$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: qbfOUK55AuzEdfi9GTKooqWpNq+/Z5ZT5KK5GPY+h/g= Subject key identifier: DB:F8:69:B5:9C:A1:BB:0C:8F:C6:DF:B1:ED:98:FC:91:08:71:56:E6 Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 06D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 06CB Signing time: Tue 04 Nov 2025 22:13:35 +0000 Manifest this update: Tue 04 Nov 2025 22:13:34 +0000 Manifest next update: Tue 11 Nov 2025 22:13:34 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: DYEq7CAYm0pkgWdE0wudeg4qJBWtgiSj0B+d9/FYvuA=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: hdcM24QfcZM6XSytMTfe6jwtskbdb02rkwvBVCKn3ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:13:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Nov 4 22:13:34 2025 GMT Not After : Nov 11 22:13:34 2025 GMT Subject: CN=690a7a8f-cf55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:df:1a:ba:7a:de:98:db:f5:3b:a6:78:3e: fe:ec:bd:1c:11:3a:a1:5c:12:18:98:28:ae:22:06: 02:40:75:84:1f:78:c2:5a:37:7c:a1:5a:f0:00:ba: 5c:2e:61:7c:a3:6e:9b:d9:2a:86:f3:c1:ae:bd:39: 15:70:47:97:c6:b2:1b:eb:8a:c8:77:59:dd:99:f8: 6c:62:a9:b9:f7:94:fa:19:7e:de:9c:95:de:60:74: 97:7a:4a:87:10:d7:6a:3f:ac:14:cc:1f:45:c1:df: 7c:17:50:10:00:be:45:71:04:3e:ff:f4:57:e9:a8: af:9d:96:5a:8c:35:80:bc:24:cb:e1:cd:9a:5d:fb: 7c:17:06:9b:1d:18:e3:20:e8:0f:b9:55:b1:76:14: b9:99:91:ab:a3:cb:7c:32:2a:5c:cb:26:e8:e0:34: 10:7b:be:d3:fe:64:e1:9a:57:bb:a5:f4:e4:8b:fa: 45:f1:e7:2b:9b:e0:47:28:6d:11:63:dc:1e:7a:f0: 91:e9:54:87:92:37:8a:b2:fa:b3:7a:ea:ac:fa:38: f8:e8:8a:6f:21:e5:eb:5e:be:d8:d9:f3:11:c1:f4: d2:58:68:7d:28:5c:2f:6b:72:50:51:22:b0:84:69: 66:fb:13:c6:04:2f:e8:c3:75:07:2f:33:3d:c1:4a: 56:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F8:69:B5:9C:A1:BB:0C:8F:C6:DF:B1:ED:98:FC:91:08:71:56:E6 X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:f0:98:08:7d:bd:1a:70:1d:f8:5e:92:8b:06:5f:c8:97:7f: e7:b6:7b:3a:bf:a1:37:ad:21:02:ce:f8:03:d1:70:2e:80:b1: 0a:39:4f:a3:06:d7:ce:58:5e:8b:ec:8b:e6:f2:a4:27:42:10: e1:2e:ef:5a:74:fb:7e:3f:34:24:7e:49:e8:90:45:d5:a0:77: 0d:a4:8c:e3:19:8e:31:98:62:d1:e8:66:cc:77:f8:c6:c2:27: c3:2f:45:8d:99:4d:cf:86:c1:30:a4:5a:e5:e1:09:eb:f1:b8: 0e:9b:9d:d0:ec:75:b2:bb:2b:3d:e8:99:d3:7b:10:fb:a6:31: 28:a3:16:c9:59:38:25:e2:c6:dd:08:5f:4b:07:e4:ad:b9:ec: 43:cb:91:28:5b:d8:63:a9:91:f6:09:57:52:d2:34:3a:43:71: 8e:13:fc:4a:d9:dc:0a:1a:dc:25:ea:9c:97:7d:2d:50:7d:fa: c9:08:86:c0:95:d0:d5:1c:76:d4:cc:c1:9a:aa:40:d6:b5:60: 65:7e:29:e5:2e:dd:06:8e:ae:c6:f9:5f:55:5c:c7:70:e3:af: c8:53:0a:25:7d:b6:5d:93:18:b9:45:0f:ea:7e:7c:c7:94:57: b5:77:25:b2:0d:4b:31:76:74:c4:d4:2a:b7:3a:4f:93:e1:df: 08:ce:66:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUxMTA0MjIxMzM0WhcNMjUxMTExMjIxMzM0WjAYMRYwFAYD VQQDEw02OTBhN2E4Zi1jZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqE3fGrp63pjb9TumeD7+7L0cETqhXBIYmCiuIgYCQHWEH3jCWjd8oVrwALpc LmF8o26b2SqG88GuvTkVcEeXxrIb64rId1ndmfhsYqm595T6GX7enJXeYHSXekqH ENdqP6wUzB9Fwd98F1AQAL5FcQQ+//RX6aivnZZajDWAvCTL4c2aXft8FwabHRjj IOgPuVWxdhS5mZGro8t8Mipcyybo4DQQe77T/mThmle7pfTki/pF8ecrm+BHKG0R Y9weevCR6VSHkjeKsvqzeuqs+jj46IpvIeXrXr7Y2fMRwfTSWGh9KFwva3JQUSKw hGlm+xPGBC/ow3UHLzM9wUpWJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNv4abWc obsMj8bfse2Y/JEIcVbmMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA8JgIfb0acB34XpKLBl/Il3/ntns6v6E3rSECzvgD0XAugLEKOU+j BtfOWF6L7Ivm8qQnQhDhLu9adPt+PzQkfknokEXVoHcNpIzjGY4xmGLR6GbMd/jG wifDL0WNmU3PhsEwpFrl4Qnr8bgOm53Q7HWyuys96JnTexD7pjEooxbJWTgl4sbd CF9LB+StuexDy5EoW9hjqZH2CVdS0jQ6Q3GOE/xK2dwKGtwl6pyXfS1QffrJCIbA ldDVHHbUzMGaqkDWtWBlfinlLt0Gjq7G+V9VXMdw46/IUwolfbZdkxi5RQ/qfnzH lFe1dyWyDUsxdnTE1Cq3Ok+T4d8IzmZA -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:30 2025 by rpki-client