$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: oXbVCLKPot4FJ1pVgobaOI4BaTveN2te3eL/gTcMcqQ= Subject key identifier: 3B:48:BF:57:0A:3B:E3:20:E4:91:BB:85:78:6A:68:20:AF:63:6B:99 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0B64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0B5A Signing time: Thu 02 May 2024 19:44:57 +0000 Manifest this update: Thu 02 May 2024 19:44:57 +0000 Manifest next update: Thu 09 May 2024 19:44:57 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: 02WiIsPo4Vjnu0cVBBEcB63Qv3qRF1/5VhHeLZKkDBo=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: MZkgltsHgAfCSr8GcetKASVj/CIb5um5XwM4ysiGwaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: May 2 19:44:57 2024 GMT Not After : May 9 19:44:57 2024 GMT Subject: CN=6633ed39-b6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:07:c0:d4:40:56:87:64:9c:ac:4b:ff:4c: 89:e5:f5:38:f5:ab:3a:96:56:d2:4a:76:68:59:9a: 11:25:c5:02:d0:f5:4d:1c:a2:0b:cd:fa:a9:a6:8e: a1:e7:01:c2:22:84:b3:57:10:59:1d:2f:dd:f1:d9: cf:61:e7:21:71:ff:ad:d3:67:0b:a1:55:c8:ff:32: b9:6b:0e:5d:1e:19:85:53:30:b5:8d:d2:b5:ca:fd: 53:2b:8d:c9:ae:e4:30:f0:60:24:33:0a:ba:36:a0: c1:fb:32:67:62:6a:12:c3:b5:85:92:49:21:3a:fd: aa:93:af:e8:ca:35:dd:ad:8a:f8:fc:66:82:f8:88: b0:8e:ae:ab:d2:fc:1c:92:b9:b3:2d:b9:0e:5a:d9: 81:75:49:ea:a3:13:ee:b3:3d:01:0a:d9:35:6d:cd: d9:2e:05:3a:2e:a0:c5:01:9d:50:5b:8a:ec:a7:08: 2c:eb:40:e3:96:7b:54:4e:fa:da:cd:72:62:9e:0e: 2b:6b:7a:52:00:ea:f8:65:78:a8:19:3a:c7:db:5a: 9b:f1:ed:87:fb:18:e7:5b:63:b7:64:2f:1a:68:7e: 27:82:e9:cc:3d:bd:9f:b6:d5:1c:25:dc:74:d9:70: 84:67:98:aa:11:f9:42:06:0b:11:4a:9a:5d:16:67: bb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:48:BF:57:0A:3B:E3:20:E4:91:BB:85:78:6A:68:20:AF:63:6B:99 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:0b:0a:34:a5:4e:11:e7:fb:52:3a:5a:a8:28:69:fa:05:31: 90:2e:8d:b0:a2:62:f4:8d:dd:87:b6:f6:5f:b0:c4:44:62:2f: e0:86:e1:8f:c6:3b:32:c2:fb:39:6a:01:05:9b:c0:6c:17:3c: 8e:69:85:9f:80:4a:fe:a1:ff:f9:e5:f3:c3:1d:a7:1f:23:22: 4c:e3:a7:cd:9d:1a:e0:cc:c1:35:b7:0c:fc:38:4d:ab:5c:56: 95:21:c3:30:ee:a9:51:ee:d1:11:65:90:8b:29:83:ba:a3:d4: 0b:d1:8f:dc:f1:6f:d9:ad:ed:0b:af:8c:90:34:68:2f:89:60: a9:37:fd:c7:4b:df:0c:84:6d:a3:80:e1:31:55:10:b5:93:20: f1:68:a7:46:e7:ae:37:2e:44:8d:2d:69:ca:48:ce:9e:2e:24: 79:23:b3:29:12:55:15:8c:fb:cc:03:c1:5e:0f:29:34:cf:cb: 39:99:5c:63:9c:9a:ac:fa:b2:8b:18:3c:94:a5:0e:32:8e:a0: 2e:49:25:bd:70:75:d3:4f:dc:aa:13:2d:29:4b:2c:02:e0:4a: 5c:d3:29:13:14:e6:10:88:16:c0:89:2a:d7:65:24:7f:31:93: ef:d3:ee:fa:72:98:73:da:89:a7:ef:95:42:0a:80:e7:17:99: a0:e7:9e:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjQwNTAyMTk0NDU3WhcNMjQwNTA5MTk0NDU3WjAYMRYwFAYD VQQDEw02NjMzZWQzOS1iNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunAHwNRAVodknKxL/0yJ5fU49as6llbSSnZoWZoRJcUC0PVNHKILzfqppo6h 5wHCIoSzVxBZHS/d8dnPYechcf+t02cLoVXI/zK5aw5dHhmFUzC1jdK1yv1TK43J ruQw8GAkMwq6NqDB+zJnYmoSw7WFkkkhOv2qk6/oyjXdrYr4/GaC+Iiwjq6r0vwc krmzLbkOWtmBdUnqoxPusz0BCtk1bc3ZLgU6LqDFAZ1QW4rspwgs60DjlntUTvra zXJing4ra3pSAOr4ZXioGTrH21qb8e2H+xjnW2O3ZC8aaH4ngunMPb2fttUcJdx0 2XCEZ5iqEflCBgsRSppdFme7qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtIv1cK O+Mg5JG7hXhqaCCvY2uZMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoCwo0pU4R5/tSOlqoKGn6BTGQLo2womL0jd2HtvZfsMREYi/ghuGP xjsywvs5agEFm8BsFzyOaYWfgEr+of/55fPDHacfIyJM46fNnRrgzME1twz8OE2r XFaVIcMw7qlR7tERZZCLKYO6o9QL0Y/c8W/Zre0Lr4yQNGgviWCpN/3HS98MhG2j gOExVRC1kyDxaKdG5643LkSNLWnKSM6eLiR5I7MpElUVjPvMA8FeDyk0z8s5mVxj nJqs+rKLGDyUpQ4yjqAuSSW9cHXTT9yqEy0pSywC4Epc0ykTFOYQiBbAiSrXZSR/ MZPv0+76cphz2omn75VCCoDnF5mg555E -----END CERTIFICATE-----Generated at Thu May 2 22:28:56 2024 by rpki-client on console-ams.rpki-client.org