$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft File: AMEx5mi1_pTstDkxhHpyiqzoLUs.mft (raw, json) Hash identifier: j0TjhTJ48v7lTx6Toa0BiXUGyAkRPAfAJkBliaTYbck= Subject key identifier: A0:56:1E:F2:5A:E4:97:C9:A8:E7:97:10:BF:6D:3E:AE:BC:1C:CC:79 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft Manifest number: 06F5 Signing time: Mon 22 Apr 2024 22:50:19 +0000 Manifest this update: Mon 22 Apr 2024 22:50:19 +0000 Manifest next update: Mon 29 Apr 2024 22:50:19 +0000 Files and hashes: 1: AMEx5mi1_pTstDkxhHpyiqzoLUs.crl (hash: j9jy8+Xz1isrAfZBLNfOLAAdD5EWSK1gxjoGPSZOtfM=) 2: 76EBD456F72011EA8776EC28C4F9AE02.roa (hash: jOge8skLIcHPRNXBOddiPea5ED5jJLRslseWiOh+s+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 22:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Apr 22 22:50:19 2024 GMT Not After : Apr 29 22:50:19 2024 GMT Subject: CN=6626e9ab-6497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:40:5b:3a:29:a7:aa:ae:3c:7b:d6:6c:a8:d4: e9:25:47:d4:ba:7d:f0:26:cd:51:81:a2:12:e9:c8: 53:75:33:1a:c2:c4:d5:70:70:18:0b:21:f5:72:80: 20:6f:24:a7:49:9d:f9:11:31:cb:33:4d:6c:62:f9: 15:ed:c9:9d:1b:7b:5a:a2:fc:58:92:3c:ee:67:1b: 9b:45:0b:e0:01:de:c3:9c:c8:6c:d9:df:ec:4d:e8: 8b:e6:38:3e:30:40:55:10:79:a8:1c:35:48:46:de: 4a:21:3f:8d:2f:bc:49:b6:ab:82:83:bb:5a:16:12: 50:35:e2:63:83:57:31:41:30:9b:41:01:01:33:c5: 97:c0:90:3a:fd:53:25:76:17:33:a1:2b:9e:65:85: 66:00:08:5d:b8:e6:c1:ac:fd:0d:06:2a:2b:37:2a: 73:b7:30:fc:37:40:b4:36:c3:d6:90:94:b8:91:9a: d2:87:b6:2f:97:8e:68:69:d7:97:71:7b:b1:4a:29: 40:bc:86:90:58:17:e1:26:bc:51:e9:e7:e8:e9:ce: 77:a0:e8:d8:8a:49:c7:d8:94:4b:ed:53:1d:93:b3: 33:28:91:ab:d2:bf:ba:21:c5:74:7e:7c:18:c9:95: 78:a1:3e:cd:50:18:68:6a:4f:dc:04:a0:af:7d:a2: 7e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:56:1E:F2:5A:E4:97:C9:A8:E7:97:10:BF:6D:3E:AE:BC:1C:CC:79 X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:0a:70:73:1d:b0:34:8f:1a:d5:0b:34:1e:63:64:f6:c1:ea: 29:7f:f6:66:6e:9f:e6:7d:71:81:90:bc:bb:f0:dc:54:e8:fd: fa:8a:f5:9f:79:d9:62:be:68:97:7b:98:75:73:b2:58:20:af: bb:60:19:02:f2:f7:90:94:96:77:fb:c9:53:12:68:59:a7:96: aa:4a:36:30:9a:8d:38:ad:c4:f0:c1:55:98:a9:cb:63:40:f0: 81:0f:51:43:48:36:24:f9:be:a6:13:53:03:07:73:6c:3b:ec: 3f:ca:0e:e9:92:ed:97:5f:f2:2d:2a:36:01:f0:5d:0e:80:d6: a8:e2:c7:a0:55:ba:86:08:2d:49:f1:32:91:16:1d:ba:75:01: 80:9e:17:2a:f2:94:5e:0e:14:ff:f2:b6:73:36:48:41:22:f7: a8:99:02:45:18:e6:fa:fa:ed:2a:f7:e3:d0:ae:47:f2:b0:72: e7:7f:ea:45:49:21:00:eb:2a:8f:5a:15:8a:68:be:ad:5b:36: 14:de:51:64:16:15:10:7d:29:35:da:60:27:e9:04:57:af:ec: 65:12:19:ea:d7:e2:86:26:e2:69:c1:82:24:14:cd:bd:84:a0: ad:be:94:17:ba:90:d8:67:77:93:ea:77:05:9c:0c:9a:c5:7f: b0:ed:74:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjQwNDIyMjI1MDE5WhcNMjQwNDI5MjI1MDE5WjAYMRYwFAYD VQQDEw02NjI2ZTlhYi02NDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0BbOimnqq48e9ZsqNTpJUfUun3wJs1RgaIS6chTdTMawsTVcHAYCyH1coAg bySnSZ35ETHLM01sYvkV7cmdG3taovxYkjzuZxubRQvgAd7DnMhs2d/sTeiL5jg+ MEBVEHmoHDVIRt5KIT+NL7xJtquCg7taFhJQNeJjg1cxQTCbQQEBM8WXwJA6/VMl dhczoSueZYVmAAhduObBrP0NBiorNypztzD8N0C0NsPWkJS4kZrSh7Yvl45oadeX cXuxSilAvIaQWBfhJrxR6efo6c53oOjYiknH2JRL7VMdk7MzKJGr0r+6IcV0fnwY yZV4oT7NUBhoak/cBKCvfaJ+/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBWHvJa 5JfJqOeXEL9tPq68HMx5MB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjUzRC84NkIwRDczRUY3MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9w VHN0RGt4aEhweWlxem9MVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxCnBzHbA0jxrVCzQeY2T2weopf/Zmbp/mfXGBkLy78NxU6P36ivWf edlivmiXe5h1c7JYIK+7YBkC8veQlJZ3+8lTEmhZp5aqSjYwmo04rcTwwVWYqctj QPCBD1FDSDYk+b6mE1MDB3NsO+w/yg7pku2XX/ItKjYB8F0OgNao4segVbqGCC1J 8TKRFh26dQGAnhcq8pReDhT/8rZzNkhBIveomQJFGOb6+u0q9+PQrkfysHLnf+pF SSEA6yqPWhWKaL6tWzYU3lFkFhUQfSk12mAn6QRXr+xlEhnq1+KGJuJpwYIkFM29 hKCtvpQXupDYZ3eT6ncFnAyaxX+w7XT5 -----END CERTIFICATE-----Generated at Tue Apr 23 18:33:38 2024 by rpki-client on console-fra.rpki-client.org