$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: 5l5lx8K8bkKA0WQ5Nc8eu/u6xwv+yUamt7M37Ocqtf4= Subject key identifier: 7B:86:A3:A7:2F:53:5C:F3:51:F8:72:D4:54:70:3A:3B:7D:2B:A3:95 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07B9 Signing time: Sat 10 May 2025 20:48:51 +0000 Manifest this update: Sat 10 May 2025 20:48:50 +0000 Manifest next update: Sat 17 May 2025 20:48:50 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: jl/CKlrQ782zVjlRbJ0gaaKtD5s4i4G3eyM9XQ7FIpU=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: May 10 20:48:50 2025 GMT Not After : May 17 20:48:50 2025 GMT Subject: CN=681fbbb2-2933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c5:97:f1:50:cb:ce:1f:7f:f5:d4:a3:d0:ae: 75:ba:1a:35:5a:ae:50:3a:b8:96:73:3e:7b:bf:4e: 5c:3a:5d:66:be:eb:5c:ff:5a:65:aa:2a:bc:df:fe: 42:79:b2:55:96:29:6e:e3:23:ef:99:d7:00:4c:f1: 1f:3a:4d:18:f9:9a:a5:a5:3a:52:87:46:76:9f:e7: 29:62:1c:84:c5:2d:70:21:ff:e5:73:af:e2:cc:a4: 6c:15:be:2f:1d:82:4e:69:a4:07:82:6a:65:86:ee: ca:62:16:1c:c9:34:27:84:e4:75:58:3f:15:01:b6: 3b:b6:2c:00:d5:40:9f:ec:d5:c4:e5:4c:a4:9d:c4: d3:fb:0b:98:a4:3e:5c:21:a2:21:fb:95:51:70:0c: b4:1a:2c:af:c5:0a:c6:f4:20:5a:f3:87:32:d2:99: 35:12:73:7d:99:0c:37:5c:1a:b4:b6:6b:49:20:55: 2e:7f:53:f7:6f:d0:94:be:56:17:d2:d3:63:c6:83: ad:7d:2e:e8:39:08:53:85:83:8d:e7:7b:e1:ae:d9: 43:d7:59:90:88:bd:89:b3:3d:39:8c:38:fd:11:e6: 11:b9:88:91:b4:4f:13:47:98:40:80:75:90:33:4e: 64:38:3c:db:0b:ef:c0:fe:16:31:f3:dd:89:51:1d: 5c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:86:A3:A7:2F:53:5C:F3:51:F8:72:D4:54:70:3A:3B:7D:2B:A3:95 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:29:c7:af:6f:3e:c4:93:2c:a9:0e:7b:27:9e:62:91:f6:e3: ad:4d:1a:3b:a5:5e:25:26:80:82:96:9d:8c:b5:6d:42:93:7a: 13:df:b8:08:89:1e:5e:d6:e8:9c:11:0c:d8:85:cd:25:0c:77: 87:bb:b4:ae:5e:93:02:4a:c7:e1:9d:5e:8e:a1:ea:93:9f:e2: fd:d6:9d:cf:4f:a5:c3:5e:5d:b1:a0:b3:d5:91:80:dc:48:15: 60:d8:6d:d1:d7:80:2c:33:e7:6d:db:52:14:c8:c1:82:80:5b: 04:f6:31:61:0a:5b:6a:c0:f0:f7:32:e6:39:82:a8:e7:d5:42: 8f:6a:ca:ba:05:a5:93:90:d5:12:b8:73:db:f4:0e:03:34:dc: 74:47:a7:34:6b:61:b0:c8:5c:2a:5a:de:c6:fd:ca:4a:dd:90: 0d:1d:79:2d:b7:10:59:7b:9d:dc:14:11:23:b4:14:06:86:eb: 25:b0:2e:e0:b5:b2:23:af:fd:76:3e:34:5e:4f:c8:58:b8:aa: dd:0f:ab:09:fd:d7:b1:5f:11:7f:95:ac:bb:49:93:28:c6:89: 1e:cb:ad:2d:fc:51:92:2a:c9:c3:c7:a2:f8:00:19:b1:42:52: 6d:e6:47:05:f1:5a:fb:b0:aa:dc:51:a7:e7:17:d8:49:89:07: 1f:fb:6e:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwNTEwMjA0ODUwWhcNMjUwNTE3MjA0ODUwWjAYMRYwFAYD VQQDEw02ODFmYmJiMi0yOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMWX8VDLzh9/9dSj0K51uho1Wq5QOriWcz57v05cOl1mvutc/1plqiq83/5C ebJVlilu4yPvmdcATPEfOk0Y+ZqlpTpSh0Z2n+cpYhyExS1wIf/lc6/izKRsFb4v HYJOaaQHgmplhu7KYhYcyTQnhOR1WD8VAbY7tiwA1UCf7NXE5UykncTT+wuYpD5c IaIh+5VRcAy0GiyvxQrG9CBa84cy0pk1EnN9mQw3XBq0tmtJIFUuf1P3b9CUvlYX 0tNjxoOtfS7oOQhThYON53vhrtlD11mQiL2Jsz05jDj9EeYRuYiRtE8TR5hAgHWQ M05kODzbC+/A/hYx892JUR1cAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuGo6cv U1zzUfhy1FRwOjt9K6OVMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeKcevbz7EkyypDnsnnmKR9uOtTRo7pV4lJoCClp2MtW1Ck3oT37gI iR5e1uicEQzYhc0lDHeHu7SuXpMCSsfhnV6OoeqTn+L91p3PT6XDXl2xoLPVkYDc SBVg2G3R14AsM+dt21IUyMGCgFsE9jFhCltqwPD3MuY5gqjn1UKPasq6BaWTkNUS uHPb9A4DNNx0R6c0a2GwyFwqWt7G/cpK3ZANHXkttxBZe53cFBEjtBQGhuslsC7g tbIjr/12PjReT8hYuKrdD6sJ/dexXxF/lay7SZMoxokey60t/FGSKsnDx6L4ABmx QlJt5kcF8Vr7sKrcUafnF9hJiQcf+27S -----END CERTIFICATE-----Generated at Mon May 12 21:35:58 2025 by rpki-client