$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: PAHR2DWDu+F1NGWI/YYWqMjzSBxrKHMMt6ed7d/Oih4= Subject key identifier: 4C:6A:F1:DF:39:82:2E:89:A5:15:B7:9E:2F:50:BE:78:84:30:14:41 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C0B Signing time: Sat 12 Apr 2025 18:31:29 +0000 Manifest this update: Sat 12 Apr 2025 18:31:28 +0000 Manifest next update: Sat 19 Apr 2025 18:31:28 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: G+tn0hlWRAgTzOzn3PyCKJsdXNxI5GECiaqGIbyK+lU=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: Qr1MVsMkxlS4uO3yJyCx+P8+r/e/VyB1sxLb8hNLQ/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3094 (0xc16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Apr 12 18:31:28 2025 GMT Not After : Apr 19 18:31:28 2025 GMT Subject: CN=67fab181-7fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f6:07:96:9c:c2:5a:7e:84:f8:d1:6f:0c:35: 9b:f8:46:8c:6a:d7:ae:89:f8:d4:f4:6c:58:dc:9c: 2b:f5:09:a2:95:d9:b6:5f:12:53:85:c8:51:40:68: 9a:f7:2e:a4:56:bd:83:74:e7:87:ea:b6:ac:d8:8c: 94:77:49:b6:36:e1:2a:d8:81:a8:6c:03:86:8f:b0: 38:66:e4:a1:16:93:9c:61:a3:1e:3c:b8:7f:3b:7b: 7b:f0:65:c1:06:0d:c1:57:af:85:0f:d6:a6:8f:e2: 1b:15:cb:d0:12:0a:27:ca:7e:2d:38:b1:80:f9:f4: b4:59:12:2d:48:44:bd:cc:fe:8f:03:23:09:70:c5: b8:74:dc:40:6a:a8:08:36:94:96:d4:43:3a:cc:b9: 93:55:ba:23:7e:c2:f1:56:e2:9e:4e:e5:87:99:fe: 51:39:81:67:04:f2:69:08:e4:8c:3b:37:83:c5:fb: a2:52:0a:10:cd:a9:12:58:7d:c0:3f:bd:7e:82:c7: 2b:84:f8:ba:44:65:9f:0f:26:30:07:1e:d0:a5:b0: e1:f9:cc:22:b6:01:30:2b:2a:0c:e0:22:a4:80:af: cd:ba:20:54:08:bd:95:55:1b:67:c8:7c:dd:d3:62: 41:06:25:a4:99:03:8e:81:01:aa:f6:65:66:2a:ee: 2a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6A:F1:DF:39:82:2E:89:A5:15:B7:9E:2F:50:BE:78:84:30:14:41 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4a:d9:e0:b2:44:ea:8c:20:04:d3:da:9d:9d:0b:23:05:56: 4b:9d:f0:1b:8f:48:00:5f:6a:80:c8:85:cc:47:eb:8e:d2:bc: da:d6:9c:35:57:cf:64:e9:04:80:ec:de:30:87:91:fc:d1:44: 31:5f:68:92:fb:56:47:6d:3a:51:d7:05:f4:d2:2d:05:19:e6: 01:b0:f7:38:7d:65:b5:7a:fb:ff:55:aa:e6:f2:90:0a:90:1b: 1f:c2:ac:eb:bb:63:7f:80:76:a2:ac:f3:41:1d:c4:ae:4f:9f: 90:b7:aa:27:67:41:3b:48:87:91:89:84:d7:a3:92:53:b4:c4: 75:49:09:24:39:a1:4a:f0:79:08:6f:cb:30:c9:f3:16:95:0c: e5:c0:db:cc:4b:bf:dc:ae:69:81:be:0c:62:c7:8c:e7:57:0e: 1d:fd:77:66:79:c1:34:5f:2d:29:35:2c:ca:fa:96:ee:88:72: 29:2d:1a:45:ed:e4:cf:84:d5:12:da:79:22:94:a4:b5:d2:d4: d7:23:59:17:a6:b5:c2:60:46:65:50:61:d9:4f:26:87:69:77: 90:a3:f1:ab:aa:cc:67:e1:23:97:21:e8:29:46:af:6f:27:de: 63:ae:d1:1c:e5:a0:3f:42:15:fc:6f:de:f3:e1:32:51:9d:30: f4:0d:bc:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwNDEyMTgzMTI4WhcNMjUwNDE5MTgzMTI4WjAYMRYwFAYD VQQDEw02N2ZhYjE4MS03ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvYHlpzCWn6E+NFvDDWb+EaMateuifjU9GxY3Jwr9Qmildm2XxJThchRQGia 9y6kVr2DdOeH6ras2IyUd0m2NuEq2IGobAOGj7A4ZuShFpOcYaMePLh/O3t78GXB Bg3BV6+FD9amj+IbFcvQEgonyn4tOLGA+fS0WRItSES9zP6PAyMJcMW4dNxAaqgI NpSW1EM6zLmTVbojfsLxVuKeTuWHmf5ROYFnBPJpCOSMOzeDxfuiUgoQzakSWH3A P71+gscrhPi6RGWfDyYwBx7QpbDh+cwitgEwKyoM4CKkgK/NuiBUCL2VVRtnyHzd 02JBBiWkmQOOgQGq9mVmKu4qIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExq8d85 gi6JpRW3ni9QvniEMBRBMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8StngskTqjCAE09qdnQsjBVZLnfAbj0gAX2qAyIXMR+uO0rza1pw1 V89k6QSA7N4wh5H80UQxX2iS+1ZHbTpR1wX00i0FGeYBsPc4fWW1evv/Varm8pAK kBsfwqzru2N/gHairPNBHcSuT5+Qt6onZ0E7SIeRiYTXo5JTtMR1SQkkOaFK8HkI b8swyfMWlQzlwNvMS7/crmmBvgxix4znVw4d/XdmecE0Xy0pNSzK+pbuiHIpLRpF 7eTPhNUS2nkilKS10tTXI1kXprXCYEZlUGHZTyaHaXeQo/Grqsxn4SOXIegpRq9v J95jrtEc5aA/QhX8b97z4TJRnTD0DbyZ -----END CERTIFICATE-----Generated at Sat Apr 12 20:21:57 2025 by rpki-client