$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: NltEnuKS9Eph9CyEH6vLgxcP8yTFi42H2UuI17+c+rI= Subject key identifier: AF:C3:BF:6D:B3:44:9A:04:0A:EF:B6:59:6C:76:46:D1:F1:DB:61:D9 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 0701 Signing time: Sat 18 May 2024 22:40:41 +0000 Manifest this update: Sat 18 May 2024 22:40:41 +0000 Manifest next update: Sat 25 May 2024 22:40:41 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: YefWh+E102g82jlOm2AGTK5TU7b8jB2kmMoRE+JtJ50=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: jOge8skLIcHPRNXBOddiPea5ED5jJLRslseWiOh+s+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: May 18 22:40:41 2024 GMT Not After : May 25 22:40:41 2024 GMT Subject: CN=66492e69-20bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c6:24:41:34:4f:e0:a6:86:53:2c:ff:e7:30: 0e:ca:d0:36:c4:49:c5:17:15:45:92:9c:4b:ee:7a: 50:d2:a2:b8:7a:6e:50:96:2f:38:59:8c:a5:49:98: b1:92:c8:82:bb:0d:5c:7c:7a:6d:50:b0:f2:03:62: 64:1d:02:4d:01:d0:d5:60:b3:1b:8e:1b:a9:9b:d2: 8f:e2:7b:44:b5:fd:90:ec:38:90:9c:7e:5f:55:d1: fa:12:11:3f:ff:b5:1c:f4:af:5e:3f:f1:3d:78:88: 0e:12:02:7f:34:04:8d:0a:9c:b7:5a:23:d1:ae:57: 30:d2:e2:71:ce:6a:08:f7:29:40:73:61:5d:63:58: 40:a2:f1:c4:67:9c:98:06:a0:40:7d:a3:72:01:8d: 42:ef:fb:15:13:f5:5b:84:3b:d1:8c:7f:89:e1:f6: a6:9a:c3:3a:96:6d:9c:23:a5:4d:98:3a:9a:de:2f: 67:a2:a4:77:88:26:e9:ac:83:38:e8:78:ab:dc:f8: 88:19:e7:b3:84:71:27:5b:a4:69:93:7a:d0:c8:13: 7c:c1:ed:56:73:c0:87:0c:8b:b6:d9:5d:12:de:11: 92:c3:f0:7f:c6:8d:bb:a9:28:c0:3b:6b:66:35:d1: 21:7c:c0:0f:44:15:a0:25:1a:58:2b:a6:50:11:9e: 98:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C3:BF:6D:B3:44:9A:04:0A:EF:B6:59:6C:76:46:D1:F1:DB:61:D9 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fa:ed:83:d5:c8:7a:86:f9:9b:22:f7:8c:bb:5c:6d:cc:15: 0e:2c:93:ea:98:9a:59:38:96:cb:ed:e1:d4:52:fb:e3:c0:8b: 9e:ab:18:a5:b9:51:0e:94:8a:c2:07:ae:8c:81:87:a2:43:9d: 6f:ec:6c:77:c7:de:5b:42:ac:50:91:20:c2:1b:b4:71:24:5e: 66:8c:91:40:fc:29:8b:a3:f4:6d:97:3d:5e:1b:29:f1:12:85: 9e:e4:75:c6:4b:be:99:d2:49:c4:3a:b7:34:fe:8c:a2:7d:57: 9f:c1:27:98:0a:e2:0b:53:ab:79:02:e7:09:38:ba:f7:d4:55: 68:2c:32:5d:04:03:f7:3d:00:d3:6d:54:c8:49:28:9b:ff:8d: 88:99:63:71:b4:51:f3:f5:81:1d:0e:44:d6:ec:59:2e:96:08: 2e:0c:da:a9:8a:a8:e5:93:af:4b:74:39:6e:37:52:8e:a5:eb: 32:41:0d:61:3c:90:2a:af:24:b6:1c:90:88:92:6c:c6:02:13: 2e:eb:ff:2f:88:ff:9e:e5:79:fb:20:ec:12:fc:42:29:67:37: 13:90:96:34:88:ba:c0:e2:93:af:da:aa:ee:db:82:5d:90:2d: 73:b2:04:8b:2d:da:1f:5b:86:c4:9b:fe:8d:9d:d0:e3:f7:64: bd:7e:27:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjQwNTE4MjI0MDQxWhcNMjQwNTI1MjI0MDQxWjAYMRYwFAYD VQQDEw02NjQ5MmU2OS0yMGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMYkQTRP4KaGUyz/5zAOytA2xEnFFxVFkpxL7npQ0qK4em5Qli84WYylSZix ksiCuw1cfHptULDyA2JkHQJNAdDVYLMbjhupm9KP4ntEtf2Q7DiQnH5fVdH6EhE/ /7Uc9K9eP/E9eIgOEgJ/NASNCpy3WiPRrlcw0uJxzmoI9ylAc2FdY1hAovHEZ5yY BqBAfaNyAY1C7/sVE/VbhDvRjH+J4fammsM6lm2cI6VNmDqa3i9noqR3iCbprIM4 6Hir3PiIGeezhHEnW6Rpk3rQyBN8we1Wc8CHDIu22V0S3hGSw/B/xo27qSjAO2tm NdEhfMAPRBWgJRpYK6ZQEZ6YqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/Dv22z RJoECu+2WWx2RtHx22HZMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM+u2D1ch6hvmbIveMu1xtzBUOLJPqmJpZOJbL7eHUUvvjwIueqxil uVEOlIrCB66MgYeiQ51v7Gx3x95bQqxQkSDCG7RxJF5mjJFA/CmLo/Rtlz1eGynx EoWe5HXGS76Z0knEOrc0/oyifVefwSeYCuILU6t5AucJOLr31FVoLDJdBAP3PQDT bVTISSib/42ImWNxtFHz9YEdDkTW7FkulgguDNqpiqjlk69LdDluN1KOpesyQQ1h PJAqryS2HJCIkmzGAhMu6/8viP+e5Xn7IOwS/EIpZzcTkJY0iLrA4pOv2qru24Jd kC1zsgSLLdofW4bEm/6NndDj92S9fidv -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org