$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: l6jim7p9Zh5xlPIF3D7iPljDmt3v6m8o719P1ZoDl7Y= Subject key identifier: DB:FD:67:1E:F7:73:4E:F8:C9:94:62:4A:3C:E2:FF:6D:AB:D8:22:5A Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0727 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 0723 Signing time: Wed 24 Jul 2024 22:02:32 +0000 Manifest this update: Wed 24 Jul 2024 22:02:31 +0000 Manifest next update: Wed 31 Jul 2024 22:02:31 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: Uzv8UhcYMfkMM+4ppJOPl5UYxOmRdm0D0jFKid8evHU=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: jOge8skLIcHPRNXBOddiPea5ED5jJLRslseWiOh+s+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Jul 2024 22:02:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1831 (0x727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Jul 24 22:02:31 2024 GMT Not After : Jul 31 22:02:31 2024 GMT Subject: CN=66a179f7-46c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3d:78:88:c3:5e:91:91:3e:e1:85:23:3c:91: fb:c2:6d:83:83:5c:67:da:b8:ba:80:3f:0c:de:59: e5:7a:9d:5f:c2:f4:68:47:6a:c4:5f:a0:53:25:ae: f3:16:62:02:e8:44:19:90:5d:28:2a:b5:28:f9:1f: cb:9e:64:33:45:42:57:10:fa:8b:3e:5a:c7:6a:9c: 76:82:b1:10:75:2d:90:b4:13:78:1b:14:00:9e:45: fb:dd:1f:df:f5:63:b7:2e:dd:e3:a7:01:4f:06:b3: ac:96:d0:c6:68:5f:a6:a8:60:db:5f:53:82:ce:fc: df:fd:64:81:27:1f:0d:6a:21:34:c0:44:bc:76:4d: f4:32:e0:06:81:c3:be:e3:18:3d:0d:dd:ad:4e:2b: d5:0e:3c:7d:63:44:23:13:1d:b1:89:f9:3d:3c:da: a1:61:f4:3d:5b:27:27:c2:e8:cd:6f:40:c7:c7:1f: 16:92:99:9e:22:69:a0:4a:98:9c:b5:f5:71:7e:14: d8:7a:60:37:07:39:56:78:c0:02:cd:a2:a6:78:d8: fc:6d:cd:06:5d:a6:42:25:fb:cb:8f:6d:19:a2:2e: e8:79:3f:51:e2:86:88:2b:3d:5d:a9:72:20:25:5c: 1e:20:72:12:7e:2f:d3:60:4f:58:ff:f1:23:d1:e6: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:67:1E:F7:73:4E:F8:C9:94:62:4A:3C:E2:FF:6D:AB:D8:22:5A X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:6e:16:e3:f1:61:7d:ee:4a:50:a2:1c:2a:f0:6f:65:33:a4: 18:ba:cd:c8:b0:c7:2f:26:76:15:fa:6d:5f:e1:a0:96:c8:fe: cd:d4:17:20:6c:f9:00:af:b7:6d:18:73:98:c5:17:42:87:05: 9f:bc:ec:7c:ca:91:ce:10:47:69:33:b1:b2:b2:6f:cf:52:ee: 6b:cd:ca:09:38:c2:1c:e8:50:e6:12:a1:72:86:ca:19:85:03: fe:ca:a2:ab:08:2d:9e:bf:c7:fe:5a:33:0e:7e:89:03:b9:29: f7:5d:b1:a0:bf:e7:3e:c7:6a:b8:f3:fc:21:4f:9b:a9:d9:63: 88:5a:96:de:5b:c4:f6:7b:2b:e0:42:c2:04:38:04:72:38:2e: f9:86:54:e4:9d:90:d3:6d:04:97:6a:f4:e2:8a:d6:61:5f:f1: 53:93:50:a4:b3:47:c8:c5:23:9c:fe:10:95:cf:1b:70:46:90: 6b:5d:a6:9a:80:db:1a:86:3e:a7:09:bd:13:0c:f6:12:27:08: ae:94:19:40:a9:38:07:79:2e:eb:75:30:e0:e8:53:0a:69:44: 6b:60:ec:58:7f:21:41:84:64:d7:f2:bd:4a:63:9f:18:c7:a9: 76:85:23:5e:25:87:0c:f9:10:f9:7e:4b:e7:a4:4a:1d:da:68: b7:33:64:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjQwNzI0MjIwMjMxWhcNMjQwNzMxMjIwMjMxWjAYMRYwFAYD VQQDEw02NmExNzlmNy00NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj14iMNekZE+4YUjPJH7wm2Dg1xn2ri6gD8M3lnlep1fwvRoR2rEX6BTJa7z FmIC6EQZkF0oKrUo+R/LnmQzRUJXEPqLPlrHapx2grEQdS2QtBN4GxQAnkX73R/f 9WO3Lt3jpwFPBrOsltDGaF+mqGDbX1OCzvzf/WSBJx8NaiE0wES8dk30MuAGgcO+ 4xg9Dd2tTivVDjx9Y0QjEx2xifk9PNqhYfQ9WycnwujNb0DHxx8WkpmeImmgSpic tfVxfhTYemA3BzlWeMACzaKmeNj8bc0GXaZCJfvLj20Zoi7oeT9R4oaIKz1dqXIg JVweIHISfi/TYE9Y//Ej0eYtHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNv9Zx73 c074yZRiSjzi/22r2CJaMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSbhbj8WF97kpQohwq8G9lM6QYus3IsMcvJnYV+m1f4aCWyP7N1Bcg bPkAr7dtGHOYxRdChwWfvOx8ypHOEEdpM7Gysm/PUu5rzcoJOMIc6FDmEqFyhsoZ hQP+yqKrCC2ev8f+WjMOfokDuSn3XbGgv+c+x2q48/whT5up2WOIWpbeW8T2eyvg QsIEOARyOC75hlTknZDTbQSXavTiitZhX/FTk1Cks0fIxSOc/hCVzxtwRpBrXaaa gNsahj6nCb0TDPYSJwiulBlAqTgHeS7rdTDg6FMKaURrYOxYfyFBhGTX8r1KY58Y x6l2hSNeJYcM+RD5fkvnpEod2mi3M2Qq -----END CERTIFICATE-----Generated at Wed Jul 24 23:57:27 2024 by rpki-client on console-fra.rpki-client.org