$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: 7DsLf0RQ2Yo6RcNPg9HmLPj1SdEd0yV7CpR4eGD04MA= Subject key identifier: ED:FD:63:C9:5E:13:BC:B5:BB:8E:02:FF:EF:EF:76:36:DC:79:20:C0 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07D2 Signing time: Mon 30 Jun 2025 21:16:59 +0000 Manifest this update: Mon 30 Jun 2025 21:16:59 +0000 Manifest next update: Mon 07 Jul 2025 21:16:59 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: cdAoB8oZjzi1axnvjX66qLW7hXQhdikRJLZ9rhva0lQ=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Jun 30 21:16:59 2025 GMT Not After : Jul 7 21:16:59 2025 GMT Subject: CN=6862fecb-04d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c3:ec:ca:75:53:5c:fd:72:8e:69:90:45:01: 33:85:e9:63:1c:93:c2:be:6d:81:b7:92:2e:48:eb: a4:31:bd:e3:62:9e:7e:61:b0:fd:d7:8f:9f:60:5e: 64:a2:6c:c2:40:03:eb:6a:a5:f2:b8:74:54:af:45: 20:ca:2e:89:fe:87:fd:21:a9:98:54:ff:73:d7:ef: 57:2c:9a:c4:af:0b:91:1a:09:61:0f:45:ac:1d:c7: e1:1b:b7:44:aa:e1:7c:9d:f3:83:94:49:03:51:6a: 92:fa:00:eb:9f:f0:b8:7e:73:85:03:ac:87:db:bd: f5:50:dc:5a:d1:e1:85:bf:c1:d9:15:c0:63:2d:09: fe:a2:33:26:37:af:6f:ab:26:58:f3:58:22:33:60: e1:1a:5b:fb:1b:75:ef:3e:39:e3:4d:d5:d0:30:ca: f7:e2:2f:4d:d4:3d:aa:80:5e:9c:60:9e:a8:81:11: 11:d9:a4:3b:be:25:af:79:fc:57:4a:2d:d3:2d:af: b1:35:f0:a7:1b:2f:a2:73:f0:76:22:86:d8:08:26: ac:a1:05:72:5d:da:5b:eb:eb:eb:c3:96:03:9d:f2: 34:91:8f:40:d2:64:96:1d:be:b5:b8:f0:75:0b:eb: fc:bc:a9:78:c9:8a:dd:ab:86:cf:07:cb:e2:9e:84: ee:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:FD:63:C9:5E:13:BC:B5:BB:8E:02:FF:EF:EF:76:36:DC:79:20:C0 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:82:28:17:32:0c:8d:82:dc:98:36:76:ea:58:5c:37:61:ce: 38:50:72:b8:b4:e2:a1:1c:ac:da:9f:7e:14:bb:bc:15:47:56: 85:45:07:52:46:a4:b7:2e:05:6d:11:7e:e8:7d:92:b5:10:b0: 5c:5a:19:ae:fb:bd:e9:33:0f:39:5c:fa:36:47:da:28:85:67: bc:cc:34:bb:0b:c5:c2:2c:03:77:47:c2:55:a1:58:01:77:39: 02:63:c9:32:ac:bf:89:3a:e7:ef:c8:6b:ce:39:db:66:da:45: f6:e5:bb:19:aa:14:d0:c5:aa:93:e1:7a:92:62:7d:7f:dc:68: af:76:30:9e:4c:01:0d:a4:67:7c:8d:d7:16:0d:b5:ec:90:a4: bd:cc:91:68:d3:a0:2c:4a:4d:74:1e:c7:ef:f2:45:3b:b8:3d: 41:43:d8:e7:6f:47:f9:6a:7c:78:a9:f1:c5:be:5c:04:b6:e5: f8:b1:8d:20:8d:5c:cd:d2:f8:a7:b4:df:fe:9c:de:a6:3c:15: b8:61:34:2c:23:4e:5d:50:1d:35:58:3e:2a:02:2c:fc:dc:df: 8d:96:ba:43:98:4b:71:52:f7:4b:8f:b8:58:45:a6:fa:9d:7b: 6c:eb:b2:c1:e4:88:b4:c1:48:e8:c9:4e:1c:73:64:5b:0f:b6: 0d:c9:3f:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwNjMwMjExNjU5WhcNMjUwNzA3MjExNjU5WjAYMRYwFAYD VQQDEw02ODYyZmVjYi0wNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsPsynVTXP1yjmmQRQEzheljHJPCvm2Bt5IuSOukMb3jYp5+YbD914+fYF5k omzCQAPraqXyuHRUr0Ugyi6J/of9IamYVP9z1+9XLJrErwuRGglhD0WsHcfhG7dE quF8nfODlEkDUWqS+gDrn/C4fnOFA6yH2731UNxa0eGFv8HZFcBjLQn+ojMmN69v qyZY81giM2DhGlv7G3XvPjnjTdXQMMr34i9N1D2qgF6cYJ6ogRER2aQ7viWvefxX Si3TLa+xNfCnGy+ic/B2IobYCCasoQVyXdpb6+vrw5YDnfI0kY9A0mSWHb61uPB1 C+v8vKl4yYrdq4bPB8vinoTuXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO39Y8le E7y1u44C/+/vdjbceSDAMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBogigXMgyNgtyYNnbqWFw3Yc44UHK4tOKhHKzan34Uu7wVR1aFRQdS RqS3LgVtEX7ofZK1ELBcWhmu+73pMw85XPo2R9oohWe8zDS7C8XCLAN3R8JVoVgB dzkCY8kyrL+JOufvyGvOOdtm2kX25bsZqhTQxaqT4XqSYn1/3GivdjCeTAENpGd8 jdcWDbXskKS9zJFo06AsSk10Hsfv8kU7uD1BQ9jnb0f5anx4qfHFvlwEtuX4sY0g jVzN0vintN/+nN6mPBW4YTQsI05dUB01WD4qAiz83N+NlrpDmEtxUvdLj7hYRab6 nXts67LB5Ii0wUjoyU4cc2RbD7YNyT/w -----END CERTIFICATE-----Generated at Wed Jul 2 19:35:00 2025 by rpki-client