$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: 3lTwf+13FjDJ2VHorkYJcoUnO5HkWMWvaHnGUfbm0nw= Subject key identifier: 2F:9C:2E:47:53:C4:A6:67:49:8D:9C:69:65:D7:65:E1:25:6E:E9:F5 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0B53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0B46 Signing time: Thu 12 Mar 2026 18:59:40 +0000 Manifest this update: Thu 12 Mar 2026 18:59:39 +0000 Manifest next update: Thu 19 Mar 2026 18:59:39 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: gXlbuCH2596qzfev+ARTK50OabznJLsxqvusxfkgH7U=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: XjbcBg5C4XFnwFYUTLX7T8VO1Y9OzJMVBQLkwMjPTtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 18:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2899 (0xb53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Mar 12 18:59:39 2026 GMT Not After : Mar 19 18:59:39 2026 GMT Subject: CN=69b30d1c-a85a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:b4:ec:eb:fb:6f:63:90:7d:ad:87:f1:5b: ef:16:a8:3f:96:f6:24:ff:c9:e5:f2:6e:d3:37:80: 42:4c:13:09:4b:cb:60:c8:40:f3:08:25:bf:f2:0e: d1:12:a3:a2:5b:09:f1:dc:73:71:99:66:8e:1b:4a: ab:44:c1:06:fc:b0:04:3f:53:b2:4b:23:a3:27:22: 0d:21:92:0a:91:00:f5:ca:42:41:08:8a:c8:a6:a5: 3e:54:00:39:5a:15:dd:55:81:bc:17:e9:9e:17:44: bd:e0:7a:1c:ca:53:a7:d6:a5:c7:c5:bc:9d:41:aa: 92:49:88:d7:ea:22:3f:53:64:c8:24:70:63:7c:f0: a0:af:45:fa:1f:59:6d:06:28:75:99:07:db:42:af: ad:a1:2d:cd:d6:e3:02:c8:3a:ab:49:23:5e:17:1c: f8:e2:22:31:eb:dc:a3:cc:e6:07:7a:85:9f:7d:68: ba:c4:bd:c4:10:dd:43:11:f5:2b:15:53:59:36:ba: 5d:9e:8a:37:31:e7:70:87:2d:d6:2a:e6:38:84:a7: bc:25:1c:4e:77:28:13:b3:df:39:48:c1:39:40:5b: a7:08:0c:c1:ec:f0:66:3e:d5:05:02:6a:89:f0:a5: c4:30:ab:72:15:b5:19:99:53:cf:e5:7f:ad:ae:eb: 0b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9C:2E:47:53:C4:A6:67:49:8D:9C:69:65:D7:65:E1:25:6E:E9:F5 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ed:62:ac:02:77:75:c5:52:71:40:4b:3d:4b:26:a5:fd:68: b1:b5:14:02:75:67:92:f8:cb:dc:4f:12:93:95:0c:af:77:13: ae:72:21:59:94:8e:4a:bb:2f:c6:3c:3f:71:b7:50:7c:77:50: 04:0d:75:8a:55:f9:da:24:b2:8e:13:ec:d6:68:24:ed:2e:d3: d8:cf:69:80:32:0c:60:3d:30:5d:ad:75:02:c1:cc:4f:07:3c: ed:6b:cb:0c:40:0e:6b:4b:2d:9d:49:56:4b:7e:ec:08:34:4d: 10:ca:41:a9:d4:63:42:30:df:fd:05:f2:cb:a4:d5:2b:b8:c8: df:c4:f3:5b:27:95:ac:45:a6:29:f7:f8:f9:bc:de:23:3a:fe: 7f:e7:81:f9:e6:92:67:b5:d2:54:0d:6d:32:7e:75:a5:1d:36: 74:02:d6:20:fc:4c:52:f3:2d:8e:ee:c9:c2:eb:b1:18:9f:70: 66:92:ce:a5:db:2b:ac:6e:e3:96:76:74:84:64:1f:d7:8a:04: 7d:60:14:f4:34:a1:7e:d0:07:dc:4d:c9:89:06:d8:83:26:0a: aa:a0:02:c3:9f:38:ec:4c:f4:68:fe:6e:98:eb:54:bc:00:63: ee:94:13:31:1d:52:24:47:cb:35:50:5d:fb:f0:5a:03:ff:0f: 4a:1f:ed:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjYwMzEyMTg1OTM5WhcNMjYwMzE5MTg1OTM5WjAYMRYwFAYD VQQDEw02OWIzMGQxYy1hODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUS07Ov7b2OQfa2H8VvvFqg/lvYk/8nl8m7TN4BCTBMJS8tgyEDzCCW/8g7R EqOiWwnx3HNxmWaOG0qrRMEG/LAEP1OySyOjJyINIZIKkQD1ykJBCIrIpqU+VAA5 WhXdVYG8F+meF0S94HocylOn1qXHxbydQaqSSYjX6iI/U2TIJHBjfPCgr0X6H1lt Bih1mQfbQq+toS3N1uMCyDqrSSNeFxz44iIx69yjzOYHeoWffWi6xL3EEN1DEfUr FVNZNrpdnoo3Medwhy3WKuY4hKe8JRxOdygTs985SME5QFunCAzB7PBmPtUFAmqJ 8KXEMKtyFbUZmVPP5X+trusLPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC+cLkdT xKZnSY2caWXXZeElbun1MB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsO1irAJ3dcVScUBLPUsmpf1osbUUAnVnkvjL3E8Sk5UMr3cTrnIhWZSOSrsv xjw/cbdQfHdQBA11ilX52iSyjhPs1mgk7S7T2M9pgDIMYD0wXa11AsHMTwc87WvL DEAOa0stnUlWS37sCDRNEMpBqdRjQjDf/QXyy6TVK7jI38TzWyeVrEWmKff4+bze Izr+f+eB+eaSZ7XSVA1tMn51pR02dALWIPxMUvMtju7JwuuxGJ9wZpLOpdsrrG7j lnZ0hGQf14oEfWAU9DShftAH3E3JiQbYgyYKqqACw5847Ez0aP5umOtUvABj7pQT MR1SJEfLNVBd+/BaA/8PSh/tpg== -----END CERTIFICATE-----Generated at Fri Mar 13 05:50:37 2026 by rpki-client