$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: ATLRvn8yhjjRr5ZuaFWCgWndsHfa3U4RTeFq95cibwo= Subject key identifier: E9:3D:87:75:CE:98:10:E9:24:2B:1E:97:03:6B:6B:C6:EB:DE:EF:5A Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C2C Signing time: Sat 14 Jun 2025 18:32:33 +0000 Manifest this update: Sat 14 Jun 2025 18:32:33 +0000 Manifest next update: Sat 21 Jun 2025 18:32:33 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: e8OLT7GHt3RiwL5YmtJixeT1syyzk+YcxJYHPl4Ifpo=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Jun 14 18:32:33 2025 GMT Not After : Jun 21 18:32:33 2025 GMT Subject: CN=684dc041-efac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:09:94:ad:db:3d:6a:c3:8c:3d:3f:8e:29:6e: 21:54:14:f4:dd:a4:35:3c:bc:d6:e9:49:63:68:cd: 4c:e4:f0:2f:6d:a0:42:ba:c8:03:21:9e:22:0e:2a: f9:7d:b5:b0:a7:e1:d1:7b:f9:d1:2e:4e:1a:d8:3f: 3f:73:e2:d3:e3:27:c7:13:56:79:de:30:fa:f6:29: 9e:26:b4:b0:f2:fe:d6:f6:f6:76:80:91:78:2e:63: 44:32:17:db:e0:19:72:b2:bb:7c:59:7f:f3:ed:67: 81:ac:99:a0:55:2f:8a:d6:37:8c:3a:4c:cd:40:61: ad:38:3f:1e:10:60:f5:41:9b:6f:6b:4c:62:9d:76: 56:11:09:ec:88:b6:75:43:77:47:c7:90:1a:bc:c5: 37:32:0e:c2:3d:aa:fb:06:90:c4:4c:33:57:b4:d1: 8f:5a:72:15:62:62:d6:6e:ce:46:3d:23:48:0d:95: 8d:3f:03:9b:47:70:08:00:54:f7:b2:5f:57:a4:08: 7a:4c:fd:7c:27:5a:fc:9e:87:f2:94:6a:37:eb:f1: 38:af:dc:ca:c1:59:6a:15:bd:22:93:94:1e:77:58: 17:e0:21:f5:3c:2f:60:eb:c8:69:7c:ac:e2:27:71: 6f:fb:dd:15:16:2e:fa:4c:53:f2:44:19:6e:02:78: 59:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3D:87:75:CE:98:10:E9:24:2B:1E:97:03:6B:6B:C6:EB:DE:EF:5A X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f6:a6:3b:97:58:de:f3:10:97:8a:12:4c:f8:d8:04:d8:53: b2:c7:2b:c0:40:b8:68:10:fb:89:d3:38:ca:97:52:5a:47:c6: a2:db:e4:07:b0:cd:63:41:3e:61:b2:f1:cd:50:a3:02:3e:81: 9b:81:2a:ef:9a:f3:a6:5b:f3:d0:b9:4c:dc:79:e8:63:a2:59: 6e:23:1b:2d:56:93:5f:e0:33:0c:01:e5:37:fc:9b:f6:66:e9: 0b:89:fd:8d:34:c0:05:35:ca:97:42:f2:dc:bb:c2:4e:41:e1: a6:1c:6f:68:07:1c:ea:2f:94:28:90:fc:c9:79:0d:d6:15:94: 85:0f:54:30:32:2e:8c:d9:6c:3b:cd:c2:ca:bd:99:b6:45:a8: e9:38:d5:dc:61:6a:3a:9a:6e:56:2e:e7:1a:65:b4:09:0b:54: 54:ab:51:a1:af:ac:f3:61:ab:ca:5d:5d:f1:a9:96:48:f3:57: 36:41:6f:fe:44:96:2e:0d:41:e7:0d:a9:08:48:69:3d:15:86: ee:46:d1:bb:22:ba:d8:aa:ca:b0:63:48:9d:a2:53:82:c4:6a: 7a:7b:ff:51:3d:49:ea:d4:c3:c1:b6:4a:3b:21:01:1f:43:40: 24:8c:f2:19:53:b2:be:ef:8e:16:73:59:73:53:1d:24:65:b6: 8f:1b:f8:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwNjE0MTgzMjMzWhcNMjUwNjIxMTgzMjMzWjAYMRYwFAYD VQQDEw02ODRkYzA0MS1lZmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7AmUrds9asOMPT+OKW4hVBT03aQ1PLzW6UljaM1M5PAvbaBCusgDIZ4iDir5 fbWwp+HRe/nRLk4a2D8/c+LT4yfHE1Z53jD69imeJrSw8v7W9vZ2gJF4LmNEMhfb 4Blysrt8WX/z7WeBrJmgVS+K1jeMOkzNQGGtOD8eEGD1QZtva0xinXZWEQnsiLZ1 Q3dHx5AavMU3Mg7CPar7BpDETDNXtNGPWnIVYmLWbs5GPSNIDZWNPwObR3AIAFT3 sl9XpAh6TP18J1r8nofylGo36/E4r9zKwVlqFb0ik5Qed1gX4CH1PC9g68hpfKzi J3Fv+90VFi76TFPyRBluAnhZjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOk9h3XO mBDpJCselwNra8br3u9aMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE9qY7l1je8xCXihJM+NgE2FOyxyvAQLhoEPuJ0zjKl1JaR8ai2+QH sM1jQT5hsvHNUKMCPoGbgSrvmvOmW/PQuUzceehjolluIxstVpNf4DMMAeU3/Jv2 ZukLif2NNMAFNcqXQvLcu8JOQeGmHG9oBxzqL5QokPzJeQ3WFZSFD1QwMi6M2Ww7 zcLKvZm2RajpONXcYWo6mm5WLucaZbQJC1RUq1Ghr6zzYavKXV3xqZZI81c2QW/+ RJYuDUHnDakISGk9FYbuRtG7IrrYqsqwY0idolOCxGp6e/9RPUnq1MPBtko7IQEf Q0AkjPIZU7K+744Wc1lzUx0kZbaPG/i0 -----END CERTIFICATE-----Generated at Sun Jun 15 10:21:11 2025 by rpki-client