$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: 02n0oB4gaO3uf76C53cdSqVOD24iVQV6weBX3T3x12s= Subject key identifier: BE:51:AF:F3:D2:D0:67:75:FB:59:AE:BE:A7:BB:6A:1F:66:65:64:8D Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 0AE5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 0ADF Signing time: Thu 04 Sep 2025 19:38:39 +0000 Manifest this update: Thu 04 Sep 2025 19:38:39 +0000 Manifest next update: Thu 11 Sep 2025 19:38:39 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: lOkJDxcf5hDpz5CE6QK3cxDX+r3AoUEF94xeh7YFzBk=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: 1RC1hvOn8M5X9ccmY3hdnJuLljVCrrYvq7AQQg0ulGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2789 (0xae5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127, serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Sep 4 19:38:39 2025 GMT Not After : Sep 11 19:38:39 2025 GMT Subject: CN=68b9eabf-c29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:68:9e:1c:3e:c1:3c:eb:2e:47:98:74:c1:71: 3d:bd:63:f6:c2:d9:9e:6f:a5:6a:2c:a3:75:ee:c1: a8:05:dd:fb:43:e1:b8:c6:09:d0:e3:7f:4c:2a:eb: ee:17:3a:6b:f6:01:e9:2f:e3:af:95:37:fe:f2:1e: fb:22:1c:05:07:5e:27:a7:5d:d5:79:cb:df:ec:91: bc:5d:cb:7b:8b:31:11:31:68:fe:da:99:c5:de:0c: c7:43:ea:51:cb:91:d1:ae:10:43:1a:9b:1b:85:83: 7b:7b:3a:d0:1d:c4:e2:8f:91:68:1d:13:fd:38:15: ed:51:cf:e6:86:c9:ac:64:88:e8:18:b8:93:d0:7f: 1e:9a:22:ba:1d:5b:ed:25:51:5e:76:c2:88:5a:ec: f6:54:0d:c7:54:e8:b6:ab:ac:e2:35:64:dd:a5:2e: 47:9f:f2:2a:99:7e:47:92:27:ad:83:b9:84:82:1e: 6f:cd:28:21:0a:f9:f2:ba:70:89:43:42:9c:75:dd: 15:52:1a:c5:01:cd:bb:8d:fe:0b:6a:b8:b0:a0:86: 76:56:45:12:c0:03:50:b3:52:33:0c:38:9b:37:ef: 42:63:f8:04:34:95:25:d3:a4:21:d7:9c:e2:21:ad: 83:be:56:4e:ac:00:1f:a3:1a:0e:dc:05:05:ed:29: 2b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:51:AF:F3:D2:D0:67:75:FB:59:AE:BE:A7:BB:6A:1F:66:65:64:8D X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:58:85:14:11:ac:2d:b8:cc:95:24:75:28:e6:a2:8b:af:00: e0:cc:c6:f3:73:88:ce:0c:e2:4a:d2:05:1d:27:6b:8e:0d:a7: 11:0b:55:88:f1:c4:06:78:bc:0e:14:47:ac:c9:3c:5e:72:fc: 05:b7:5a:f4:45:9f:2d:78:8f:26:27:d6:50:c4:16:e5:92:77: eb:b2:dc:b1:59:34:ea:89:d0:6d:9c:db:47:3d:51:44:0b:c1: 6a:69:bf:bb:28:56:c2:89:78:e8:76:8b:c6:a6:2b:36:8c:12: 61:8d:4c:c0:e9:0a:51:3f:6c:56:af:4a:4e:9a:bf:64:da:8f: db:f6:1c:ae:b4:fe:42:ec:10:14:97:36:c0:d8:3d:51:72:47: 95:0d:b9:c5:a3:d0:e6:1f:07:11:05:09:aa:5e:2c:ea:7f:f5: 3b:15:52:83:fa:f1:05:fb:80:c0:5c:2b:d4:3b:fb:49:5e:ab: 66:87:65:c1:8c:b4:d1:0a:e4:53:9e:1d:b5:d4:3d:1a:b4:b6: 2f:e2:fc:da:ec:b2:6d:e0:e1:9b:ac:c0:40:8e:14:7a:ef:36: 44:d9:a6:3a:53:9b:14:62:b3:07:34:90:b4:1d:16:86:7a:b2: c4:c9:1f:5f:9d:dc:43:4f:6b:d9:21:c4:70:be:ef:e0:13:85: ea:5e:47:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjUwOTA0MTkzODM5WhcNMjUwOTExMTkzODM5WjAYMRYwFAYD VQQDEw02OGI5ZWFiZi1jMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2ieHD7BPOsuR5h0wXE9vWP2wtmeb6VqLKN17sGoBd37Q+G4xgnQ439MKuvu Fzpr9gHpL+OvlTf+8h77IhwFB14np13Vecvf7JG8Xct7izERMWj+2pnF3gzHQ+pR y5HRrhBDGpsbhYN7ezrQHcTij5FoHRP9OBXtUc/mhsmsZIjoGLiT0H8emiK6HVvt JVFedsKIWuz2VA3HVOi2q6ziNWTdpS5Hn/IqmX5Hkietg7mEgh5vzSghCvnyunCJ Q0Kcdd0VUhrFAc27jf4LariwoIZ2VkUSwANQs1IzDDibN+9CY/gENJUl06Qh15zi Ia2DvlZOrAAfoxoO3AUF7SkrDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5Rr/PS 0Gd1+1muvqe7ah9mZWSNMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZWIUUEawtuMyVJHUo5qKLrwDgzMbzc4jODOJK0gUdJ2uODacRC1WI 8cQGeLwOFEesyTxecvwFt1r0RZ8teI8mJ9ZQxBblknfrstyxWTTqidBtnNtHPVFE C8Fqab+7KFbCiXjodovGpis2jBJhjUzA6QpRP2xWr0pOmr9k2o/b9hyutP5C7BAU lzbA2D1RckeVDbnFo9DmHwcRBQmqXizqf/U7FVKD+vEF+4DAXCvUO/tJXqtmh2XB jLTRCuRTnh211D0atLYv4vza7LJt4OGbrMBAjhR67zZE2aY6U5sUYrMHNJC0HRaG erLEyR9fndxDT2vZIcRwvu/gE4XqXkdV -----END CERTIFICATE-----Generated at Sat Sep 6 15:09:07 2025 by rpki-client