$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: JK2lsIuQIqeu0m/eOuwmUjS1v3/7KivybLoiHM1WWe4= Subject key identifier: 67:58:91:62:3C:F3:2E:30:62:02:D0:28:58:95:AF:8A:BB:6D:88:91 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07DC Signing time: Sun 20 Jul 2025 21:10:21 +0000 Manifest this update: Sun 20 Jul 2025 21:10:20 +0000 Manifest next update: Sun 27 Jul 2025 21:10:20 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: QClLcu8nPKW9XIf6BuGtsBeSAWqKhr1VGIsDqFVO1vg=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Jul 20 21:10:20 2025 GMT Not After : Jul 27 21:10:20 2025 GMT Subject: CN=687d5b3c-e825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:67:f2:48:f6:3a:1f:70:cd:f4:23:fb:ba:08: 44:47:80:d5:bf:e1:1e:20:c5:a5:1f:b8:1c:f9:55: 56:a6:6f:7a:94:cb:62:21:b6:19:88:00:ce:5d:6e: c1:a9:43:97:77:ed:9b:5b:ba:eb:06:c3:96:06:28: ca:ac:7d:52:73:47:1a:02:7c:d4:b4:46:70:3f:1a: 59:95:b1:20:1a:e2:2d:33:f1:a6:35:35:25:b4:d9: f7:3c:76:f0:4b:8e:a3:63:00:f7:5c:39:01:f4:23: 66:8b:67:15:1e:3d:e5:ab:b6:d6:76:64:3b:33:10: e7:63:6a:db:a5:c8:01:5d:97:93:fd:11:b5:c4:0b: bd:94:0c:81:18:6e:18:22:dc:ff:c2:91:c9:79:04: 3d:ca:40:df:67:89:72:fd:d8:3c:52:9b:17:f9:b4: 06:84:24:f2:a0:3d:6c:cf:e1:8c:4e:f6:3a:0a:4b: ef:24:26:18:ad:b4:35:df:30:ec:a4:1c:a5:bc:58: 2e:45:97:7d:3f:fb:d1:78:d3:e1:5a:bb:93:f2:fc: 33:14:a6:45:39:5b:6b:25:a5:33:cf:15:14:39:29: 6c:57:6b:e9:a7:54:8c:30:6f:03:fa:03:d0:84:07: 50:d3:bf:64:7a:fa:4c:19:ee:2e:e2:65:f9:ff:c5: 00:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:58:91:62:3C:F3:2E:30:62:02:D0:28:58:95:AF:8A:BB:6D:88:91 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:30:e3:f2:e9:4d:29:3b:91:2a:6f:84:62:5d:a7:6f:cc:76: 3a:b9:a0:0a:ef:52:e1:a7:4a:3d:ba:1e:90:ff:98:a9:b5:f6: 24:9c:15:66:5f:ae:c4:db:8a:ef:a9:60:4f:58:35:a5:d2:a6: 81:c0:9f:47:01:01:74:42:7e:86:ad:d8:56:09:1e:9b:82:20: ba:72:c3:4d:33:b9:fc:d5:70:92:cf:7f:0f:68:c3:61:25:3b: fc:51:30:2d:eb:bd:09:fc:51:3d:b8:bb:6c:97:a0:25:aa:ce: 31:f7:54:65:87:24:ec:7d:be:6a:09:47:39:55:a6:41:0a:f6: 07:fc:c4:0d:5f:3f:75:c9:73:85:de:bb:5b:0f:e7:05:bc:33: fd:f5:7e:58:0e:11:d4:43:c6:ca:6f:c5:cf:31:fe:ec:27:e5: 89:62:49:71:ff:ab:ea:0f:ad:50:0e:7b:be:6f:ff:2d:09:59: d4:36:70:15:25:89:27:15:56:9f:a6:79:94:8e:fc:6b:d0:39: 8e:9f:5e:3b:36:6b:ed:9b:a7:16:f5:c4:a5:16:7d:7c:bd:6b: 63:32:d1:9c:05:62:48:1b:4e:cf:e1:a1:cb:02:95:2e:ed:07: 73:1e:d3:ac:c9:64:1d:2c:7d:04:36:63:26:77:79:ba:f5:aa: d8:17:55:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwNzIwMjExMDIwWhcNMjUwNzI3MjExMDIwWjAYMRYwFAYD VQQDEw02ODdkNWIzYy1lODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mfySPY6H3DN9CP7ughER4DVv+EeIMWlH7gc+VVWpm96lMtiIbYZiADOXW7B qUOXd+2bW7rrBsOWBijKrH1Sc0caAnzUtEZwPxpZlbEgGuItM/GmNTUltNn3PHbw S46jYwD3XDkB9CNmi2cVHj3lq7bWdmQ7MxDnY2rbpcgBXZeT/RG1xAu9lAyBGG4Y Itz/wpHJeQQ9ykDfZ4ly/dg8UpsX+bQGhCTyoD1sz+GMTvY6CkvvJCYYrbQ13zDs pBylvFguRZd9P/vReNPhWruT8vwzFKZFOVtrJaUzzxUUOSlsV2vpp1SMMG8D+gPQ hAdQ079kevpMGe4u4mX5/8UA7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdYkWI8 8y4wYgLQKFiVr4q7bYiRMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2MOPy6U0pO5Eqb4RiXadvzHY6uaAK71Lhp0o9uh6Q/5iptfYknBVm X67E24rvqWBPWDWl0qaBwJ9HAQF0Qn6GrdhWCR6bgiC6csNNM7n81XCSz38PaMNh JTv8UTAt670J/FE9uLtsl6Alqs4x91RlhyTsfb5qCUc5VaZBCvYH/MQNXz91yXOF 3rtbD+cFvDP99X5YDhHUQ8bKb8XPMf7sJ+WJYklx/6vqD61QDnu+b/8tCVnUNnAV JYknFVafpnmUjvxr0DmOn147Nmvtm6cW9cSlFn18vWtjMtGcBWJIG07P4aHLApUu 7QdzHtOsyWQdLH0ENmMmd3m69arYF1Xk -----END CERTIFICATE-----Generated at Mon Jul 21 06:56:11 2025 by rpki-client