$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: svRGB555jywV/jv8ssoEoBdqXZVQ3sTIO0IO/rNe4s8= Subject key identifier: 03:F8:1D:39:C4:41:82:22:CE:E4:55:48:03:27:D1:24:35:73:FC:04 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0AB6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0AB0 Signing time: Wed 04 Jun 2025 19:27:10 +0000 Manifest this update: Wed 04 Jun 2025 19:27:09 +0000 Manifest next update: Wed 11 Jun 2025 19:27:09 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: uWsT/93rEgMauCK7yVOtczAM6IWr75iwK48L8R4tnrQ=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 19:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2742 (0xab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Jun 4 19:27:09 2025 GMT Not After : Jun 11 19:27:09 2025 GMT Subject: CN=68409e0d-1f94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:44:17:9a:34:0b:43:2b:6e:8a:b5:8e:d9:6f: 55:e9:e1:4a:ae:4d:79:2d:05:20:85:ee:7d:2b:08: 94:c7:cc:fb:1b:30:13:8c:09:f3:48:89:72:37:54: 4c:0b:63:79:3b:b0:c4:22:58:3d:a2:ed:cb:73:fa: 8c:90:f4:b0:15:2a:b2:ba:f4:f4:82:b7:34:dc:f6: ef:a2:34:72:7f:cc:25:36:ef:df:6c:f7:5c:1c:e7: 4c:cd:59:c8:18:23:ac:4c:f9:5a:a5:35:e7:27:01: c9:cc:d1:8d:1c:f9:56:67:83:34:7f:5b:6c:db:03: 05:5a:2e:4f:7a:64:ee:ba:9f:45:10:44:0a:de:20: ea:7c:a5:d7:f8:1b:f4:cb:b7:58:fb:b5:44:e1:34: 2d:06:e8:c3:61:c1:d5:be:94:e9:80:f3:50:ce:5a: 51:67:3f:3a:51:b2:5d:a6:1b:3c:90:fd:96:14:f2: bb:5b:cd:df:51:73:2c:c4:14:9b:ea:34:e1:12:75: 9d:a1:82:5a:48:c1:e3:4e:db:b8:f5:32:6a:d9:ff: b6:d2:e1:7d:1d:f7:08:0e:d9:79:5c:90:a0:d5:d8: 76:45:de:80:c9:40:41:6d:a3:39:a7:01:c8:28:97: 3d:3b:40:c6:f1:df:a4:fd:89:0b:e6:6f:73:15:9c: 62:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F8:1D:39:C4:41:82:22:CE:E4:55:48:03:27:D1:24:35:73:FC:04 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:51:b8:ec:ca:10:65:20:7f:d7:f4:13:ca:84:f9:90:4d:b6: 75:37:a6:b6:fc:11:56:e5:9d:bd:35:e0:fc:45:9e:d9:80:cb: 2c:bf:31:ac:6d:0a:f7:70:e6:da:55:9e:a7:9f:d5:c3:b4:94: ac:97:56:30:1a:04:86:38:52:f7:ab:52:a4:03:a6:f7:b2:56: 27:51:d7:00:35:33:26:97:5b:9c:3e:df:ac:44:b7:4c:1d:f7: 76:52:c2:c9:bd:1f:ff:db:b4:97:4a:83:41:84:f6:c7:ed:06: 90:ec:87:31:73:e6:24:10:81:62:2b:b4:25:32:6f:8d:81:ff: 0f:71:72:9e:25:92:cf:77:be:da:f4:a4:fe:88:28:35:10:ca: 33:5e:ba:7c:fa:b1:b9:a5:fb:94:78:f2:ae:16:b8:28:3f:99: 46:01:a8:1d:a7:10:dd:d2:da:91:e3:c7:f5:25:9d:4b:75:f5: b4:0a:92:cd:d7:a5:97:76:37:da:03:8a:bc:40:f2:69:62:af: f9:a5:fa:53:28:7f:6a:9f:24:7f:6a:bf:45:2f:ce:21:22:b2: 96:82:5d:d8:75:f8:41:f7:8c:ff:8e:22:7d:7f:34:fe:88:7d: 4c:91:33:58:c2:62:0f:3a:e9:00:01:8b:d6:9c:2f:2f:7b:19: 0c:bf:2a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwNjA0MTkyNzA5WhcNMjUwNjExMTkyNzA5WjAYMRYwFAYD VQQDEw02ODQwOWUwZC0xZjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UQXmjQLQytuirWO2W9V6eFKrk15LQUghe59KwiUx8z7GzATjAnzSIlyN1RM C2N5O7DEIlg9ou3Lc/qMkPSwFSqyuvT0grc03PbvojRyf8wlNu/fbPdcHOdMzVnI GCOsTPlapTXnJwHJzNGNHPlWZ4M0f1ts2wMFWi5PemTuup9FEEQK3iDqfKXX+Bv0 y7dY+7VE4TQtBujDYcHVvpTpgPNQzlpRZz86UbJdphs8kP2WFPK7W83fUXMsxBSb 6jThEnWdoYJaSMHjTtu49TJq2f+20uF9HfcIDtl5XJCg1dh2Rd6AyUBBbaM5pwHI KJc9O0DG8d+k/YkL5m9zFZxiqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAP4HTnE QYIizuRVSAMn0SQ1c/wEMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrUbjsyhBlIH/X9BPKhPmQTbZ1N6a2/BFW5Z29NeD8RZ7ZgMssvzGs bQr3cObaVZ6nn9XDtJSsl1YwGgSGOFL3q1KkA6b3slYnUdcANTMml1ucPt+sRLdM Hfd2UsLJvR//27SXSoNBhPbH7QaQ7Icxc+YkEIFiK7QlMm+Ngf8PcXKeJZLPd77a 9KT+iCg1EMozXrp8+rG5pfuUePKuFrgoP5lGAagdpxDd0tqR48f1JZ1LdfW0CpLN 16WXdjfaA4q8QPJpYq/5pfpTKH9qnyR/ar9FL84hIrKWgl3YdfhB94z/jiJ9fzT+ iH1MkTNYwmIPOukAAYvWnC8vexkMvyp4 -----END CERTIFICATE-----Generated at Fri Jun 6 17:00:31 2025 by rpki-client