$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: 09XJX6dFTpFxQk3e/jUbDoDTOW1lU319HsZZLNgmkq8= Subject key identifier: BA:79:4D:AF:41:4D:8D:2E:AF:B1:50:C4:8D:36:DA:26:A6:DC:67:C3 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07C2 Signing time: Fri 30 May 2025 21:21:25 +0000 Manifest this update: Fri 30 May 2025 21:21:25 +0000 Manifest next update: Fri 06 Jun 2025 21:21:25 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: t+Dd9Krc2rzgYA2LLQoRhYYT36eqBq8wJatNd6AukqY=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1991 (0x7c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: May 30 21:21:25 2025 GMT Not After : Jun 6 21:21:25 2025 GMT Subject: CN=683a2155-7e58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:38:4d:b1:88:d3:82:04:e0:3b:d3:01:f7:65: e7:cc:40:83:2a:44:9a:06:32:09:5c:21:03:1a:6a: 77:58:04:9c:3e:fa:aa:8a:aa:e8:bf:da:26:52:5d: 76:10:ec:3c:39:5a:6b:39:4a:c7:ce:a4:c6:c5:5d: b4:80:cb:79:2c:09:a0:54:db:37:e6:b9:03:4d:60: 4b:83:02:32:94:0e:de:0b:7f:e6:9c:34:92:e2:ba: 48:0b:10:05:96:41:5b:5c:52:d7:d9:4b:e9:0d:d8: 5f:7f:7f:85:fb:81:9b:4e:b4:03:b8:b4:9a:3d:af: b0:a7:cd:d9:41:64:72:45:fd:67:69:1e:d6:1d:c7: 90:46:1e:13:a8:05:ac:19:39:5e:31:d5:e9:f2:d2: 2b:4b:e5:c1:8b:a1:3e:bf:b7:e9:65:cf:ee:6a:78: 7a:d5:99:99:17:0f:96:41:75:19:27:ae:66:85:87: aa:5c:3b:df:21:8f:41:a3:6f:ea:35:c4:b9:23:ec: 89:28:1a:e1:d1:3a:fd:09:8d:cb:55:90:92:8c:0f: b4:8e:b6:ce:d7:f9:d8:17:bc:e4:86:08:65:2d:a3: 78:58:63:5a:58:7d:10:54:8e:5f:47:2f:95:39:9e: 9d:20:e0:48:9c:d1:bb:c3:e6:09:1b:d4:44:ba:94: 9b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:79:4D:AF:41:4D:8D:2E:AF:B1:50:C4:8D:36:DA:26:A6:DC:67:C3 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:c1:9c:8b:fe:e3:6d:04:6c:63:24:0f:84:c0:b9:4a:3d:fe: 2b:65:bb:e6:77:a1:24:24:11:a4:a5:dd:0a:80:7c:b1:62:af: e2:1f:a5:93:58:5e:78:52:8f:9e:1a:85:9e:aa:fb:15:98:36: 46:ad:2e:38:bb:f0:a7:18:c8:04:5c:d3:9f:2c:3e:48:19:4c: 94:96:bf:9e:9b:11:53:78:01:c8:dd:25:df:f4:b8:f3:f5:37: 89:07:80:93:99:ef:e7:1f:c4:55:66:4a:1d:e4:4e:83:29:29: 28:82:c5:b3:64:24:72:75:f6:85:66:48:17:80:e4:3d:13:c0: 27:86:46:16:d1:7e:e9:e3:a0:1f:55:94:21:c7:b2:f8:fd:9c: 6d:aa:89:09:bc:96:c0:42:27:1c:08:3f:07:56:88:ab:44:30: fd:f1:ff:e7:e5:09:ce:36:34:51:9c:52:31:e7:8e:58:88:a7: e2:05:9f:00:94:b1:93:b3:21:f1:82:e7:57:33:34:d8:32:45: 50:fe:54:0b:d4:a4:25:31:4f:09:26:ae:cc:ce:37:2d:7f:5c: 1d:c9:03:47:21:60:c3:79:92:e1:56:f3:4c:d7:6e:a2:9a:c3: c3:e9:55:10:e7:9f:1e:58:37:f9:9e:03:0b:3f:c5:ee:9f:2a: 51:33:39:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwNTMwMjEyMTI1WhcNMjUwNjA2MjEyMTI1WjAYMRYwFAYD VQQDEw02ODNhMjE1NS03ZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6DhNsYjTggTgO9MB92XnzECDKkSaBjIJXCEDGmp3WAScPvqqiqrov9omUl12 EOw8OVprOUrHzqTGxV20gMt5LAmgVNs35rkDTWBLgwIylA7eC3/mnDSS4rpICxAF lkFbXFLX2UvpDdhff3+F+4GbTrQDuLSaPa+wp83ZQWRyRf1naR7WHceQRh4TqAWs GTleMdXp8tIrS+XBi6E+v7fpZc/uanh61ZmZFw+WQXUZJ65mhYeqXDvfIY9Bo2/q NcS5I+yJKBrh0Tr9CY3LVZCSjA+0jrbO1/nYF7zkhghlLaN4WGNaWH0QVI5fRy+V OZ6dIOBInNG7w+YJG9REupSb0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLp5Ta9B TY0ur7FQxI022iam3GfDMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuwZyL/uNtBGxjJA+EwLlKPf4rZbvmd6EkJBGkpd0KgHyxYq/iH6WT WF54Uo+eGoWeqvsVmDZGrS44u/CnGMgEXNOfLD5IGUyUlr+emxFTeAHI3SXf9Ljz 9TeJB4CTme/nH8RVZkod5E6DKSkogsWzZCRydfaFZkgXgOQ9E8AnhkYW0X7p46Af VZQhx7L4/ZxtqokJvJbAQiccCD8HVoirRDD98f/n5QnONjRRnFIx545YiKfiBZ8A lLGTsyHxgudXMzTYMkVQ/lQL1KQlMU8JJq7Mzjctf1wdyQNHIWDDeZLhVvNM126i msPD6VUQ558eWDf5ngMLP8XunypRMzkq -----END CERTIFICATE-----Generated at Sat May 31 16:52:09 2025 by rpki-client