$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: isxX34jruGIKHAJf8Ke5JjJ+Bb/tukt4v/Q8L1tT77c= Subject key identifier: EA:FD:2A:6C:C5:08:C2:7E:82:96:55:7C:D1:AA:2A:3C:A1:1A:55:83 Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 0697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 068C Signing time: Wed 02 Jul 2025 22:37:35 +0000 Manifest this update: Wed 02 Jul 2025 22:37:34 +0000 Manifest next update: Wed 09 Jul 2025 22:37:34 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: GiuvZEn+/G92iM+jopz/gQJuaWBONnC5KcejyUR61TA=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: hdcM24QfcZM6XSytMTfe6jwtskbdb02rkwvBVCKn3ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Jul 2 22:37:34 2025 GMT Not After : Jul 9 22:37:34 2025 GMT Subject: CN=6865b4ae-5a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7b:34:c6:a1:2b:8e:5e:80:a3:f2:1e:b0:7c: 1c:b8:5c:fd:d7:f6:bc:be:be:6f:4c:57:a0:7a:98: e1:22:79:95:cd:cb:32:9d:dc:ed:a9:d2:ee:97:d7: 5a:87:d1:a5:47:d1:77:54:80:e4:8f:9e:35:73:f7: e3:eb:7d:6b:e4:b4:79:b4:4f:8e:51:c3:79:5a:05: 25:8e:a9:11:3b:4a:6c:e9:db:ab:13:da:9a:e1:bb: 0f:50:c7:16:22:ca:c2:ae:40:55:8a:ba:f0:be:ed: 5c:9e:eb:73:40:cd:96:28:c0:ce:f9:3c:46:4f:21: 7a:af:28:48:42:d7:1d:de:a9:c2:f3:96:d4:ac:2a: a2:bc:24:0c:3d:a8:7d:0c:e4:f7:73:42:7e:c2:82: 4b:05:e2:0c:a1:29:01:ae:3c:14:63:73:a3:ad:3f: e0:c3:fa:d4:e2:83:e4:c3:04:ab:3a:be:7a:7d:db: ea:ab:53:92:5f:14:1c:0f:e4:2e:7c:29:55:45:32: bc:86:c9:9f:3d:61:49:c3:ff:9f:58:a3:a2:e8:fa: e1:c6:16:a0:94:b3:b7:79:8f:e7:19:34:73:cf:6b: cd:70:7a:78:04:c9:e7:a7:84:a3:4e:37:25:a6:bf: c8:c4:41:23:ff:72:0f:aa:13:a6:3c:ef:48:47:8c: 1c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FD:2A:6C:C5:08:C2:7E:82:96:55:7C:D1:AA:2A:3C:A1:1A:55:83 X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:96:d9:0d:40:fd:59:a5:df:87:bc:3b:6c:98:6b:f6:f8:0f: c6:e0:a1:38:18:1b:10:d7:64:d3:94:ec:b7:46:7d:fa:bf:d5: 8b:a0:d4:ba:d8:13:d0:fd:b7:5b:77:db:87:ba:cc:dc:78:3f: 7e:92:0d:17:7f:78:d4:59:a6:fa:a0:a6:ea:da:61:3c:a0:cf: b4:92:84:99:74:94:6c:8d:1e:05:b9:f8:4a:f6:68:df:f6:4d: 1a:cf:aa:f3:d0:e6:0e:60:3c:fa:7c:6e:a4:68:aa:d2:67:8c: c2:cd:60:46:7a:99:9d:8f:14:4d:de:c9:57:8e:99:23:49:83: 35:14:b4:51:0f:c9:3f:a7:75:6f:bc:80:a8:07:60:5d:4f:c0: 81:3c:f7:33:51:a2:e6:dd:10:7e:b8:d6:0f:82:35:c2:be:36: 20:e9:d5:9e:a6:3d:05:97:a5:37:91:1d:24:af:fc:6d:2c:60: d5:6a:8b:2a:c3:36:d0:c3:94:e9:57:3b:46:61:89:34:ea:eb: e3:cd:35:27:3a:4a:66:0f:e5:6d:57:0a:81:fe:3c:82:72:30: aa:0d:db:68:cb:d9:5e:2a:0c:dc:9a:d3:18:4c:0b:fd:c4:a8: 75:33:ae:b0:cc:79:cc:60:fb:18:05:f3:72:d3:e4:26:ef:6d: f7:0a:c3:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUwNzAyMjIzNzM0WhcNMjUwNzA5MjIzNzM0WjAYMRYwFAYD VQQDEw02ODY1YjRhZS01YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Hs0xqErjl6Ao/IesHwcuFz91/a8vr5vTFegepjhInmVzcsyndztqdLul9da h9GlR9F3VIDkj541c/fj631r5LR5tE+OUcN5WgUljqkRO0ps6durE9qa4bsPUMcW IsrCrkBVirrwvu1cnutzQM2WKMDO+TxGTyF6ryhIQtcd3qnC85bUrCqivCQMPah9 DOT3c0J+woJLBeIMoSkBrjwUY3OjrT/gw/rU4oPkwwSrOr56fdvqq1OSXxQcD+Qu fClVRTK8hsmfPWFJw/+fWKOi6PrhxhaglLO3eY/nGTRzz2vNcHp4BMnnp4SjTjcl pr/IxEEj/3IPqhOmPO9IR4wcIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr9KmzF CMJ+gpZVfNGqKjyhGlWDMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvltkNQP1Zpd+HvDtsmGv2+A/G4KE4GBsQ12TTlOy3Rn36v9WLoNS6 2BPQ/bdbd9uHuszceD9+kg0Xf3jUWab6oKbq2mE8oM+0koSZdJRsjR4FufhK9mjf 9k0az6rz0OYOYDz6fG6kaKrSZ4zCzWBGepmdjxRN3slXjpkjSYM1FLRRD8k/p3Vv vICoB2BdT8CBPPczUaLm3RB+uNYPgjXCvjYg6dWepj0Fl6U3kR0kr/xtLGDVaosq wzbQw5TpVztGYYk06uvjzTUnOkpmD+VtVwqB/jyCcjCqDdtoy9leKgzcmtMYTAv9 xKh1M66wzHnMYPsYBfNy0+Qm7233CsPw -----END CERTIFICATE-----Generated at Fri Jul 4 22:07:15 2025 by rpki-client