$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: qAOFA68KJY/VH2EjaQHfx7ZgcbTXTkn+9v3Oy1pXj38= Subject key identifier: 3D:3A:D9:5E:00:DF:79:52:51:D8:7D:C2:FE:2C:C9:F6:48:62:E1:6C Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 07FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 07FA Signing time: Tue 16 Sep 2025 21:12:41 +0000 Manifest this update: Tue 16 Sep 2025 21:12:40 +0000 Manifest next update: Tue 23 Sep 2025 21:12:40 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: G2tfn9ylRd3QAnRi84Yjy5GW1XJ0BqkdTW90U98Q/F0=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Sep 16 21:12:40 2025 GMT Not After : Sep 23 21:12:40 2025 GMT Subject: CN=68c9d2c8-67cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:63:0e:32:70:36:46:de:b3:e2:be:f0:3e:49: 60:69:9a:d2:05:13:ae:2a:41:0d:66:84:8b:58:f7: 67:3b:63:60:f0:25:8c:e9:de:11:83:78:c1:c5:76: c9:4f:8e:10:cd:92:65:f1:4d:d6:4d:83:ea:c9:96: 42:88:d1:a5:53:08:80:c7:5d:e4:f2:1d:e7:81:fc: 1f:76:a9:b0:58:98:99:02:11:2d:bb:9e:62:5d:74: 5f:43:12:86:68:0d:a9:99:ab:35:8b:a5:07:ee:be: 4f:b3:f9:f4:5e:9f:51:c0:34:e7:07:c5:c7:9e:4b: ca:71:76:14:72:1b:4c:b2:58:66:8f:64:cd:d0:ac: 15:c6:43:4f:93:2c:8e:0c:25:b6:e9:25:9e:5a:c2: a2:d2:74:85:67:4a:02:2e:47:44:84:ae:a0:91:c5: 1d:15:ce:09:86:38:3e:14:1f:92:ef:42:ae:48:c5: db:0c:76:cc:99:fd:41:ed:b7:d6:c7:29:ea:83:e0: ff:28:f1:af:86:d9:50:5b:83:f2:69:05:b8:55:c6: de:0d:91:ca:d5:0d:90:99:8c:8f:84:00:15:f5:7d: 6a:7d:02:80:18:8d:18:b5:18:82:c4:f0:5f:93:b6: d7:a8:ee:36:76:b4:1a:f7:c5:41:aa:72:4c:7f:24: 95:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:3A:D9:5E:00:DF:79:52:51:D8:7D:C2:FE:2C:C9:F6:48:62:E1:6C X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:ea:a3:c2:eb:06:d6:3f:3a:44:ee:7a:13:f5:2a:f6:fd:4e: 04:ca:79:4b:79:4c:e7:77:e9:c2:07:8e:e2:92:eb:5a:85:3a: ed:24:6a:6f:a1:71:0a:65:ef:76:79:00:85:a3:9c:b2:0b:b3: ae:9b:9d:a7:43:5a:e5:39:04:57:ea:f1:06:e5:3c:f8:85:82: 06:6e:ce:d8:d2:05:b9:68:23:f6:2e:7e:9e:79:bd:77:73:2b: 4a:3c:8e:cf:30:8d:ad:c4:be:02:fd:e0:fc:bb:af:a2:2c:12: 41:50:d9:06:c3:21:b3:7c:3d:8c:f2:9f:ea:53:93:ef:41:3a: 5a:36:44:e7:92:2a:51:8a:17:82:40:d4:8c:e1:25:71:28:d7: b7:32:a7:c1:74:28:65:13:eb:c6:b9:98:9a:70:56:d1:1a:25: 67:3b:f7:fb:23:9c:96:86:96:07:fb:41:e8:f6:38:4e:2f:d1: d3:2b:a1:3c:87:7b:7c:80:89:94:14:1d:eb:92:e5:64:f1:9e: 43:06:80:8b:0e:1d:48:01:f1:c7:9e:c8:c9:f2:7a:7b:80:89: 0a:a0:b7:05:0a:88:28:66:f0:38:ca:6e:f1:72:30:a5:73:63: 8c:41:60:f9:cc:c9:36:af:f9:a4:0c:e4:f9:f5:47:2d:c5:43: 27:fd:2d:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwOTE2MjExMjQwWhcNMjUwOTIzMjExMjQwWjAYMRYwFAYD VQQDEw02OGM5ZDJjOC02N2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomMOMnA2Rt6z4r7wPklgaZrSBROuKkENZoSLWPdnO2Ng8CWM6d4Rg3jBxXbJ T44QzZJl8U3WTYPqyZZCiNGlUwiAx13k8h3ngfwfdqmwWJiZAhEtu55iXXRfQxKG aA2pmas1i6UH7r5Ps/n0Xp9RwDTnB8XHnkvKcXYUchtMslhmj2TN0KwVxkNPkyyO DCW26SWeWsKi0nSFZ0oCLkdEhK6gkcUdFc4Jhjg+FB+S70KuSMXbDHbMmf1B7bfW xynqg+D/KPGvhtlQW4PyaQW4VcbeDZHK1Q2QmYyPhAAV9X1qfQKAGI0YtRiCxPBf k7bXqO42drQa98VBqnJMfySVqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD062V4A 33lSUdh9wv4syfZIYuFsMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM6qPC6wbWPzpE7noT9Sr2/U4EynlLeUznd+nCB47ikutahTrtJGpv oXEKZe92eQCFo5yyC7Oum52nQ1rlOQRX6vEG5Tz4hYIGbs7Y0gW5aCP2Ln6eeb13 cytKPI7PMI2txL4C/eD8u6+iLBJBUNkGwyGzfD2M8p/qU5PvQTpaNkTnkipRiheC QNSM4SVxKNe3MqfBdChlE+vGuZiacFbRGiVnO/f7I5yWhpYH+0Ho9jhOL9HTK6E8 h3t8gImUFB3rkuVk8Z5DBoCLDh1IAfHHnsjJ8np7gIkKoLcFCogoZvA4ym7xcjCl c2OMQWD5zMk2r/mkDOT59UctxUMn/S0H -----END CERTIFICATE-----Generated at Wed Sep 17 22:54:00 2025 by rpki-client