$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft File: USSgTiOq3aRNlKsNSrLAt7IL_HU.mft (raw, json) Hash identifier: nSsR2B83TgSOlrdBaftqyQC+1DM8qCpAQc4EzAPD9Xo= Subject key identifier: 03:95:82:F2:8A:CE:93:D1:67:83:20:BD:53:32:6C:F2:27:35:64:90 Authority key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 Certificate issuer: /CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Certificate serial: 0C41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft Manifest number: 0C35 Signing time: Wed 02 Jul 2025 18:51:07 +0000 Manifest this update: Wed 02 Jul 2025 18:51:06 +0000 Manifest next update: Wed 09 Jul 2025 18:51:06 +0000 Files and hashes: 1: USSgTiOq3aRNlKsNSrLAt7IL_HU.crl (hash: v4uCkXAB/f6VowqG18JKxpQlUtFBnLz+lIRU/yic89w=) 2: 4279BBD80C5811EA93151657C4F9AE02.roa (hash: sMJ9ABTkBjJpmsGpVTgN6KS8wLvV90Yar62yGx5iotI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3137 (0xc41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8151, serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75 Validity Not Before: Jul 2 18:51:06 2025 GMT Not After : Jul 9 18:51:06 2025 GMT Subject: CN=68657f9a-573b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:79:be:f9:53:fd:4c:15:c6:58:b8:a2:1c:79: 53:86:2c:8e:ed:6c:23:fa:7b:a7:c3:67:68:83:50: 9e:18:d5:42:f1:c0:34:a2:44:10:19:ae:81:e8:20: c2:44:27:e7:2b:7c:40:e2:3f:b4:b3:0d:bf:e9:f0: 4c:9e:e8:94:da:f4:9a:7d:36:dc:14:44:81:40:38: 9e:d0:4f:56:7d:38:ee:63:2f:60:36:9d:38:55:a4: 8a:5a:47:35:2a:27:1c:52:97:ca:00:b4:e6:20:cf: 2f:9e:c1:b8:26:f4:19:3b:48:26:d2:a8:f6:97:dd: bf:d2:77:d4:0d:5b:d0:f8:db:f5:82:1c:33:9a:44: b3:13:9d:d2:0f:98:65:92:bf:ab:e0:7f:cf:3a:fe: 64:73:51:fa:94:09:09:ab:7c:78:d8:e8:3f:47:99: 2b:20:e6:b4:99:67:f3:38:78:e6:59:df:95:a2:06: e4:fa:c5:30:e6:f1:fc:6f:78:9f:ea:50:fe:bb:fc: 13:84:33:9e:da:20:59:35:e3:7d:d4:a3:70:b8:86: e9:2b:8a:a0:4c:51:23:71:5e:2c:d7:bb:d7:68:e5: f3:e5:d5:4c:e1:fd:1e:37:7c:7f:c3:77:94:46:95: 68:4c:c9:78:10:9b:dc:d5:9a:6b:65:71:27:cd:f9: 60:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:95:82:F2:8A:CE:93:D1:67:83:20:BD:53:32:6C:F2:27:35:64:90 X509v3 Authority Key Identifier: keyid:51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:5e:83:f4:12:5b:a8:ea:28:68:33:a5:34:17:70:c4:75:ae: bf:81:bf:49:59:5e:78:7c:3c:2e:c3:4a:97:ca:ad:e1:31:d2: 4c:6b:a5:c6:ff:7e:d0:97:ca:36:0b:2b:77:8e:49:2d:bc:c5: 25:72:df:65:a8:37:62:59:83:1f:f6:fe:54:39:c1:93:44:aa: e1:a6:c4:46:c1:64:41:f3:d7:39:1b:69:df:0f:40:6b:1f:62: 69:fe:01:c2:ee:31:aa:a6:da:a8:29:e3:74:11:32:fb:41:b4: 61:63:17:00:06:23:cc:d0:98:c0:fc:88:de:21:6f:e3:ca:76: f9:0e:37:32:10:b7:13:86:8c:db:a7:d7:cd:f4:a3:cb:5d:be: 81:4d:bd:96:b7:86:cc:6f:e2:52:41:16:f3:6d:62:17:c2:4f: 65:40:c8:32:2f:90:ed:56:fb:f6:11:5c:a9:3a:05:fe:e0:95: 3e:fb:6c:d1:0c:a2:7e:db:d4:82:13:3e:19:07:d0:c9:b2:33: 27:66:a3:20:de:16:f6:22:39:2e:8a:22:15:d6:1f:6d:e3:a1: 9d:9a:38:54:72:61:59:bf:66:58:b3:c6:85:a4:9e:f2:7a:f0: 63:db:d7:0c:fb:af:89:69:bc:02:8b:5f:50:cd:e8:e9:5c:3f: 6d:a8:81:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxNTExMTAvBgNVBAUTKDUxMjRBMDRFMjNBQUREQTQ0RDk0QUIwRDRBQjJDMEI3 QjIwQkZDNzUwHhcNMjUwNzAyMTg1MTA2WhcNMjUwNzA5MTg1MTA2WjAYMRYwFAYD VQQDEw02ODY1N2Y5YS01NzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Xm++VP9TBXGWLiiHHlThiyO7Wwj+nunw2dog1CeGNVC8cA0okQQGa6B6CDC RCfnK3xA4j+0sw2/6fBMnuiU2vSafTbcFESBQDie0E9WfTjuYy9gNp04VaSKWkc1 KiccUpfKALTmIM8vnsG4JvQZO0gm0qj2l92/0nfUDVvQ+Nv1ghwzmkSzE53SD5hl kr+r4H/POv5kc1H6lAkJq3x42Og/R5krIOa0mWfzOHjmWd+Vogbk+sUw5vH8b3if 6lD+u/wThDOe2iBZNeN91KNwuIbpK4qgTFEjcV4s17vXaOXz5dVM4f0eN3x/w3eU RpVoTMl4EJvc1ZprZXEnzflg0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOVgvKK zpPRZ4MgvVMybPInNWSQMB8GA1UdIwQYMBaAFFEkoE4jqt2kTZSrDUqywLeyC/x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODE1MS83MDExNERBQTBD NTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNhUk5sS3NOU3JMQXQ3SUxf SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTU2dUaU9xM2FSTmxLc05TckxBdDdJTF9IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODE1MS83MDExNERBQTBDNTcxMUVBOTg1MTAyNTZDNEY5QUUwMi9VU1NnVGlPcTNh Uk5sS3NOU3JMQXQ3SUxfSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPXoP0Eluo6ihoM6U0F3DEda6/gb9JWV54fDwuw0qXyq3hMdJMa6XG /37Ql8o2Cyt3jkktvMUlct9lqDdiWYMf9v5UOcGTRKrhpsRGwWRB89c5G2nfD0Br H2Jp/gHC7jGqptqoKeN0ETL7QbRhYxcABiPM0JjA/IjeIW/jynb5DjcyELcThozb p9fN9KPLXb6BTb2Wt4bMb+JSQRbzbWIXwk9lQMgyL5DtVvv2EVypOgX+4JU++2zR DKJ+29SCEz4ZB9DJsjMnZqMg3hb2IjkuiiIV1h9t46GdmjhUcmFZv2ZYs8aFpJ7y evBj29cM+6+JabwCi19QzejpXD9tqIFn -----END CERTIFICATE-----Generated at Thu Jul 3 02:59:27 2025 by rpki-client