$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: /TndOtGB5tId/7b55NGaX0vnKehvxIcvnk0h+GLQHIo= Subject key identifier: 03:86:8D:02:C6:84:4B:B5:B9:77:C7:38:1D:A5:DD:6D:73:2E:19:C5 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C11 Signing time: Thu 24 Apr 2025 18:36:03 +0000 Manifest this update: Thu 24 Apr 2025 18:36:02 +0000 Manifest next update: Thu 01 May 2025 18:36:02 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: liOTM0FUcP9mZYzxT8HkQHQ7/RmxEzT5/cy4MvoV7F4=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: Qr1MVsMkxlS4uO3yJyCx+P8+r/e/VyB1sxLb8hNLQ/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Apr 24 18:36:02 2025 GMT Not After : May 1 18:36:02 2025 GMT Subject: CN=680a8493-87a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8f:9e:8d:b5:96:38:55:08:5e:8c:0f:a1:c6: 9d:d4:b9:34:29:0a:13:67:ee:29:18:44:07:a9:17: 84:1f:9b:61:06:f5:0e:0c:60:06:25:96:aa:14:92: 01:b9:b3:45:8f:98:b4:17:d6:c5:f3:a0:80:53:37: 8b:be:31:53:8c:89:14:20:20:1d:ea:39:b5:ae:fa: 91:5a:bd:d0:06:89:77:86:6b:8f:c3:ec:49:b6:e9: c2:77:4a:f2:51:4b:35:a2:35:11:ef:ba:90:fd:ae: 76:42:fe:23:0e:6f:c3:f6:d9:dc:fb:c1:9b:ae:56: d3:28:a0:45:84:86:fc:cc:19:d2:e5:10:63:73:dd: 7a:78:16:32:fa:f2:a5:e1:39:0d:51:40:2a:42:af: 25:18:c1:60:63:c7:4b:18:36:5a:fe:74:00:a3:db: 91:2e:c6:4e:d2:39:cb:2f:13:55:e9:fd:15:9f:b7: 6b:e9:56:db:be:b8:6b:92:3e:33:7f:74:34:e4:13: 57:dc:0c:51:a2:e2:c7:59:fc:9c:f0:08:f1:7f:ce: 20:3d:90:c4:f6:76:bf:d4:3d:4b:42:a6:fb:e3:a7: c5:99:8a:db:74:b3:2f:ef:e4:2e:80:fe:f7:cc:fb: 11:86:44:ca:1b:66:99:4f:f9:70:92:9b:ec:1c:58: 26:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:86:8D:02:C6:84:4B:B5:B9:77:C7:38:1D:A5:DD:6D:73:2E:19:C5 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:82:0b:ae:7f:b7:3e:03:4a:bb:c1:1b:f3:a7:e0:25:41:ab: 3d:2d:32:7f:5e:06:62:4f:9b:9c:b0:97:37:b1:9a:ad:44:bc: 4f:02:57:e9:df:5e:22:90:df:39:91:8b:9b:f5:80:5c:32:a9: 61:04:6b:a8:ba:64:c7:73:de:34:88:f7:df:ca:e3:73:2f:4e: 4e:2c:7d:35:da:3c:1a:62:06:ec:11:4f:5f:00:2f:94:ec:06: a3:32:37:f8:a4:ca:3d:cb:70:d0:4b:92:02:0e:72:17:c2:9d: c1:51:f2:c2:ea:84:d7:1e:6a:b4:e8:ac:05:f7:59:f7:3f:1d: 8b:45:32:4e:eb:2c:8e:d2:01:af:5a:c5:51:6b:22:0c:ef:64: a3:63:37:d2:f3:f6:87:ec:80:e2:89:30:0d:4c:8f:81:91:50: 8d:28:c6:c8:1c:12:91:77:a1:c7:56:35:53:a7:8e:c7:13:56: 43:5d:e2:78:e0:28:4e:96:bd:b0:34:7e:56:83:f4:9f:fc:e2: 83:cf:64:e4:85:1a:74:89:f9:9a:22:4e:70:f3:30:48:d6:6c: ae:10:70:5e:f6:2b:9c:b0:a8:99:5d:ea:cf:04:7e:32:28:58: 8f:dd:be:fc:a2:95:17:52:d5:96:4c:45:d2:d8:c6:3a:4f:27: f4:3a:20:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwNDI0MTgzNjAyWhcNMjUwNTAxMTgzNjAyWjAYMRYwFAYD VQQDEw02ODBhODQ5My04N2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4+ejbWWOFUIXowPocad1Lk0KQoTZ+4pGEQHqReEH5thBvUODGAGJZaqFJIB ubNFj5i0F9bF86CAUzeLvjFTjIkUICAd6jm1rvqRWr3QBol3hmuPw+xJtunCd0ry UUs1ojUR77qQ/a52Qv4jDm/D9tnc+8GbrlbTKKBFhIb8zBnS5RBjc916eBYy+vKl 4TkNUUAqQq8lGMFgY8dLGDZa/nQAo9uRLsZO0jnLLxNV6f0Vn7dr6Vbbvrhrkj4z f3Q05BNX3AxRouLHWfyc8Ajxf84gPZDE9na/1D1LQqb746fFmYrbdLMv7+QugP73 zPsRhkTKG2aZT/lwkpvsHFgmzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOGjQLG hEu1uXfHOB2l3W1zLhnFMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmgguuf7c+A0q7wRvzp+AlQas9LTJ/XgZiT5ucsJc3sZqtRLxPAlfp 314ikN85kYub9YBcMqlhBGuoumTHc940iPffyuNzL05OLH012jwaYgbsEU9fAC+U 7AajMjf4pMo9y3DQS5ICDnIXwp3BUfLC6oTXHmq06KwF91n3Px2LRTJO6yyO0gGv WsVRayIM72SjYzfS8/aH7IDiiTANTI+BkVCNKMbIHBKRd6HHVjVTp47HE1ZDXeJ4 4ChOlr2wNH5Wg/Sf/OKDz2TkhRp0ifmaIk5w8zBI1myuEHBe9iucsKiZXerPBH4y KFiP3b78opUXUtWWTEXS2MY6Tyf0OiDh -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:00 2025 by rpki-client