$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: IdWQe9O3/CkILXDpOW6wP/BPHQGNqgj1OErElSCYWWA= Subject key identifier: E0:33:7D:65:B7:43:79:9A:E9:1A:6A:31:1A:A0:5B:09:21:1B:30:4D Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0BCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0BC3 Signing time: Fri 22 Nov 2024 18:37:57 +0000 Manifest this update: Fri 22 Nov 2024 18:37:56 +0000 Manifest next update: Fri 29 Nov 2024 18:37:56 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: qM74O8BM4e229JsM7kS2eaJrGdsjzaUFTXjiguVzgYs=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: Qr1MVsMkxlS4uO3yJyCx+P8+r/e/VyB1sxLb8hNLQ/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Nov 22 18:37:56 2024 GMT Not After : Nov 29 18:37:56 2024 GMT Subject: CN=6740cf85-8b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:39:0c:8b:20:c4:30:ae:10:2a:5e:f8:6c:c2: c2:17:97:2d:5c:c4:ec:f8:63:03:16:9e:c6:f3:4e: 2a:af:22:94:55:3f:bf:29:8d:47:21:f0:ec:cc:f9: 62:fe:c4:e6:d8:25:73:b2:f0:27:88:05:e8:c0:2a: 83:04:48:5b:47:c8:d2:03:a3:64:28:9b:ca:5d:25: 83:e6:f7:37:d4:2b:c1:cc:ba:9b:d1:d5:bb:a9:1f: e7:8f:4a:cd:9d:d9:0a:f3:45:af:43:9b:70:ce:0a: 5e:9f:36:37:97:55:89:81:2f:6f:70:06:61:12:3d: 97:6c:71:e2:f3:23:2a:93:55:bd:79:26:f0:8c:50: b6:9d:5a:7b:06:ec:23:15:37:dc:b9:55:a5:56:53: 1a:25:f6:fe:b3:fe:d7:2b:2d:bc:2b:ee:10:96:b2: fd:72:8b:f6:d7:d0:f2:1a:cb:2a:70:bf:e6:d9:bc: 50:49:91:03:05:9d:af:70:48:aa:58:04:a6:cb:9e: e8:b7:91:81:8f:6b:91:0d:ba:a0:19:3c:e1:06:8c: 85:4f:3a:81:0b:95:96:6d:fc:38:8a:85:a8:fe:2b: 5f:99:bc:38:5b:b8:fe:86:22:72:de:3f:a4:78:c0: 3b:b9:c8:0b:28:85:3d:49:43:87:95:75:fd:96:64: 14:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:33:7D:65:B7:43:79:9A:E9:1A:6A:31:1A:A0:5B:09:21:1B:30:4D X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9a:f9:1f:48:f1:5f:ad:3c:47:fc:f6:69:27:ee:c5:dc:45: 18:d3:2f:1a:83:6d:21:a9:62:49:51:cf:6b:12:32:61:a5:86: 3f:1d:06:6f:5f:8b:4d:be:d6:a4:98:cb:23:95:53:09:3f:1b: 5b:34:48:9c:cf:96:94:ef:65:09:5e:4a:6f:89:5d:c2:b1:3d: 02:ff:82:72:c4:12:7a:c8:e3:b1:2d:e8:56:29:8e:c1:ad:87: 1c:32:ce:82:e2:77:0a:02:e0:93:fa:63:aa:8c:55:80:db:89: 43:d8:8c:95:15:a5:25:96:40:1e:94:48:e9:0d:9a:51:a9:17: e2:9a:66:36:c4:6b:d4:bd:fe:3c:19:ad:05:92:f6:ec:23:38: 4f:28:87:3d:da:9a:29:28:a5:62:3f:68:69:ff:67:3a:05:f0: f6:21:55:df:52:00:ef:8d:47:d6:78:53:ba:4b:ea:05:3b:a2: 59:33:e0:b8:e7:62:a6:18:8a:7b:b8:14:3d:b6:62:d6:7b:07: 0f:82:da:ce:33:37:cd:23:82:a3:c7:b9:9d:52:ff:ed:2c:03: 05:c5:6c:da:3e:60:81:5e:99:74:49:70:4d:82:ba:e1:c8:4d: 68:b4:73:a3:a5:c8:0f:44:1b:71:c6:d2:43:4f:75:1f:10:31: e7:f3:bc:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjQxMTIyMTgzNzU2WhcNMjQxMTI5MTgzNzU2WjAYMRYwFAYD VQQDEw02NzQwY2Y4NS04YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DkMiyDEMK4QKl74bMLCF5ctXMTs+GMDFp7G804qryKUVT+/KY1HIfDszPli /sTm2CVzsvAniAXowCqDBEhbR8jSA6NkKJvKXSWD5vc31CvBzLqb0dW7qR/nj0rN ndkK80WvQ5twzgpenzY3l1WJgS9vcAZhEj2XbHHi8yMqk1W9eSbwjFC2nVp7Buwj FTfcuVWlVlMaJfb+s/7XKy28K+4QlrL9cov219DyGssqcL/m2bxQSZEDBZ2vcEiq WASmy57ot5GBj2uRDbqgGTzhBoyFTzqBC5WWbfw4ioWo/itfmbw4W7j+hiJy3j+k eMA7ucgLKIU9SUOHlXX9lmQUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAzfWW3 Q3ma6RpqMRqgWwkhGzBNMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3mvkfSPFfrTxH/PZpJ+7F3EUY0y8ag20hqWJJUc9rEjJhpYY/HQZv X4tNvtakmMsjlVMJPxtbNEicz5aU72UJXkpviV3CsT0C/4JyxBJ6yOOxLehWKY7B rYccMs6C4ncKAuCT+mOqjFWA24lD2IyVFaUllkAelEjpDZpRqRfimmY2xGvUvf48 Ga0FkvbsIzhPKIc92popKKViP2hp/2c6BfD2IVXfUgDvjUfWeFO6S+oFO6JZM+C4 52KmGIp7uBQ9tmLWewcPgtrOMzfNI4Kjx7mdUv/tLAMFxWzaPmCBXpl0SXBNgrrh yE1otHOjpcgPRBtxxtJDT3UfEDHn87xN -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org