$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: EXIwEa18P2I9miMgNAm7FOErSErUmmoXKA1QsIVmsXM= Subject key identifier: 49:A0:14:C9:85:19:B8:CB:9A:D6:20:33:D4:FE:29:8E:4F:F2:BF:A3 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C74 Signing time: Sun 02 Nov 2025 18:31:00 +0000 Manifest this update: Sun 02 Nov 2025 18:30:59 +0000 Manifest next update: Sun 09 Nov 2025 18:30:59 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: 0uaAceyaQZIREGjOCMAL/5gS1aiD1WmXvstC4lVkT0Q=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Nov 2 18:30:59 2025 GMT Not After : Nov 9 18:30:59 2025 GMT Subject: CN=6907a364-2c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:51:71:7b:da:d8:4b:43:3f:20:34:ba:0c:fb: a9:2e:2a:73:da:01:a5:9e:37:58:6d:a5:e9:f0:01: 81:1b:05:e9:56:57:9e:2f:f7:04:2d:36:b7:a4:55: e6:0f:b2:da:79:b8:59:10:3f:df:aa:4f:2c:f8:7e: ee:76:c2:80:ec:dc:ee:85:8c:34:fc:e5:5c:7c:83: 84:56:b2:0b:79:06:25:31:0a:d4:51:3d:d7:f8:01: 3f:d3:17:71:87:19:5a:af:28:b0:ca:a1:cb:ec:3b: f8:ce:55:e8:31:ec:ed:ba:d3:82:c6:fc:e1:aa:55: 8c:25:0a:ec:18:38:92:ea:4d:89:42:b3:98:d1:f4: 31:eb:be:d1:a8:52:3e:5b:26:29:5d:d0:a6:3c:b8: 0b:95:cb:d0:2f:4e:72:41:71:12:fa:7a:14:f6:d9: 57:3f:2d:67:48:c2:18:cd:9e:19:69:07:e0:38:32: 06:b0:34:60:d8:b7:e8:09:9c:04:ac:d2:73:e5:b5: 14:6e:2d:bf:96:66:08:db:56:68:d6:71:ea:3f:a1: cf:c3:6a:81:08:f3:12:5f:5f:2c:58:b1:7c:c2:17: b5:68:1b:6d:36:2c:27:cb:2b:31:e5:21:3c:49:37: 34:3e:d4:37:f6:dc:68:04:53:33:80:b7:c8:c1:48: 05:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A0:14:C9:85:19:B8:CB:9A:D6:20:33:D4:FE:29:8E:4F:F2:BF:A3 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:34:50:61:89:e4:b1:b0:3c:09:76:75:d4:eb:f4:31:66:fa: 58:cb:a8:ee:13:64:32:d3:55:20:22:16:d4:56:f1:f3:d0:fd: d7:95:72:94:87:c2:41:31:01:2b:fa:e3:c2:a6:05:37:da:1c: f0:2e:14:74:f8:f8:11:b4:27:6b:4f:f5:4d:d8:4e:53:c1:a4: ea:58:62:8d:e7:1c:44:a2:0f:36:98:55:dd:9f:cd:6d:e2:11: 4d:5b:cd:58:0d:62:f7:02:58:50:ff:9f:3d:83:7c:20:8a:38: c8:13:a1:3e:d6:34:fb:3b:fa:d6:a8:7a:78:b2:98:b2:2c:af: a2:8d:2d:61:7c:74:3b:6a:a8:eb:ec:45:43:db:b1:0e:42:f8: 07:da:37:ed:d2:ad:24:2f:a3:a2:52:b0:ba:e2:fd:4f:70:06: c5:06:e8:5d:09:3c:69:64:1e:d2:fc:8f:86:3c:a6:27:21:d8: 59:b2:69:53:f8:16:d3:a1:d3:ab:87:d9:24:4f:74:9f:b5:32: 88:24:8a:c4:07:20:a5:41:83:0e:5f:c4:ff:9e:2c:b9:52:fd: ba:bc:10:42:c3:f8:87:ae:ef:99:90:53:cc:30:fa:a7:c1:e3: e4:8a:5b:6f:40:9e:9f:83:64:fa:ef:64:8a:1a:2c:70:af:04: 24:89:10:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUxMTAyMTgzMDU5WhcNMjUxMTA5MTgzMDU5WjAYMRYwFAYD VQQDEw02OTA3YTM2NC0yYzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1Fxe9rYS0M/IDS6DPupLipz2gGlnjdYbaXp8AGBGwXpVleeL/cELTa3pFXm D7LaebhZED/fqk8s+H7udsKA7NzuhYw0/OVcfIOEVrILeQYlMQrUUT3X+AE/0xdx hxlaryiwyqHL7Dv4zlXoMeztutOCxvzhqlWMJQrsGDiS6k2JQrOY0fQx677RqFI+ WyYpXdCmPLgLlcvQL05yQXES+noU9tlXPy1nSMIYzZ4ZaQfgODIGsDRg2LfoCZwE rNJz5bUUbi2/lmYI21Zo1nHqP6HPw2qBCPMSX18sWLF8whe1aBttNiwnyysx5SE8 STc0PtQ39txoBFMzgLfIwUgFtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmgFMmF GbjLmtYgM9T+KY5P8r+jMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFNFBhieSxsDwJdnXU6/QxZvpYy6juE2Qy01UgIhbUVvHz0P3XlXKU h8JBMQEr+uPCpgU32hzwLhR0+PgRtCdrT/VN2E5TwaTqWGKN5xxEog82mFXdn81t 4hFNW81YDWL3AlhQ/589g3wgijjIE6E+1jT7O/rWqHp4spiyLK+ijS1hfHQ7aqjr 7EVD27EOQvgH2jft0q0kL6OiUrC64v1PcAbFBuhdCTxpZB7S/I+GPKYnIdhZsmlT +BbTodOrh9kkT3SftTKIJIrEByClQYMOX8T/niy5Uv26vBBCw/iHru+ZkFPMMPqn wePkiltvQJ6fg2T672SKGixwrwQkiRBD -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:39 2025 by rpki-client