$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: TCXoSPC9+5YxpPOYXYCswdg4Vw1LG3kc/bEwaBy2b/c= Subject key identifier: 91:3E:DA:C4:EF:46:A6:BD:E8:89:78:73:84:89:0A:9D:61:9F:57:1B Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 06C3 Signing time: Sat 18 Oct 2025 23:38:19 +0000 Manifest this update: Sat 18 Oct 2025 23:38:18 +0000 Manifest next update: Sat 25 Oct 2025 23:38:18 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: eu/MMoyqRKBG72lqrkqdFP5FoQq+/1jjk4itwq9k8SM=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: hdcM24QfcZM6XSytMTfe6jwtskbdb02rkwvBVCKn3ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Oct 18 23:38:18 2025 GMT Not After : Oct 25 23:38:18 2025 GMT Subject: CN=68f424ea-08cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:57:b5:b5:c5:eb:58:20:7a:3a:91:d9:fc:ca: 4e:1a:53:f5:d8:d7:4c:98:fb:4e:99:bc:e8:7b:7a: 41:b2:e9:98:0e:15:c9:34:c7:8a:d8:80:ee:67:e3: 0d:6c:36:a4:4d:b5:8a:83:9c:0a:2d:34:06:d0:e0: 6d:77:63:a1:6c:78:d1:60:c9:45:5d:1f:6d:ba:16: f4:0f:34:32:a1:2c:4b:42:02:17:d1:04:c0:df:9a: d9:02:e8:81:fc:27:6e:4d:be:f3:2d:7c:a8:54:0a: 6d:0d:4c:fd:86:6a:c7:d1:eb:7a:4b:cf:00:64:63: 30:25:72:64:24:03:5e:49:dd:d0:72:2c:20:b8:78: cf:3b:ff:86:35:0a:39:b8:cd:b2:76:bc:dd:54:9f: ea:04:58:81:ae:dd:1e:3e:0f:48:89:ec:1b:97:f8: fc:dd:73:c9:00:f4:ef:99:d4:0c:51:30:f4:31:df: 27:54:2f:0d:31:0f:11:7e:10:45:ea:14:89:46:4a: dc:ce:8e:26:01:fa:b1:91:2c:78:26:cc:ba:95:0f: ea:f8:4c:12:18:b9:1c:b1:03:25:6b:8b:70:68:03: d9:53:e3:f0:b2:0f:26:05:96:7d:d4:78:1e:15:65: 28:56:71:c9:fa:8a:e4:4d:b3:f8:23:a6:41:5d:61: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3E:DA:C4:EF:46:A6:BD:E8:89:78:73:84:89:0A:9D:61:9F:57:1B X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e9:19:4a:1f:e8:33:0b:5e:83:f2:ac:ce:5a:c0:b7:04:0e: 4b:9d:27:ce:ca:92:97:d1:a7:e7:d0:68:6c:cd:ce:08:34:d5: bf:86:87:4e:61:d1:0d:23:e7:cd:e5:f7:08:aa:b6:40:7e:14: a9:07:78:b9:9b:d7:c9:d9:7d:b6:50:94:b7:4c:1e:b4:22:88: 4a:40:a1:15:ad:8b:69:ca:86:d6:75:69:34:02:01:07:02:4e: 93:1c:5e:d5:07:11:80:14:5b:57:06:f6:4a:fe:61:07:3b:f3: 3e:61:0c:0d:c2:be:40:57:e7:fc:d8:34:16:4b:5f:29:4d:13: a4:85:b6:b9:d9:2e:fb:b7:eb:44:7e:d2:9b:d3:6b:18:5c:87: 0d:30:0a:32:e0:9e:fb:f1:42:cb:8c:81:32:04:4d:8a:ef:b0: 52:a2:43:7a:72:5c:c5:86:ad:28:60:f0:c3:e4:25:a0:6f:b3: 4e:c5:76:b0:25:9f:2b:9b:b3:e3:0e:94:09:68:9a:e3:58:c7: 51:8f:7e:d1:ad:6e:2b:64:67:d7:bb:cd:09:4c:0c:64:2d:1d: 81:bf:2b:92:89:d6:48:23:03:39:87:fe:12:e2:98:d8:10:bb: 7f:6a:8f:b7:51:13:02:d3:3b:f1:64:d0:f4:3f:35:18:86:ce: 90:4a:cd:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUxMDE4MjMzODE4WhcNMjUxMDI1MjMzODE4WjAYMRYwFAYD VQQDEw02OGY0MjRlYS0wOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21e1tcXrWCB6OpHZ/MpOGlP12NdMmPtOmbzoe3pBsumYDhXJNMeK2IDuZ+MN bDakTbWKg5wKLTQG0OBtd2OhbHjRYMlFXR9tuhb0DzQyoSxLQgIX0QTA35rZAuiB /CduTb7zLXyoVAptDUz9hmrH0et6S88AZGMwJXJkJANeSd3QciwguHjPO/+GNQo5 uM2ydrzdVJ/qBFiBrt0ePg9Iiewbl/j83XPJAPTvmdQMUTD0Md8nVC8NMQ8RfhBF 6hSJRkrczo4mAfqxkSx4Jsy6lQ/q+EwSGLkcsQMla4twaAPZU+Pwsg8mBZZ91Hge FWUoVnHJ+orkTbP4I6ZBXWG8xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE+2sTv Rqa96Il4c4SJCp1hn1cbMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB06RlKH+gzC16D8qzOWsC3BA5LnSfOypKX0afn0Ghszc4INNW/hodO YdENI+fN5fcIqrZAfhSpB3i5m9fJ2X22UJS3TB60IohKQKEVrYtpyobWdWk0AgEH Ak6THF7VBxGAFFtXBvZK/mEHO/M+YQwNwr5AV+f82DQWS18pTROkhba52S77t+tE ftKb02sYXIcNMAoy4J778ULLjIEyBE2K77BSokN6clzFhq0oYPDD5CWgb7NOxXaw JZ8rm7PjDpQJaJrjWMdRj37RrW4rZGfXu80JTAxkLR2BvyuSidZIIwM5h/4S4pjY ELt/ao+3URMC0zvxZND0PzUYhs6QSs3J -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:27 2025 by rpki-client