$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: 5mFODcc2cmi8ybkom6FwKLPhwVssrORcE2e0sryQaCs= Subject key identifier: 1F:8E:EF:15:34:AE:66:59:E1:26:54:AF:83:8C:33:BD:3D:0A:45:74 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C49 Signing time: Sun 10 Aug 2025 18:36:07 +0000 Manifest this update: Sun 10 Aug 2025 18:36:07 +0000 Manifest next update: Sun 17 Aug 2025 18:36:07 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: gQ9PLGDrOABsG9bA2XdSjkvno7wnDeSdYFN3/d9aqRM=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Aug 10 18:36:07 2025 GMT Not After : Aug 17 18:36:07 2025 GMT Subject: CN=6898e697-49e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3f:d4:6a:5c:56:27:4c:3c:e3:aa:cf:38:89: 3d:1b:e9:e6:da:d6:55:9e:fe:1c:8b:d0:8e:f6:1e: f8:96:62:95:96:94:58:0e:0f:bc:6b:37:05:ae:2f: 46:e8:61:57:32:0a:b4:d4:6f:a9:e5:6f:f0:6c:a9: 7a:f0:46:a2:3f:87:e8:4e:2f:de:11:22:39:6b:4b: 46:c7:7c:20:3c:cd:0d:f1:60:17:c0:4e:d8:04:de: df:9c:83:1f:21:b8:fe:46:99:93:fe:46:8b:38:77: c6:02:d0:73:73:b0:49:30:d9:af:5c:97:7c:68:3c: 33:e1:40:27:ef:ce:c0:65:0c:5c:53:33:9a:88:c7: 8e:8f:92:48:ee:a8:fd:75:9e:70:6d:59:9b:e8:da: c4:42:dd:83:65:bd:5e:ca:02:57:27:21:5d:23:3e: da:58:32:a2:2a:35:24:49:85:43:16:df:27:20:7f: 6d:ec:9b:be:ad:25:7c:28:e1:5d:c1:59:e7:b5:3a: 17:da:54:98:d2:8c:11:e7:0b:5b:6b:67:97:9c:7c: 27:94:06:db:2e:e6:7d:b8:cd:6b:a2:5d:3f:07:f8: da:24:ff:03:00:bb:e7:5e:01:83:75:d0:00:aa:f4: e8:58:b6:53:1d:b8:f3:f8:77:45:33:52:a8:19:0b: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8E:EF:15:34:AE:66:59:E1:26:54:AF:83:8C:33:BD:3D:0A:45:74 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:20:51:16:c5:fd:da:ef:e7:ad:5a:0d:73:89:0b:be:cb:44: 35:b8:69:1d:aa:36:7c:91:cf:79:ca:5a:b6:b9:f3:32:67:b1: 52:81:94:92:63:bd:e9:fa:25:a6:6d:bf:0e:ee:b2:76:16:73: d8:30:f7:52:35:04:0a:ae:5e:22:06:62:04:ed:16:3f:55:7f: d3:4d:0f:db:7d:83:b8:ed:c5:88:7e:19:8e:c1:df:d7:fd:25: f1:d9:95:40:51:d3:03:c0:b5:fd:7a:35:ae:4e:63:d9:94:8e: 11:47:eb:d2:5e:d6:f2:42:3c:33:18:da:87:c8:49:91:46:0e: d5:33:e3:77:5e:03:c4:ab:39:48:aa:60:c3:f3:cf:4d:a3:ac: 8c:82:12:83:ea:75:25:69:3f:6c:07:c6:e7:b8:f7:81:6a:8d: 5f:73:d6:5c:1d:9a:1c:69:d0:8e:d7:51:12:1f:48:c2:71:f6: 86:ab:72:b1:b2:cc:d0:f4:7d:a7:fb:62:57:b4:8b:a9:82:9a: 7c:39:b0:d3:25:d1:b7:4b:0c:b4:60:6b:46:60:b9:ef:13:f8: c0:f0:d6:42:d4:a9:8f:a3:02:ad:36:5c:8d:7b:78:61:1b:de: b2:b8:05:72:34:42:49:8b:dd:34:6c:73:3e:8f:cc:64:8a:45: ba:7b:f1:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwODEwMTgzNjA3WhcNMjUwODE3MTgzNjA3WjAYMRYwFAYD VQQDEw02ODk4ZTY5Ny00OWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnj/UalxWJ0w846rPOIk9G+nm2tZVnv4ci9CO9h74lmKVlpRYDg+8azcFri9G 6GFXMgq01G+p5W/wbKl68EaiP4foTi/eESI5a0tGx3wgPM0N8WAXwE7YBN7fnIMf Ibj+RpmT/kaLOHfGAtBzc7BJMNmvXJd8aDwz4UAn787AZQxcUzOaiMeOj5JI7qj9 dZ5wbVmb6NrEQt2DZb1eygJXJyFdIz7aWDKiKjUkSYVDFt8nIH9t7Ju+rSV8KOFd wVnntToX2lSY0owR5wtba2eXnHwnlAbbLuZ9uM1rol0/B/jaJP8DALvnXgGDddAA qvToWLZTHbjz+HdFM1KoGQupxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+O7xU0 rmZZ4SZUr4OMM709CkV0MB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdIFEWxf3a7+etWg1ziQu+y0Q1uGkdqjZ8kc95ylq2ufMyZ7FSgZSS Y73p+iWmbb8O7rJ2FnPYMPdSNQQKrl4iBmIE7RY/VX/TTQ/bfYO47cWIfhmOwd/X /SXx2ZVAUdMDwLX9ejWuTmPZlI4RR+vSXtbyQjwzGNqHyEmRRg7VM+N3XgPEqzlI qmDD889No6yMghKD6nUlaT9sB8bnuPeBao1fc9ZcHZocadCO11ESH0jCcfaGq3Kx sszQ9H2n+2JXtIupgpp8ObDTJdG3Swy0YGtGYLnvE/jA8NZC1KmPowKtNlyNe3hh G96yuAVyNEJJi900bHM+j8xkikW6e/EI -----END CERTIFICATE-----Generated at Mon Aug 11 04:17:41 2025 by rpki-client