$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: MFaS2m60L+utz80ehgHWKmzWrDtpTabs/OTM9cCn384= Subject key identifier: E9:14:0F:86:6E:8C:48:C9:86:A5:85:EB:6F:1D:8F:31:85:C3:C8:9E Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 05AF Signing time: Sun 19 May 2024 00:16:41 +0000 Manifest this update: Sun 19 May 2024 00:16:40 +0000 Manifest next update: Sun 26 May 2024 00:16:40 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: CGoYLsR9rYzhln5LqjkRkwZ7gGlb3pwWboE42w3o4Q8=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: uLtuthq5I8PYA89jgKPFmTpQlgHj5SeW2Vx5SB2XpPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: May 19 00:16:40 2024 GMT Not After : May 26 00:16:40 2024 GMT Subject: CN=664944e8-6adc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d8:56:12:76:83:0e:26:69:6b:05:55:59:f8: 61:1f:b2:6d:d9:24:02:ac:91:e2:b5:63:94:c9:e7: 43:77:1a:3b:a6:fa:e7:ef:f7:3f:4a:cb:58:b9:88: 77:81:b1:f6:1e:33:20:a7:3a:3f:02:6b:33:73:3a: 81:5a:ef:82:5e:87:85:4a:c7:e5:1d:25:33:a0:90: 0c:38:4b:6e:4e:90:11:e6:a9:1e:76:45:1a:ef:46: 14:e9:1a:eb:48:a0:88:63:ca:75:1f:26:c4:a6:eb: 5c:c1:49:6b:d4:f6:66:18:d3:6d:ec:3e:d3:e4:37: 3c:b9:bf:92:04:55:72:c1:0b:55:80:85:4b:ee:84: a3:78:e1:ed:a5:6a:2f:61:6d:bf:23:80:6c:bb:69: 10:6b:be:cc:93:64:2b:6d:29:66:74:c0:0f:78:56: 64:e4:d3:c5:29:21:15:11:22:56:fd:64:45:ee:51: 7e:32:40:2d:e3:c1:de:64:19:ab:b4:0f:37:1c:e0: 3f:84:10:dc:f5:b8:04:f3:5f:31:4f:86:5f:c6:ba: d4:a6:9e:54:1a:dc:f3:ba:de:93:95:c0:95:e5:79: d7:ed:e5:08:2d:f5:eb:9d:36:f2:e6:57:4d:2e:11: 3c:30:6f:f1:0a:a3:f6:5f:6e:f4:ee:56:ec:a5:8c: cb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:14:0F:86:6E:8C:48:C9:86:A5:85:EB:6F:1D:8F:31:85:C3:C8:9E X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:be:06:0c:86:80:a7:9b:f1:d4:fa:77:50:af:f2:41:e7:48: 9b:2b:cb:c0:1b:63:2c:9e:64:e4:87:d6:1b:d7:30:e5:27:9c: d3:0d:0a:96:41:b5:80:b3:e6:68:16:e9:4f:9b:da:61:09:03: 7b:32:d8:ff:46:2d:b0:2a:2a:31:7d:a5:2b:7a:74:91:81:db: 15:a6:7d:3f:a1:3a:03:4f:ea:05:21:d0:13:84:88:73:17:16: 40:96:d8:5e:53:16:ac:c6:ad:ac:3b:3f:e9:e1:1e:9e:5e:72: a7:85:5c:82:ea:0c:50:71:b0:bf:f6:e6:d3:65:a5:68:33:89: 78:d8:6a:27:10:9c:60:f8:82:49:bf:33:1f:e5:7c:c9:9e:bf: 40:b4:3e:e1:7f:ee:e7:b1:26:a9:45:a8:65:c2:c9:38:71:f6: 81:b7:bc:07:03:d8:3a:17:95:d9:59:b3:21:65:af:39:f2:34: 24:dc:6a:be:73:09:ed:77:2c:5f:a4:d2:3a:80:06:ae:22:87: e0:79:a8:00:0c:bf:72:8b:da:4f:63:c5:30:cf:4a:92:92:a7: c3:89:02:41:2f:b1:fd:a6:91:60:3c:17:03:28:fd:e1:46:e1: 79:64:f6:90:f2:b2:28:4e:b2:a2:39:eb:63:b8:74:ff:7e:4b: 79:05:99:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjQwNTE5MDAxNjQwWhcNMjQwNTI2MDAxNjQwWjAYMRYwFAYD VQQDEw02NjQ5NDRlOC02YWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NhWEnaDDiZpawVVWfhhH7Jt2SQCrJHitWOUyedDdxo7pvrn7/c/SstYuYh3 gbH2HjMgpzo/AmszczqBWu+CXoeFSsflHSUzoJAMOEtuTpAR5qkedkUa70YU6Rrr SKCIY8p1HybEputcwUlr1PZmGNNt7D7T5Dc8ub+SBFVywQtVgIVL7oSjeOHtpWov YW2/I4Bsu2kQa77Mk2QrbSlmdMAPeFZk5NPFKSEVESJW/WRF7lF+MkAt48HeZBmr tA83HOA/hBDc9bgE818xT4ZfxrrUpp5UGtzzut6TlcCV5XnX7eUILfXrnTby5ldN LhE8MG/xCqP2X2707lbspYzLNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkUD4Zu jEjJhqWF628djzGFw8ieMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFvgYMhoCnm/HU+ndQr/JB50ibK8vAG2MsnmTkh9Yb1zDlJ5zTDQqW QbWAs+ZoFulPm9phCQN7Mtj/Ri2wKioxfaUrenSRgdsVpn0/oToDT+oFIdAThIhz FxZAltheUxasxq2sOz/p4R6eXnKnhVyC6gxQcbC/9ubTZaVoM4l42GonEJxg+IJJ vzMf5XzJnr9AtD7hf+7nsSapRahlwsk4cfaBt7wHA9g6F5XZWbMhZa858jQk3Gq+ cwntdyxfpNI6gAauIofgeagADL9yi9pPY8Uwz0qSkqfDiQJBL7H9ppFgPBcDKP3h RuF5ZPaQ8rIoTrKiOetjuHT/fkt5BZm2 -----END CERTIFICATE-----Generated at Sun May 19 00:59:44 2024 by rpki-client on console-fra.rpki-client.org