$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: 0dshEYJ/daLU9qQuEyPI4u/gnTlw3JmfB5ZF+lHqocQ= Subject key identifier: 32:94:85:23:A3:DC:47:24:4F:8E:97:FC:5C:9C:5A:E4:64:CF:03:0A Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07ED Signing time: Fri 22 Aug 2025 21:08:11 +0000 Manifest this update: Fri 22 Aug 2025 21:08:11 +0000 Manifest next update: Fri 29 Aug 2025 21:08:11 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: ly5dq+yMRQlfTseW/sVYYyBmHVRgj+dbx2/EFVgveDs=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Aug 22 21:08:11 2025 GMT Not After : Aug 29 21:08:11 2025 GMT Subject: CN=68a8dc3b-d024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:d1:85:c0:de:61:f8:45:f9:95:1f:7f:09: 20:98:e6:96:72:20:57:52:bd:cf:5b:b4:61:24:fb: 97:b5:c0:c7:10:27:b0:3d:5d:cf:a6:d9:fe:53:e7: c2:09:f2:a9:a2:88:89:0c:5d:4b:86:fc:a2:e2:06: 6f:5e:b8:c1:39:7a:05:c8:bc:b8:59:ad:f9:8b:a2: 7e:3c:9c:ae:1c:00:cc:38:83:49:d2:96:37:49:cd: d3:f2:7d:05:45:c2:96:d7:47:55:40:de:15:b9:6d: 8d:ba:74:9f:bf:8c:71:d8:f0:cf:ba:89:31:9b:ab: c5:a9:90:d6:06:16:47:47:d5:51:fb:8b:96:7e:d0: 3c:6b:f1:7b:b9:14:26:f7:eb:6f:22:a1:cb:6e:d4: 21:d8:28:62:bb:8c:34:ea:59:e3:32:ee:42:c2:0a: 7a:cf:c0:74:19:09:f5:70:bb:af:4a:0d:f3:78:bb: 52:3b:ec:a9:d5:fd:8f:ee:65:65:d3:d7:4a:05:62: e8:49:77:a3:42:c7:86:a5:3a:48:0e:e6:43:6d:1c: ac:55:4f:7e:16:fa:21:2c:2b:dd:c2:33:c3:24:88: 84:1f:c6:b6:e4:39:f4:f5:ec:5a:92:6b:c4:bf:0e: e8:39:2e:d3:af:8a:14:c8:bf:d0:4d:d9:bd:74:b1: 50:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:94:85:23:A3:DC:47:24:4F:8E:97:FC:5C:9C:5A:E4:64:CF:03:0A X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:26:36:87:9f:22:0e:e0:43:c2:c8:a0:dc:e5:2e:ec:4a:50: e2:7a:c0:f8:f6:e8:c9:0d:6e:20:d6:44:4a:c2:3d:2d:38:5c: 8f:49:13:35:f9:b9:57:e4:0b:66:fb:f4:77:42:df:79:d4:f3: 26:3e:06:38:04:47:68:66:27:c7:e5:fa:e5:fc:f6:36:7e:d1: 92:bc:34:b4:cf:74:32:b8:3c:28:e0:26:ed:84:27:75:ba:9e: 5a:3f:dd:5c:47:49:52:41:96:cb:41:b7:e5:5c:24:d0:bc:8f: 5e:9b:e5:ab:7a:0b:8f:33:b6:76:e0:ef:2c:9f:98:7f:af:14: 7c:29:55:47:21:25:64:8b:b5:e3:d2:24:d3:0d:3b:d5:86:29: df:7f:a8:65:f8:22:ce:2e:cd:c8:88:ed:1f:3c:9f:8b:1d:95: 43:0b:b0:d3:fe:bf:69:8f:45:09:cd:a9:b0:0d:34:6e:97:0a: b9:b3:3f:65:10:21:9c:40:80:9e:64:01:63:f8:ce:86:c9:e6: 90:1d:fc:f4:06:52:3d:c8:55:f7:3d:73:5d:23:a1:f4:df:99: 5d:68:44:70:64:fe:d3:e6:2c:78:18:c4:21:f6:48:1b:b4:58: bb:53:a0:b2:5f:04:0c:32:a2:56:b0:2d:3a:76:3c:e8:38:d0: 0b:e1:90:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwODIyMjEwODExWhcNMjUwODI5MjEwODExWjAYMRYwFAYD VQQDEw02OGE4ZGMzYi1kMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xLRhcDeYfhF+ZUffwkgmOaWciBXUr3PW7RhJPuXtcDHECewPV3Pptn+U+fC CfKpooiJDF1Lhvyi4gZvXrjBOXoFyLy4Wa35i6J+PJyuHADMOINJ0pY3Sc3T8n0F RcKW10dVQN4VuW2NunSfv4xx2PDPuokxm6vFqZDWBhZHR9VR+4uWftA8a/F7uRQm 9+tvIqHLbtQh2Chiu4w06lnjMu5Cwgp6z8B0GQn1cLuvSg3zeLtSO+yp1f2P7mVl 09dKBWLoSXejQseGpTpIDuZDbRysVU9+FvohLCvdwjPDJIiEH8a25Dn09exakmvE vw7oOS7Tr4oUyL/QTdm9dLFQzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKUhSOj 3EckT46X/FycWuRkzwMKMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdJjaHnyIO4EPCyKDc5S7sSlDiesD49ujJDW4g1kRKwj0tOFyPSRM1 +blX5Atm+/R3Qt951PMmPgY4BEdoZifH5frl/PY2ftGSvDS0z3QyuDwo4CbthCd1 up5aP91cR0lSQZbLQbflXCTQvI9em+WreguPM7Z24O8sn5h/rxR8KVVHISVki7Xj 0iTTDTvVhinff6hl+CLOLs3IiO0fPJ+LHZVDC7DT/r9pj0UJzamwDTRulwq5sz9l ECGcQICeZAFj+M6GyeaQHfz0BlI9yFX3PXNdI6H035ldaERwZP7T5ix4GMQh9kgb tFi7U6CyXwQMMqJWsC06djzoONAL4ZBi -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:38 2025 by rpki-client