$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: 7uEKex6XIuPHqeUQidU3iX8kLydqpF7DetZUOFN8Ma8= Subject key identifier: FB:BD:77:99:AF:B8:F3:61:D0:1E:04:0E:9B:AA:92:72:23:80:72:9A Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C50 Signing time: Sun 24 Aug 2025 18:33:31 +0000 Manifest this update: Sun 24 Aug 2025 18:33:31 +0000 Manifest next update: Sun 31 Aug 2025 18:33:31 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: 4gP3XUBKkzW9eOuWcf6yB2YfsGm+SD3MkYwb+w8DDec=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Aug 24 18:33:31 2025 GMT Not After : Aug 31 18:33:31 2025 GMT Subject: CN=68ab5afb-14ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:12:1a:a4:87:3c:bc:a0:4b:76:c6:27:88:37: c4:d8:ff:a3:0c:03:85:09:51:06:64:b1:99:99:78: 75:e1:8c:61:cb:3c:35:07:93:02:6e:eb:56:ed:54: cb:f2:80:b1:b7:e1:7f:7c:58:bb:f1:b3:5c:09:f4: 5c:72:65:88:14:f7:e1:fe:e4:a8:10:5e:97:35:51: c3:3e:94:6e:83:4b:94:c9:1a:6b:52:dc:43:be:ba: 16:28:68:e1:e6:d5:95:34:50:f0:ea:b7:f8:22:be: 07:38:3b:03:a0:a6:85:06:f7:6f:ef:77:40:3a:8b: 42:e2:44:b8:66:32:e9:9e:b1:49:31:e6:d8:93:8c: 16:51:d5:f4:9f:b9:0c:ba:42:bd:21:e7:cb:8d:c6: 3c:e9:8d:09:74:4f:3c:4a:c3:39:42:cc:0b:d1:c5: 49:44:e5:eb:58:f8:b8:b7:6c:19:cd:cf:88:b9:9b: 6f:04:d1:76:ef:98:9c:9f:26:66:65:39:0d:c7:3b: 02:38:b0:44:99:cf:d9:62:b0:14:db:53:e8:6f:6f: 9a:0d:4c:82:8a:c5:bd:97:da:1c:40:2b:5c:9a:8e: f4:c4:65:95:35:99:c9:2f:cf:c3:6e:e5:b9:99:8a: 00:5e:23:b2:79:a7:b6:86:01:43:a5:2e:bc:e0:43: 41:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BD:77:99:AF:B8:F3:61:D0:1E:04:0E:9B:AA:92:72:23:80:72:9A X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:ba:76:b4:98:c2:ef:d5:ad:17:73:e0:5b:fd:cd:4a:a9:aa: cf:ab:c0:7a:cd:d0:a8:9f:d2:cb:91:90:69:99:df:87:a8:99: 7b:38:4b:81:ac:91:f6:22:12:78:52:f1:8c:fa:a6:3b:d3:1a: 66:5a:8d:9f:c5:f5:f2:a0:33:dc:33:e1:71:ae:0c:28:ef:1c: 5f:09:ad:1f:8a:82:26:b4:bf:a6:e4:a7:44:46:13:a3:2f:6e: 41:44:0c:cf:f0:ff:34:31:81:bc:fb:cc:f9:77:83:74:e5:37: 72:bd:94:54:23:25:e1:d5:c5:94:d4:a0:39:07:96:33:07:bd: bc:c4:69:ad:f4:3b:9f:3f:48:14:9d:05:24:ae:6c:fa:c1:ed: 77:95:6b:2e:b7:75:f8:6c:79:08:ad:27:9e:0c:88:67:a7:02: fd:9c:35:11:aa:3a:7c:1d:0b:4e:1a:f2:05:96:42:e6:1f:9c: 98:71:79:3e:85:9d:f8:d2:6f:8d:ae:fe:e0:c9:ab:8e:2d:40: 3c:66:b8:9a:60:86:36:26:78:98:b1:e9:3c:06:9d:4f:a1:51: 6d:e0:f5:85:06:80:e2:bb:94:9a:99:40:61:e4:4e:c8:c1:42: 03:ed:74:f6:20:dc:c2:0a:b9:9a:9f:9e:1f:0e:5b:4a:70:0a: db:1c:34:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwODI0MTgzMzMxWhcNMjUwODMxMTgzMzMxWjAYMRYwFAYD VQQDEw02OGFiNWFmYi0xNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoRIapIc8vKBLdsYniDfE2P+jDAOFCVEGZLGZmXh14Yxhyzw1B5MCbutW7VTL 8oCxt+F/fFi78bNcCfRccmWIFPfh/uSoEF6XNVHDPpRug0uUyRprUtxDvroWKGjh 5tWVNFDw6rf4Ir4HODsDoKaFBvdv73dAOotC4kS4ZjLpnrFJMebYk4wWUdX0n7kM ukK9IefLjcY86Y0JdE88SsM5QswL0cVJROXrWPi4t2wZzc+IuZtvBNF275icnyZm ZTkNxzsCOLBEmc/ZYrAU21Pob2+aDUyCisW9l9ocQCtcmo70xGWVNZnJL8/DbuW5 mYoAXiOyeae2hgFDpS684ENBkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu9d5mv uPNh0B4EDpuqknIjgHKaMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5una0mMLv1a0Xc+Bb/c1KqarPq8B6zdCon9LLkZBpmd+HqJl7OEuB rJH2IhJ4UvGM+qY70xpmWo2fxfXyoDPcM+Fxrgwo7xxfCa0fioImtL+m5KdERhOj L25BRAzP8P80MYG8+8z5d4N05TdyvZRUIyXh1cWU1KA5B5YzB728xGmt9DufP0gU nQUkrmz6we13lWsut3X4bHkIrSeeDIhnpwL9nDURqjp8HQtOGvIFlkLmH5yYcXk+ hZ340m+Nrv7gyauOLUA8ZriaYIY2JniYsek8Bp1PoVFt4PWFBoDiu5SamUBh5E7I wUID7XT2INzCCrman54fDltKcArbHDTj -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:32 2025 by rpki-client