$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: jHn1Ckv5cKesj0UfackBVLRpRXeT9RF6JXbHGjSS7ZI= Subject key identifier: 5B:D1:0F:E9:0A:D6:03:C8:25:4C:7A:08:C1:F7:BA:80:A9:B7:13:DF Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 067A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 0672 Signing time: Fri 30 May 2025 22:35:42 +0000 Manifest this update: Fri 30 May 2025 22:35:42 +0000 Manifest next update: Fri 06 Jun 2025 22:35:42 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: 4OsE67m64LwKt8O7pr5OgBhRUlWLy5os6t8cRSvg7X4=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: 5uwAAuHuzaTu99sHgwI0qpthIYE4xdW3P3WhoMyY4FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: May 30 22:35:42 2025 GMT Not After : Jun 6 22:35:42 2025 GMT Subject: CN=683a32be-71c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:87:75:cf:b4:22:1a:37:d0:6f:7b:e4:c6:b5: ca:be:d0:68:a3:52:5c:4f:de:bf:c5:0e:09:3f:38: d8:54:83:a9:20:cd:f9:69:b8:1f:7b:89:cf:c0:fd: 08:c9:13:b2:58:62:94:fe:df:83:63:8d:e1:39:07: d8:7e:1a:1e:e6:04:0d:c5:d4:72:1d:3c:db:13:49: 56:5f:3e:78:48:b3:26:ab:4b:0d:1b:22:40:f0:9c: 5c:55:46:dc:a6:2d:85:65:02:13:5b:a3:81:5f:61: ce:27:a0:bf:b0:8d:81:c7:3f:e6:14:a0:57:76:73: 7e:68:0d:5a:cf:94:f5:a9:de:93:95:77:0d:07:ff: a6:f8:1d:f4:6f:80:00:ad:a3:de:ed:17:00:a5:f9: e3:67:83:97:a3:10:35:8f:6b:57:56:e8:79:63:3a: a7:f1:d1:d0:c0:51:02:b9:9a:31:d4:06:8b:a7:75: bd:f4:11:65:c9:01:e5:dd:0c:9a:63:e8:c8:03:5f: f0:35:a5:9b:ef:78:20:1e:bb:11:7c:97:e5:75:6a: 81:51:da:aa:97:22:16:29:13:d1:62:77:3d:36:60: 84:35:c9:a6:bd:25:fe:97:7b:d1:a6:20:f0:78:ed: b6:fe:b6:cf:44:89:bb:e6:1e:e3:98:36:a6:a7:10: 78:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D1:0F:E9:0A:D6:03:C8:25:4C:7A:08:C1:F7:BA:80:A9:B7:13:DF X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:cc:80:1f:c8:cb:f0:1a:90:46:fc:81:ab:42:a2:49:d9:66: 71:41:c6:6f:d3:b5:60:54:a9:e8:cd:d2:82:86:e2:c3:50:7c: f7:31:15:57:08:08:52:9c:71:81:62:e3:10:2f:34:5f:ea:92: b3:69:07:42:84:a9:a5:e3:7b:ff:be:1f:c6:44:9b:14:7f:ee: 57:20:a3:ad:e0:15:e3:85:af:a1:83:32:48:4b:c8:89:2b:a3: d7:b5:7e:99:ba:04:1b:b2:d1:75:d1:ac:9e:e8:ec:d0:1a:83: 90:f5:76:4a:77:fd:b0:9d:61:88:ea:87:eb:a5:8d:39:35:37: 26:22:97:f8:6a:95:f9:4f:d6:25:30:a2:a9:95:18:8c:4d:e0: 88:7d:5a:8d:b3:b1:55:85:85:20:d9:21:a6:a5:8f:1d:7b:ad: 98:d9:23:2f:b0:17:8b:0a:4c:86:e4:59:88:e0:f9:ed:4a:6e: ab:5f:1f:b5:33:26:b3:1f:86:c2:a0:78:ab:ed:40:09:43:45: 95:a5:a1:25:a3:8e:d6:83:6f:da:fc:14:d9:36:a7:9d:da:88: 2d:24:67:4c:00:1a:96:23:9f:a7:73:32:95:aa:e9:1a:f0:c0: 44:87:0e:20:92:f2:17:ba:5d:ec:bc:42:b1:25:9f:65:c9:8a: 00:e7:00:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUwNTMwMjIzNTQyWhcNMjUwNjA2MjIzNTQyWjAYMRYwFAYD VQQDEw02ODNhMzJiZS03MWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtod1z7QiGjfQb3vkxrXKvtBoo1JcT96/xQ4JPzjYVIOpIM35abgfe4nPwP0I yROyWGKU/t+DY43hOQfYfhoe5gQNxdRyHTzbE0lWXz54SLMmq0sNGyJA8JxcVUbc pi2FZQITW6OBX2HOJ6C/sI2Bxz/mFKBXdnN+aA1az5T1qd6TlXcNB/+m+B30b4AA raPe7RcApfnjZ4OXoxA1j2tXVuh5Yzqn8dHQwFECuZox1AaLp3W99BFlyQHl3Qya Y+jIA1/wNaWb73ggHrsRfJfldWqBUdqqlyIWKRPRYnc9NmCENcmmvSX+l3vRpiDw eO22/rbPRIm75h7jmDampxB4DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvRD+kK 1gPIJUx6CMH3uoCptxPfMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYzIAfyMvwGpBG/IGrQqJJ2WZxQcZv07VgVKnozdKChuLDUHz3MRVX CAhSnHGBYuMQLzRf6pKzaQdChKml43v/vh/GRJsUf+5XIKOt4BXjha+hgzJIS8iJ K6PXtX6ZugQbstF10aye6OzQGoOQ9XZKd/2wnWGI6ofrpY05NTcmIpf4apX5T9Yl MKKplRiMTeCIfVqNs7FVhYUg2SGmpY8de62Y2SMvsBeLCkyG5FmI4PntSm6rXx+1 MyazH4bCoHir7UAJQ0WVpaElo47Wg2/a/BTZNqed2ogtJGdMABqWI5+nczKVquka 8MBEhw4gkvIXul3svEKxJZ9lyYoA5wCA -----END CERTIFICATE-----Generated at Sat May 31 17:10:19 2025 by rpki-client