$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: HzhsM4/Q71lHYq0vdjmR06d+h4Vb22XBti97nqH6DvA= Subject key identifier: 20:A1:84:06:2B:C0:4C:33:68:2F:D7:D1:2C:A8:8C:ED:C8:A3:B6:12 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0B61 Signing time: Sat 18 May 2024 19:38:18 +0000 Manifest this update: Sat 18 May 2024 19:38:17 +0000 Manifest next update: Sat 25 May 2024 19:38:17 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: oMPAqf2OJIQt1t2PwZb22bLY41oHOkJpkZBwIKSYZJs=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: MZkgltsHgAfCSr8GcetKASVj/CIb5um5XwM4ysiGwaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: May 18 19:38:17 2024 GMT Not After : May 25 19:38:17 2024 GMT Subject: CN=664903a9-f338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9e:6f:e5:7d:7a:0a:6d:a7:97:e4:84:64:2d: 70:fa:69:d8:63:88:30:e6:2f:f1:13:8e:44:cc:c4: 13:f6:2c:de:be:c0:e2:65:76:8c:e5:6c:df:d4:86: 85:ad:a0:32:62:b1:ae:eb:20:51:af:16:2a:0c:69: a0:87:4d:4d:88:9b:ba:4a:93:94:3b:97:b4:b2:df: de:35:90:5d:c9:5e:57:b8:e1:dc:94:f8:95:6a:e8: 8d:2b:b0:62:31:19:c9:4c:29:30:05:5f:2e:35:3a: b2:7e:2a:98:9c:bc:3c:d9:49:d7:42:e4:22:c3:b6: b2:ab:e0:83:cc:ac:f1:b7:66:2a:a1:82:10:53:38: 61:29:e3:da:6a:b9:f6:55:01:f2:39:0e:e7:51:b8: e9:f5:62:2d:e4:05:3a:c0:04:e7:dc:f0:85:d0:38: 50:5f:74:fc:39:d8:12:35:79:aa:7c:2e:cb:f6:e1: cb:e2:46:ae:1d:7c:72:ec:58:40:2d:2f:a1:d0:74: 44:1e:27:98:0e:71:15:bc:76:4f:6e:5a:00:64:5d: 84:23:92:92:9a:99:f9:f1:56:af:3d:11:06:54:d7: 12:e6:4d:4b:a2:43:40:0e:1a:6f:b1:51:0f:d1:b3: eb:5a:b6:89:c5:29:3f:92:40:51:01:ac:3b:bb:6d: f0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A1:84:06:2B:C0:4C:33:68:2F:D7:D1:2C:A8:8C:ED:C8:A3:B6:12 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:59:55:f2:35:d0:0e:62:35:cf:9f:aa:b9:a1:2a:3b:ad:77: b4:da:76:5c:77:85:6a:ca:48:b3:86:de:1a:71:09:bc:17:04: 26:1a:7c:b0:d3:21:00:f7:51:86:5a:70:58:f6:b3:f1:1b:01: 98:11:de:5d:cd:79:ca:dc:8a:80:30:d8:7b:dc:56:5a:59:cb: 18:fc:a6:24:a2:9d:d8:38:c0:73:f4:2f:4d:34:d1:17:17:b3: ce:ee:5a:68:97:6f:d2:37:58:8a:81:d8:3f:b7:f8:0b:6c:c7: 69:e1:a7:60:6b:01:72:f8:ca:8a:c2:9d:ed:c1:db:af:14:6f: a5:46:48:a1:74:75:8c:28:50:a5:4f:e8:ac:5e:76:93:2b:e6: 56:83:b3:1b:68:a6:e7:f5:33:8e:a0:9f:94:84:36:d8:c0:69: 46:01:f4:b5:df:6b:7c:21:67:91:4c:06:36:d2:9c:d3:4b:c9: 21:1a:45:9b:d2:9b:d7:d9:ba:e7:1d:be:99:b9:6e:84:66:94: fa:7d:55:7f:df:e2:bf:ef:f0:47:77:54:1c:c8:fe:f4:9a:32: 87:e4:74:b9:8f:11:b0:81:47:99:5c:95:7d:91:5b:41:24:dc: 3f:3f:2b:1e:e9:27:e9:09:dc:b5:14:cf:6d:c8:2d:24:92:3d: fa:e4:3f:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjQwNTE4MTkzODE3WhcNMjQwNTI1MTkzODE3WjAYMRYwFAYD VQQDEw02NjQ5MDNhOS1mMzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p5v5X16Cm2nl+SEZC1w+mnYY4gw5i/xE45EzMQT9izevsDiZXaM5Wzf1IaF raAyYrGu6yBRrxYqDGmgh01NiJu6SpOUO5e0st/eNZBdyV5XuOHclPiVauiNK7Bi MRnJTCkwBV8uNTqyfiqYnLw82UnXQuQiw7ayq+CDzKzxt2YqoYIQUzhhKePaarn2 VQHyOQ7nUbjp9WIt5AU6wATn3PCF0DhQX3T8OdgSNXmqfC7L9uHL4kauHXxy7FhA LS+h0HREHieYDnEVvHZPbloAZF2EI5KSmpn58VavPREGVNcS5k1LokNADhpvsVEP 0bPrWraJxSk/kkBRAaw7u23wdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCChhAYr wEwzaC/X0SyojO3Io7YSMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvWVXyNdAOYjXPn6q5oSo7rXe02nZcd4Vqykizht4acQm8FwQmGnyw 0yEA91GGWnBY9rPxGwGYEd5dzXnK3IqAMNh73FZaWcsY/KYkop3YOMBz9C9NNNEX F7PO7lpol2/SN1iKgdg/t/gLbMdp4adgawFy+MqKwp3twduvFG+lRkihdHWMKFCl T+isXnaTK+ZWg7MbaKbn9TOOoJ+UhDbYwGlGAfS132t8IWeRTAY20pzTS8khGkWb 0pvX2brnHb6ZuW6EZpT6fVV/3+K/7/BHd1QcyP70mjKH5HS5jxGwgUeZXJV9kVtB JNw/Pyse6SfpCdy1FM9tyC0kkj365D+v -----END CERTIFICATE-----Generated at Sat May 18 21:31:30 2024 by rpki-client on console-ams.rpki-client.org