$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: jme6if0cuuTz+s1OZKb2KG47445Jp1AwJzgKUGTOkiA= Subject key identifier: 93:9C:4E:20:9F:01:A0:DE:B6:FD:2E:5D:53:20:15:DE:2E:78:89:1B Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 0690 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 0685 Signing time: Wed 18 Jun 2025 22:11:09 +0000 Manifest this update: Wed 18 Jun 2025 22:11:09 +0000 Manifest next update: Wed 25 Jun 2025 22:11:09 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: cePkUGg0BIUfjfBr+8niGUm7NFmTBaQjjWM9iZdM03Y=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: hdcM24QfcZM6XSytMTfe6jwtskbdb02rkwvBVCKn3ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1680 (0x690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Jun 18 22:11:09 2025 GMT Not After : Jun 25 22:11:09 2025 GMT Subject: CN=6853397d-b5cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:25:e8:1e:ee:a6:c8:cd:bd:bd:a2:98:26: d6:43:27:5a:ee:11:8f:d6:37:65:b0:08:0c:aa:55: 8e:23:26:b1:ae:d8:dc:74:f5:75:d7:fd:27:8a:bf: af:3b:a4:e2:38:93:45:64:5f:56:9a:d9:39:62:cb: e6:37:c6:d8:95:0c:d3:ce:ee:49:f7:f4:25:9c:99: 38:8d:9c:8e:76:5f:19:4b:ca:7e:09:55:c2:9f:f2: f7:0d:e8:0f:83:f6:f6:9f:1d:6a:4b:cb:e0:11:06: 60:08:a3:41:e0:c9:6d:2d:72:54:67:70:fe:e3:95: 55:60:f5:99:0f:b4:d5:5b:b6:15:08:7a:9f:6b:77: de:df:1f:73:97:b3:df:11:e6:21:c2:d4:72:ce:21: 6f:93:6e:d5:db:1e:47:ad:07:c1:55:bd:91:9b:ae: 96:af:bc:0f:50:0f:44:c5:21:8e:87:18:27:0a:16: b8:31:14:f1:1c:6d:1b:cd:18:ce:99:38:cd:27:a2: d5:9c:de:23:b2:f9:e8:27:3a:a2:ad:82:f2:ad:5d: 65:ae:dc:c6:32:d2:80:4a:0f:b6:04:b6:5f:ec:a9: 5a:27:8f:68:ee:a3:68:32:e9:ad:5d:89:c8:df:62: b6:2e:ea:32:3e:8b:f0:6b:fd:24:51:f0:a4:fc:0c: 31:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:9C:4E:20:9F:01:A0:DE:B6:FD:2E:5D:53:20:15:DE:2E:78:89:1B X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:21:aa:61:a5:8d:6c:3a:bb:1a:6d:3e:dd:a5:84:4b:d4:97: 82:52:d9:36:79:a5:de:d6:f3:34:5b:d6:ee:98:28:e7:e3:4c: de:00:05:98:8e:ec:c7:3c:2f:d5:f4:67:5e:0c:d1:48:c7:41: 7e:1f:28:cf:c9:d0:cf:b6:0b:3b:54:04:fa:fd:43:70:31:95: b8:5a:28:67:e3:bd:ea:44:b5:05:10:6b:a2:ec:39:2d:a2:dd: 8c:f3:bd:90:9e:39:bc:d3:b5:0c:5d:0a:30:bc:c0:96:28:17: db:40:dd:a0:ba:10:08:38:75:66:9a:a6:82:1b:b1:1c:05:34: 68:ce:84:a8:c6:f6:9c:08:ce:3c:be:30:31:9d:8f:23:b2:0b: ea:63:56:6f:48:01:c3:7d:1c:bd:f6:dd:4d:3c:e6:82:2c:fe: e4:04:d8:a6:33:e9:38:81:ec:9a:f1:86:c8:32:3a:40:bd:fc: 4c:c5:f1:4e:ed:a3:b9:dd:43:27:87:a0:0e:54:b8:f9:4f:b5: 8b:f2:18:f3:c6:90:ec:e4:e6:03:e4:d5:84:53:ad:75:17:3c: 6d:22:2f:83:56:05:66:3d:92:3c:9e:39:3d:67:21:b4:b1:8d: 4f:6f:fe:f3:b2:3e:6a:84:13:61:78:f3:f9:b3:62:c7:94:a6: ba:72:62:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUwNjE4MjIxMTA5WhcNMjUwNjI1MjIxMTA5WjAYMRYwFAYD VQQDEw02ODUzMzk3ZC1iNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqAl6B7upsjNvb2imCbWQyda7hGP1jdlsAgMqlWOIyaxrtjcdPV11/0nir+v O6TiOJNFZF9Wmtk5YsvmN8bYlQzTzu5J9/QlnJk4jZyOdl8ZS8p+CVXCn/L3DegP g/b2nx1qS8vgEQZgCKNB4MltLXJUZ3D+45VVYPWZD7TVW7YVCHqfa3fe3x9zl7Pf EeYhwtRyziFvk27V2x5HrQfBVb2Rm66Wr7wPUA9ExSGOhxgnCha4MRTxHG0bzRjO mTjNJ6LVnN4jsvnoJzqirYLyrV1lrtzGMtKASg+2BLZf7KlaJ49o7qNoMumtXYnI 32K2LuoyPovwa/0kUfCk/AwxLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOcTiCf AaDetv0uXVMgFd4ueIkbMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+IaphpY1sOrsabT7dpYRL1JeCUtk2eaXe1vM0W9bumCjn40zeAAWY juzHPC/V9GdeDNFIx0F+HyjPydDPtgs7VAT6/UNwMZW4Wihn473qRLUFEGui7Dkt ot2M872Qnjm807UMXQowvMCWKBfbQN2guhAIOHVmmqaCG7EcBTRozoSoxvacCM48 vjAxnY8jsgvqY1ZvSAHDfRy99t1NPOaCLP7kBNimM+k4geya8YbIMjpAvfxMxfFO 7aO53UMnh6AOVLj5T7WL8hjzxpDs5OYD5NWEU611FzxtIi+DVgVmPZI8njk9ZyG0 sY1Pb/7zsj5qhBNhePP5s2LHlKa6cmLv -----END CERTIFICATE-----Generated at Thu Jun 19 08:41:33 2025 by rpki-client