$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft File: taxoaa_ZUfiX3UqnJWT78qNW2Es.mft (raw, json) Hash identifier: QN3IAxGbdbh5GPaV8wDfdxtcxYeXh/2v/1AmKd7AI/I= Subject key identifier: D2:A0:7A:7C:F2:A0:CE:04:A5:07:81:16:C6:A3:7D:D9:01:D4:3D:4A Authority key identifier: B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B Certificate issuer: /CN=A91F5C0D/serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Certificate serial: 0669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft Manifest number: 0661 Signing time: Thu 24 Apr 2025 22:13:50 +0000 Manifest this update: Thu 24 Apr 2025 22:13:50 +0000 Manifest next update: Thu 01 May 2025 22:13:50 +0000 Files and hashes: 1: taxoaa_ZUfiX3UqnJWT78qNW2Es.crl (hash: bhPJvCRVKeBhtQC13483bm5nTUHc6jPaqt25CUM2IMY=) 2: F9D4AAB87DA911EB8532A559C4F9AE02.roa (hash: 5uwAAuHuzaTu99sHgwI0qpthIYE4xdW3P3WhoMyY4FE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5C0D, serialNumber=B5AC6869AFD951F897DD4AA72564FBF2A356D84B Validity Not Before: Apr 24 22:13:50 2025 GMT Not After : May 1 22:13:50 2025 GMT Subject: CN=680ab79e-d64b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:76:93:c2:f8:28:ea:cd:3a:20:b1:95:84: 4f:58:42:37:00:97:23:a6:29:d1:63:ff:e7:2e:f1: 3d:51:4e:0a:a5:a5:34:f5:fa:8b:fe:ab:46:f6:c3: cd:63:97:7f:2c:bc:6b:ed:df:e0:80:40:a6:1a:1f: 1c:a9:04:98:2a:9a:70:3a:e9:5c:7e:16:d0:20:d9: fb:19:22:ef:aa:3b:83:57:94:8f:c9:63:5d:87:2c: a2:59:94:28:be:65:5d:e3:4c:d0:1f:46:e5:42:e3: 1f:b2:2a:4a:ab:23:23:d8:06:ff:41:6d:e0:2b:5c: 93:a0:3a:f6:e4:b7:66:dc:c5:a7:48:a3:41:bc:53: 34:7d:10:0e:dc:63:ba:60:fe:fe:77:a3:0f:f0:da: 5d:fc:94:42:bd:9f:9d:04:01:88:35:33:b7:e5:4e: 4a:0f:59:ca:35:14:94:a7:7b:f0:ed:25:e6:25:fd: fc:bd:18:c5:fd:40:81:7a:bc:a6:8e:44:a1:b3:c4: 32:b9:b8:20:4e:a8:94:b2:f9:14:0a:9b:eb:db:fb: 71:f0:2f:1f:c4:e0:92:a0:e6:f9:6e:25:2b:30:ca: 7a:66:b1:37:85:eb:6f:17:c4:a6:3b:e4:ec:49:e9: c0:65:0b:96:5c:f4:9e:7f:17:43:10:85:bd:ad:c8: b8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A0:7A:7C:F2:A0:CE:04:A5:07:81:16:C6:A3:7D:D9:01:D4:3D:4A X509v3 Authority Key Identifier: keyid:B5:AC:68:69:AF:D9:51:F8:97:DD:4A:A7:25:64:FB:F2:A3:56:D8:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taxoaa_ZUfiX3UqnJWT78qNW2Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5C0D/5EF751547DA811EB9BE84E58C4F9AE02/taxoaa_ZUfiX3UqnJWT78qNW2Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:70:bd:6f:47:34:76:f9:f2:88:04:d0:3f:76:f0:48:be:46: 26:db:7f:34:5d:48:1a:26:29:81:d7:5a:97:a8:83:67:b3:69: d2:1c:aa:61:da:f7:35:eb:e3:9d:c2:a0:0c:b9:8a:e8:63:95: c0:50:b8:df:42:c9:f3:17:2e:ed:c7:b5:c2:f5:de:41:36:69: f2:2c:f2:d1:9b:d5:bd:02:e4:cd:f2:3e:7c:87:bf:51:ae:14: 62:aa:6d:fb:7a:f2:03:26:e5:4f:35:a0:7b:f3:22:2d:6f:1f: b7:00:e6:23:14:61:a0:aa:3d:92:a0:47:9d:97:79:75:26:53: c8:d5:61:d4:48:6d:2e:6d:bd:59:30:40:cd:2d:fa:5f:45:ef: 23:cf:77:29:5d:f7:9d:64:3e:17:72:5d:aa:32:f7:86:90:84: 89:f3:8a:9d:f1:74:03:48:9a:cb:7b:cc:61:c1:ce:ff:f8:bd: a1:72:24:22:62:c1:f1:68:32:ca:87:cc:dc:71:e1:f3:47:a9: f5:2b:d8:a2:3c:b3:48:a8:d1:bd:48:fb:7d:d7:5f:fc:fb:1f: f6:97:1f:db:5b:eb:0e:e7:e7:9d:b8:f1:42:7e:2d:9b:85:78: a5:71:78:bf:79:f2:41:50:90:13:c9:d6:f4:2b:7b:b6:78:d0: e0:46:d7:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVDMEQxMTAvBgNVBAUTKEI1QUM2ODY5QUZEOTUxRjg5N0RENEFBNzI1NjRGQkYy QTM1NkQ4NEIwHhcNMjUwNDI0MjIxMzUwWhcNMjUwNTAxMjIxMzUwWjAYMRYwFAYD VQQDEw02ODBhYjc5ZS1kNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0N2k8L4KOrNOiCxlYRPWEI3AJcjpinRY//nLvE9UU4KpaU09fqL/qtG9sPN Y5d/LLxr7d/ggECmGh8cqQSYKppwOulcfhbQINn7GSLvqjuDV5SPyWNdhyyiWZQo vmVd40zQH0blQuMfsipKqyMj2Ab/QW3gK1yToDr25Ldm3MWnSKNBvFM0fRAO3GO6 YP7+d6MP8Npd/JRCvZ+dBAGINTO35U5KD1nKNRSUp3vw7SXmJf38vRjF/UCBerym jkShs8QyubggTqiUsvkUCpvr2/tx8C8fxOCSoOb5biUrMMp6ZrE3hetvF8SmO+Ts SenAZQuWXPSefxdDEIW9rci4twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKgenzy oM4EpQeBFsajfdkB1D1KMB8GA1UdIwQYMBaAFLWsaGmv2VH4l91KpyVk+/KjVthL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUMwRC81RUY3NTE1NDdE QTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVmaVgzVXFuSldUNzhxTlcy RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RheG9hYV9aVWZpWDNVcW5KV1Q3OHFOVzJFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUMwRC81RUY3NTE1NDdEQTgxMUVCOUJFODRFNThDNEY5QUUwMi90YXhvYWFfWlVm aVgzVXFuSldUNzhxTlcyRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBcL1vRzR2+fKIBNA/dvBIvkYm2380XUgaJimB11qXqINns2nSHKph 2vc16+OdwqAMuYroY5XAULjfQsnzFy7tx7XC9d5BNmnyLPLRm9W9AuTN8j58h79R rhRiqm37evIDJuVPNaB78yItbx+3AOYjFGGgqj2SoEedl3l1JlPI1WHUSG0ubb1Z MEDNLfpfRe8jz3cpXfedZD4Xcl2qMveGkISJ84qd8XQDSJrLe8xhwc7/+L2hciQi YsHxaDLKh8zcceHzR6n1K9iiPLNIqNG9SPt911/8+x/2lx/bW+sO5+eduPFCfi2b hXilcXi/efJBUJATydb0K3u2eNDgRtf8 -----END CERTIFICATE-----Generated at Sat Apr 26 14:05:23 2025 by rpki-client