$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: i/prRDe6ohMfKO10Y64TNJHh+tMndNaFQDnW4fsKcVU= Subject key identifier: 2B:A6:9E:B4:C4:2B:A0:FD:DD:8C:48:ED:31:BF:7C:DA:99:34:90:B1 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 085E Signing time: Tue 24 Mar 2026 20:29:11 +0000 Manifest this update: Tue 24 Mar 2026 20:29:11 +0000 Manifest next update: Tue 31 Mar 2026 20:29:11 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: qP8awjkJy4gora4nRTXSLGO+iZ9+f+CO/vzwbCobiu4=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: aJ1rzrX52ih0nJe0c9m5UvMOZxkTO0Kam9iVSQYKSgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Mar 24 20:29:11 2026 GMT Not After : Mar 31 20:29:11 2026 GMT Subject: CN=69c2f417-8008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:83:6d:3e:28:61:cd:19:96:a4:69:eb:26: b5:f7:10:e2:5e:6f:b9:47:fe:1a:61:88:d3:bb:17: 59:6e:8a:f9:93:b3:76:4a:92:3a:7a:1f:10:1c:fb: e3:e4:42:f3:d8:ce:3f:12:b8:09:6f:b5:2b:8f:40: 86:1e:73:eb:e6:b9:bf:07:c9:3d:0a:8a:94:3a:aa: ee:f1:cf:1f:3f:ef:0d:34:5d:44:71:f3:c4:44:b2: 63:3c:ce:cc:c0:20:52:3c:6b:cb:21:07:7c:1b:15: 6c:4b:2d:85:7e:b5:40:e6:83:53:a0:a3:af:8c:91: 43:35:40:cd:2c:a5:d7:49:2c:0b:d4:47:22:1c:4e: 3b:cb:4f:2a:a6:e9:e7:11:b2:db:fa:65:1a:37:1b: 44:9b:59:1d:45:b3:4a:09:ba:bb:8b:ca:5c:0c:17: 3e:84:6e:ad:a9:92:3e:ad:cd:3b:39:27:1a:79:cb: a4:9c:9a:ea:7f:96:43:80:60:c4:ca:a6:1c:c5:38: 1e:ec:d2:34:15:77:59:e5:b5:5a:23:17:04:1d:a0: 33:32:ea:f5:d6:87:16:36:b8:f8:52:95:a2:7d:c8: 3d:1f:b9:07:83:c3:3e:0a:ba:c1:a3:82:f5:1b:7b: d8:5e:68:4f:a6:ba:8a:85:97:46:b6:33:28:bb:5a: 4e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A6:9E:B4:C4:2B:A0:FD:DD:8C:48:ED:31:BF:7C:DA:99:34:90:B1 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:bd:ee:72:14:35:2e:7e:78:fc:7f:47:e0:74:ee:38:de:47: 68:8f:ae:47:e5:7c:0a:fd:0b:63:b8:b3:54:7b:8e:6e:c5:eb: f5:a3:98:b4:c3:8b:6b:ec:f0:e8:50:64:32:e2:a5:a0:ac:31: 64:20:b9:8c:11:75:2a:aa:f9:f2:b6:4c:13:09:43:8b:2a:ee: 6d:46:01:77:4b:e7:16:d5:03:92:0c:87:6b:76:c9:54:2f:8b: 1e:c7:13:a5:86:dd:5a:2b:e0:a0:64:24:db:8a:90:69:e1:49: 55:8c:db:75:1e:95:30:1c:af:17:8b:69:ce:bf:7c:3a:7a:db: 96:f2:e8:b5:cd:7d:cc:06:70:5b:19:4b:da:38:10:71:7e:82: 79:87:f3:42:79:be:da:c4:f7:2e:4e:29:0e:b2:fc:a9:54:f0: 87:33:cb:4e:d6:7a:f0:19:e5:c8:da:39:46:de:7c:08:69:88: 1f:53:44:33:94:75:e5:ac:2e:8d:40:cb:2a:c5:78:69:8a:ed: 63:0c:88:5e:c8:85:c7:0c:ab:10:eb:b9:10:96:74:39:81:a7: d8:4f:fc:47:31:24:ff:4e:88:ce:a4:3b:68:fe:b9:f3:54:93: 84:f8:75:10:7d:f9:31:f0:71:de:49:a3:a9:34:17:42:c2:86: ab:c7:1a:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjYwMzI0MjAyOTExWhcNMjYwMzMxMjAyOTExWjAYMRYwFAYD VQQDEw02OWMyZjQxNy04MDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXODbT4oYc0ZlqRp6ya19xDiXm+5R/4aYYjTuxdZbor5k7N2SpI6eh8QHPvj 5ELz2M4/ErgJb7Urj0CGHnPr5rm/B8k9CoqUOqru8c8fP+8NNF1EcfPERLJjPM7M wCBSPGvLIQd8GxVsSy2FfrVA5oNToKOvjJFDNUDNLKXXSSwL1EciHE47y08qpunn EbLb+mUaNxtEm1kdRbNKCbq7i8pcDBc+hG6tqZI+rc07OScaecuknJrqf5ZDgGDE yqYcxTge7NI0FXdZ5bVaIxcEHaAzMur11ocWNrj4UpWifcg9H7kHg8M+CrrBo4L1 G3vYXmhPprqKhZdGtjMou1pOXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCumnrTE K6D93YxI7TG/fNqZNJCxMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABb3uchQ1Ln54/H9H4HTuON5HaI+uR+V8Cv0LY7izVHuObsXr9aOYtMOLa+zw 6FBkMuKloKwxZCC5jBF1Kqr58rZMEwlDiyrubUYBd0vnFtUDkgyHa3bJVC+LHscT pYbdWivgoGQk24qQaeFJVYzbdR6VMByvF4tpzr98OnrblvLotc19zAZwWxlL2jgQ cX6CeYfzQnm+2sT3Lk4pDrL8qVTwhzPLTtZ68BnlyNo5Rt58CGmIH1NEM5R15awu jUDLKsV4aYrtYwyIXsiFxwyrEOu5EJZ0OYGn2E/8RzEk/06IzqQ7aP6581SThPh1 EH35MfBx3kmjqTQXQsKGq8calg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:35:04 2026 by rpki-client