAzgJ+cpqNRBvhhsUJILnXbl865 Vpm0ipAjdaVG4RdGSfnjkMOtmBBZMNgJmUeN2b4WIqGkv1g92m/q2AAy4lQlwvz4 WK36Ru/5Ml5zE9pm10FGBvsvzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFOWzUk tODX8qgf+VqSg49aVg7tMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoiQOxQxpv4jCVGR2RGoTvQ9YgiGMjLltS4hDWzSuZPAMZtFPnGkwx WJQamLijF/N/khRGImXesCRjNwU60KjkEx14os9fD6GVf/p+x3fMU2/WUYef4LMs G0vMGNRrI3Qwp/G1IgqcMgSqbYp1runOBfm+CmOKEvNh0/SrLkDesj7r/kXaejer 6UxE/y0CfaX/lu5KqRgKjjR0O4G519Z4yLy046oCSl3MkpRSP7OWzJdLEaBJ8I0v Z/D8FdmYZ0kO5aNItFxAyc4JjUG8jFnNArP9HGrHFm+9smRNQGLXrEwusGBOJxeb nP+7ihTeQWb0/e8y3+tb9qsMhdvItp2v -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:07 2025 by rpki-client