$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: R+AFL7KwH7C41UZvfCddyDOeSGsXOjrwrOSP/3BDslU= Subject key identifier: 8C:CB:60:B3:51:DF:B4:74:61:9A:DA:C2:34:51:98:DD:3B:2C:2F:A3 Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 0715 Signing time: Tue 24 Mar 2026 21:40:10 +0000 Manifest this update: Tue 24 Mar 2026 21:40:10 +0000 Manifest next update: Tue 31 Mar 2026 21:40:10 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: /5NsXH3O/JdOgX70ZUgSnFMNirTJxqL/yU5xoNCe88g=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: ZMWp3dWY1CbXEe6G5LscKnLOBbYifcrQfdwprxXyho4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Mar 24 21:40:10 2026 GMT Not After : Mar 31 21:40:10 2026 GMT Subject: CN=69c304ba-9f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:dc:ee:4c:8f:bf:a8:7f:eb:42:e2:2e:e5:74: 06:b7:cb:4e:c5:f3:b0:d6:5e:df:6e:41:a7:c2:03: 7d:15:30:48:b2:bc:53:47:cc:56:a2:69:95:8d:3b: 82:47:c2:b6:e9:5d:36:9b:31:ad:cb:8f:a7:7b:e1: 80:cc:42:b2:17:da:bd:fd:18:31:c6:a0:5b:cb:6b: 1e:05:fc:53:5a:67:95:9d:54:bb:35:43:6b:c1:48: d3:a5:fa:29:e8:d0:6f:e0:84:59:39:cd:60:32:de: 80:4b:ff:d8:63:77:55:4c:59:eb:9b:90:5b:95:3d: 3c:3a:f8:9c:a8:ed:b9:89:61:93:cb:1a:64:9f:0b: f9:26:67:56:59:2a:a4:55:16:6e:00:32:73:83:de: 1a:20:e2:1e:39:b3:fe:1a:54:38:b6:cf:32:d1:63: 4d:60:62:4e:77:8e:f0:b6:c8:7b:81:7f:25:b3:04: 03:78:5e:5d:c1:af:8b:a1:ec:91:f5:fb:ee:7a:4a: 81:01:c2:40:97:08:ae:f6:aa:8b:1c:f9:c3:cc:3d: 75:d8:8b:fb:be:ea:50:88:96:0b:ea:60:f3:54:19: 78:98:54:d8:be:df:29:70:fc:27:66:c9:e7:63:36: ab:d2:4b:98:77:58:59:ea:68:f2:b0:7d:2d:66:8e: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CB:60:B3:51:DF:B4:74:61:9A:DA:C2:34:51:98:DD:3B:2C:2F:A3 X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:53:a2:fa:5d:42:1d:77:6a:8f:52:be:ad:ce:f7:fc:04:cf: 43:dc:f6:fe:1d:ff:eb:c1:dc:9e:5f:03:ea:d3:2f:78:97:dd: c7:90:73:38:02:e5:d7:6b:fd:1c:db:d8:d8:17:8e:6f:db:45: 8a:87:ef:4f:21:ed:57:c0:4e:28:86:b2:22:db:42:b8:10:57: 51:61:85:4e:1d:32:10:58:03:11:46:b4:68:bc:ff:28:4f:69: a6:b0:2d:e5:08:23:bd:b7:47:48:29:52:d2:db:d4:89:9c:32: 79:06:70:18:a4:86:d4:ce:86:68:2b:cd:3d:c0:16:aa:47:e3: 91:13:83:ab:28:df:57:6e:07:ea:20:f3:23:ba:59:bc:69:17: c2:00:42:f1:2a:a0:6e:60:8f:db:f8:e5:ff:ce:8a:c2:ba:06: e0:c5:8c:74:cc:fa:d8:15:a7:54:51:14:73:2a:21:67:58:32: ff:23:b7:bc:8b:2c:b0:cc:c3:95:bc:9f:46:49:dc:84:e8:7c: dc:63:79:3c:54:1f:02:ca:4f:6a:55:7c:3d:4e:81:bf:bb:bf: 7c:3a:47:31:36:70:58:3a:2b:20:03:9b:d9:b1:da:71:71:42: 75:7b:ce:38:2a:4c:a8:f9:4e:41:0b:28:3f:96:78:6b:1a:58: 8c:79:01:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjYwMzI0MjE0MDEwWhcNMjYwMzMxMjE0MDEwWjAYMRYwFAYD VQQDEw02OWMzMDRiYS05Zjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9NzuTI+/qH/rQuIu5XQGt8tOxfOw1l7fbkGnwgN9FTBIsrxTR8xWommVjTuC R8K26V02mzGty4+ne+GAzEKyF9q9/RgxxqBby2seBfxTWmeVnVS7NUNrwUjTpfop 6NBv4IRZOc1gMt6AS//YY3dVTFnrm5BblT08OvicqO25iWGTyxpknwv5JmdWWSqk VRZuADJzg94aIOIeObP+GlQ4ts8y0WNNYGJOd47wtsh7gX8lswQDeF5dwa+LoeyR 9fvuekqBAcJAlwiu9qqLHPnDzD112Iv7vupQiJYL6mDzVBl4mFTYvt8pcPwnZsnn Yzar0kuYd1hZ6mjysH0tZo7Q0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIzLYLNR 37R0YZrawjRRmN07LC+jMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAW1Oi+l1CHXdqj1K+rc73/ATPQ9z2/h3/68Hcnl8D6tMveJfdx5BzOALl12v9 HNvY2BeOb9tFiofvTyHtV8BOKIayIttCuBBXUWGFTh0yEFgDEUa0aLz/KE9pprAt 5QgjvbdHSClS0tvUiZwyeQZwGKSG1M6GaCvNPcAWqkfjkRODqyjfV24H6iDzI7pZ vGkXwgBC8SqgbmCP2/jl/86KwroG4MWMdMz62BWnVFEUcyohZ1gy/yO3vIsssMzD lbyfRknchOh83GN5PFQfAspPalV8PU6Bv7u/fDpHMTZwWDorIAOb2bHacXFCdXvO OCpMqPlOQQsoP5Z4axpYjHkBlw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:04:21 2026 by rpki-client