$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: z9TA8stoCnGYQhclR/HLB/iPvMy+4cNzp9bWLaWSww0= Subject key identifier: 5B:96:03:6D:2C:1E:29:4B:3D:8E:EE:85:BB:99:4F:6F:5C:D7:C7:EB Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0768 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 0763 Signing time: Fri 22 Nov 2024 21:00:37 +0000 Manifest this update: Fri 22 Nov 2024 21:00:37 +0000 Manifest next update: Fri 29 Nov 2024 21:00:37 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: vanKd9h3qMIrybQzAllJ1ilWzcPdR7CVFoyOQgWpYMY=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: OSuo22pCpFQlpJJN8xkAzm6P90bv2Mjg2FXUApiRfIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1896 (0x768) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Nov 22 21:00:37 2024 GMT Not After : Nov 29 21:00:37 2024 GMT Subject: CN=6740f0f5-7be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:df:50:b8:70:05:5e:ac:b9:3f:47:a1:cb: 74:ed:04:9f:b6:72:63:f1:82:e2:a2:11:e8:9f:10: 8f:9b:55:22:61:8f:b3:02:ab:a3:8a:60:a4:63:b3: 34:1f:36:3b:b8:e8:37:19:7b:18:81:d1:9f:f3:30: 10:03:52:7e:2f:ac:87:3c:49:7a:7d:df:23:cb:93: 1e:30:49:9c:62:59:40:2b:8d:17:76:7a:b1:8e:63: 9d:0f:52:14:1e:d1:62:50:ea:01:75:d3:02:8a:13: 22:20:88:e4:72:20:8e:f1:dc:fd:e7:6b:61:9b:d2: 2c:ee:21:cf:18:ed:44:46:cc:5b:93:5b:23:34:3c: 35:b4:a8:c1:8a:3d:5c:7e:51:1a:54:d5:a9:3c:a0: 00:10:13:84:c1:3b:d2:a3:bf:cc:3b:a1:26:53:50: cf:36:88:ef:05:1e:14:d9:64:2b:b1:e8:a9:66:68: 4e:67:b3:e5:45:3f:fc:da:9c:4b:67:73:f6:f0:cc: 83:a6:e1:51:de:84:2e:31:64:d3:ea:0c:bf:7d:67: db:70:ce:af:af:86:86:80:21:81:c8:41:20:18:2c: ea:80:cd:91:72:a1:6f:e8:e6:c0:74:cd:eb:5c:e3: 25:36:74:ad:60:d0:a9:d0:62:09:83:90:a6:5a:8e: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:96:03:6D:2C:1E:29:4B:3D:8E:EE:85:BB:99:4F:6F:5C:D7:C7:EB X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:a3:36:39:c7:2c:86:5d:2d:36:db:9b:09:d3:98:bd:be:ec: fb:78:21:7a:88:c1:dc:53:9e:b9:dd:a7:eb:e9:f3:60:23:a5: 4b:d2:91:8c:14:17:9c:d6:b9:13:69:49:76:30:15:63:b4:fe: 50:ec:1f:52:8d:30:87:00:02:c4:06:11:a9:2d:b1:63:d3:42: f3:21:4a:f2:90:6e:f9:a0:24:55:02:d4:4f:cc:9a:87:bd:22: 23:c6:99:f3:c3:b3:04:d5:54:fd:7d:7f:ca:a1:77:b5:f4:0a: 2b:e6:0a:67:bd:11:f9:3e:79:98:88:e6:b3:a7:74:62:c2:81: cf:81:df:99:49:ae:4e:a6:66:91:d6:ea:23:ed:b9:74:cf:19: 31:7b:21:c0:67:89:a3:80:79:c5:0e:7e:dc:7e:e9:1c:f7:96: 1d:0c:94:cb:b3:3f:e0:1c:4b:12:23:21:4f:cb:28:be:2e:86: b3:24:f9:75:42:7f:98:3c:85:ea:e5:a4:37:65:32:1d:d0:cc: d7:3b:bb:d3:dd:1f:49:35:7c:b0:97:15:b2:ed:aa:40:cf:00: 49:00:5e:00:73:9c:6b:a9:50:a3:9f:0d:fe:82:94:4f:1e:87: 7c:b2:0a:c9:33:f4:85:18:1e:75:4a:8a:b3:83:06:4d:07:14: 9b:90:7b:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjQxMTIyMjEwMDM3WhcNMjQxMTI5MjEwMDM3WjAYMRYwFAYD VQQDEw02NzQwZjBmNS03YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0jfULhwBV6suT9Hoct07QSftnJj8YLiohHonxCPm1UiYY+zAqujimCkY7M0 HzY7uOg3GXsYgdGf8zAQA1J+L6yHPEl6fd8jy5MeMEmcYllAK40XdnqxjmOdD1IU HtFiUOoBddMCihMiIIjkciCO8dz952thm9Is7iHPGO1ERsxbk1sjNDw1tKjBij1c flEaVNWpPKAAEBOEwTvSo7/MO6EmU1DPNojvBR4U2WQrseipZmhOZ7PlRT/82pxL Z3P28MyDpuFR3oQuMWTT6gy/fWfbcM6vr4aGgCGByEEgGCzqgM2RcqFv6ObAdM3r XOMlNnStYNCp0GIJg5CmWo70xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuWA20s HilLPY7uhbuZT29c18frMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOozY5xyyGXS0225sJ05i9vuz7eCF6iMHcU5653afr6fNgI6VL0pGM FBec1rkTaUl2MBVjtP5Q7B9SjTCHAALEBhGpLbFj00LzIUrykG75oCRVAtRPzJqH vSIjxpnzw7ME1VT9fX/KoXe19Aor5gpnvRH5PnmYiOazp3RiwoHPgd+ZSa5OpmaR 1uoj7bl0zxkxeyHAZ4mjgHnFDn7cfukc95YdDJTLsz/gHEsSIyFPyyi+LoazJPl1 Qn+YPIXq5aQ3ZTId0MzXO7vT3R9JNXywlxWy7apAzwBJAF4Ac5xrqVCjnw3+gpRP Hod8sgrJM/SFGB51SoqzgwZNBxSbkHvN -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org