$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: EP76TCrbBRXYvg++E76mVhtG3OTkcdmV6aVXP2r/Xng= Subject key identifier: 15:4D:F7:5A:7B:70:43:39:D1:C7:EF:3C:D4:66:D1:6F:96:14:D0:3E Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 0672 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 066A Signing time: Mon 12 May 2025 22:11:37 +0000 Manifest this update: Mon 12 May 2025 22:11:36 +0000 Manifest next update: Mon 19 May 2025 22:11:36 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: VCsaTFuLecn9B9WmCwFyIly3xb5732aUMeJU/GirU00=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: 5uwAAuHuzaTu99sHgwI0qpthIYE4xdW3P3WhoMyY4FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: May 12 22:11:36 2025 GMT Not After : May 19 22:11:36 2025 GMT Subject: CN=68227219-ce44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8b:72:d8:a1:58:96:54:94:3f:71:5f:03:71: 11:ed:8a:d9:1e:c3:d5:6a:fe:16:c0:2b:73:e5:e2: 3f:89:3c:42:2e:d9:cf:69:03:66:26:90:62:a0:cb: da:32:c6:69:74:4c:a3:c2:d8:7d:78:93:bb:33:b2: a1:0a:ea:5c:67:e6:50:eb:df:8b:8c:a4:bf:71:fa: da:79:f5:bf:53:3f:8a:01:7b:39:39:43:09:6a:71: 21:3b:07:09:a0:86:c5:b6:44:f3:ef:23:bb:b4:13: e6:41:99:75:6e:8a:af:32:c9:5a:89:ab:1e:1e:ba: f5:5a:9e:45:56:70:20:90:21:d1:28:ac:b2:56:e5: 16:e3:a5:e3:6d:62:d5:b1:e9:a2:10:9d:f9:02:57: a2:ea:3c:f7:a5:b7:58:20:82:0e:f0:e5:59:c3:f2: 28:15:40:57:89:6b:58:e5:f2:ae:d4:38:0f:1f:19: cf:b9:52:d9:74:19:93:45:7c:35:2d:75:59:3c:da: 3e:05:fe:fd:24:e7:a6:14:30:ec:ea:ce:40:9e:86: 41:7c:ab:3e:dc:2b:98:b4:ec:b6:6d:38:47:1f:db: a0:f6:3b:24:30:db:73:ea:d7:5a:cf:0b:c3:6a:92: bc:e3:f6:dd:f4:05:31:92:5a:b2:8a:c7:a2:e9:18: 35:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4D:F7:5A:7B:70:43:39:D1:C7:EF:3C:D4:66:D1:6F:96:14:D0:3E X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b1:22:54:d6:69:95:a3:9c:be:ca:a0:76:8b:f2:2c:fa:2b: 18:06:f0:35:fb:26:26:eb:01:9e:92:1a:69:d0:51:ea:b2:98: 93:24:06:48:49:22:a1:91:bb:73:e6:33:f5:c8:74:43:8f:31: 38:8f:df:c9:01:bd:75:97:44:f7:a3:6e:01:d7:91:d5:91:cb: 0c:3e:d9:1a:91:ff:f3:b3:c7:5f:d4:5b:3c:41:f4:97:9a:a9: 5f:17:46:70:6e:d9:f1:00:ad:5f:f0:13:01:25:1b:19:b7:d9: 8d:c2:05:a3:07:cf:38:c1:d8:ba:af:0e:21:dd:c1:d8:f2:59: 88:e2:18:d4:27:1e:08:74:2c:6b:38:68:50:41:03:64:6d:34: 1c:06:b7:dd:f4:21:30:30:97:cf:b2:ff:25:b4:5c:6c:dd:b7: 43:f5:6e:3c:46:24:95:3b:40:37:3e:a7:07:ea:04:cf:68:26: 73:69:ef:7d:54:0f:e6:f3:a7:cb:c6:43:ae:59:0c:e6:6c:b8: 05:fb:3e:73:33:d2:8b:b3:0e:a7:88:1f:12:2a:ae:df:4a:30: 33:8b:1c:9b:88:f0:7a:f9:4a:09:48:5b:1c:6d:80:fe:31:e9: 41:ac:7b:fc:66:1e:46:b3:2e:81:bf:ad:93:1b:27:e8:2f:d0: 26:e9:b6:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUwNTEyMjIxMTM2WhcNMjUwNTE5MjIxMTM2WjAYMRYwFAYD VQQDEw02ODIyNzIxOS1jZTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYty2KFYllSUP3FfA3ER7YrZHsPVav4WwCtz5eI/iTxCLtnPaQNmJpBioMva MsZpdEyjwth9eJO7M7KhCupcZ+ZQ69+LjKS/cfraefW/Uz+KAXs5OUMJanEhOwcJ oIbFtkTz7yO7tBPmQZl1boqvMslaiaseHrr1Wp5FVnAgkCHRKKyyVuUW46XjbWLV semiEJ35Alei6jz3pbdYIIIO8OVZw/IoFUBXiWtY5fKu1DgPHxnPuVLZdBmTRXw1 LXVZPNo+Bf79JOemFDDs6s5AnoZBfKs+3CuYtOy2bThHH9ug9jskMNtz6tdazwvD apK84/bd9AUxklqyisei6Rg1aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVN91p7 cEM50cfvPNRm0W+WFNA+MB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASsSJU1mmVo5y+yqB2i/Is+isYBvA1+yYm6wGekhpp0FHqspiTJAZI SSKhkbtz5jP1yHRDjzE4j9/JAb11l0T3o24B15HVkcsMPtkakf/zs8df1Fs8QfSX mqlfF0ZwbtnxAK1f8BMBJRsZt9mNwgWjB884wdi6rw4h3cHY8lmI4hjUJx4IdCxr OGhQQQNkbTQcBrfd9CEwMJfPsv8ltFxs3bdD9W48RiSVO0A3PqcH6gTPaCZzae99 VA/m86fLxkOuWQzmbLgF+z5zM9KLsw6niB8SKq7fSjAzixybiPB6+UoJSFscbYD+ MelBrHv8Zh5Gsy6Bv62TGyfoL9Am6bYD -----END CERTIFICATE-----Generated at Tue May 13 19:57:42 2025 by rpki-client