$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: Bi/4pvt9hRYVJTKocaM85f7iyMJyKTkhfw8Y6w2zP54= Subject key identifier: 39:B8:C0:EF:33:74:B2:5F:B7:22:15:28:4A:0A:C0:FB:14:C5:A3:F2 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 66 Signing time: Wed 23 Jul 2025 07:19:06 +0000 Manifest this update: Wed 23 Jul 2025 07:19:06 +0000 Manifest next update: Wed 30 Jul 2025 07:19:06 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: LLZ80ICVXKVmMK4vX3CwjxETVlqohNzjgEbNnT7tevU=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Jul 23 07:19:06 2025 GMT Not After : Jul 30 07:19:06 2025 GMT Subject: CN=68808cea-6b05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bc:f9:2d:c7:7f:3d:b8:c7:21:9a:1b:29:71: d7:cf:e6:0b:74:49:98:3b:6b:40:24:0c:ee:bb:bf: c5:35:19:5d:b6:17:a9:7e:8e:ab:bc:f6:5c:98:e1: 0d:c8:73:04:10:be:94:8b:ee:8a:c5:f8:08:07:f4: 08:81:b0:5e:9c:40:f4:92:ed:d5:52:38:f9:20:a4: a6:bd:12:89:0a:b7:9f:14:0d:56:91:2c:f8:77:72: 62:f2:85:5c:6b:fc:92:81:0d:c1:a0:fb:ab:2d:18: 76:56:d1:1f:37:a2:31:ef:94:e1:5d:36:6a:cc:cf: c5:29:17:e2:2e:d0:16:51:7e:54:8c:dc:21:76:1c: 56:bf:62:7d:82:96:6f:09:ff:0f:1a:b2:38:bf:6c: d3:e1:a0:81:e4:55:28:29:96:12:b6:fa:99:4b:0d: c8:45:6a:b8:50:98:ad:a3:70:44:2e:97:0f:79:34: 81:1b:97:5e:88:07:0e:dc:f1:c0:40:95:ba:83:ae: 5f:aa:8e:d9:d9:5d:b5:75:21:ff:4c:ed:33:d3:4f: 01:8b:82:27:98:f4:36:19:52:72:19:42:23:79:2f: 6f:fc:2e:94:40:ea:ff:6b:ac:53:92:e0:1e:1e:4e: bd:f3:b1:e3:16:1e:87:72:ca:49:62:de:e9:da:e9: ea:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B8:C0:EF:33:74:B2:5F:B7:22:15:28:4A:0A:C0:FB:14:C5:A3:F2 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:47:e5:de:b1:46:22:06:57:09:89:54:18:72:f5:54:5f:95: 45:96:b3:c8:2b:79:87:01:8e:72:48:a0:49:8c:9c:7d:ec:0e: bb:74:14:cc:89:f2:9b:92:39:d2:4d:fe:e6:08:92:ff:1f:2f: b1:8b:01:b3:54:14:4c:bd:cd:b0:98:0a:90:fd:6a:0e:11:93: e9:40:6d:58:64:3f:ed:e5:58:f2:4f:3f:42:8f:d1:28:a4:0b: 76:0c:66:94:a3:de:2e:19:c7:8e:b1:8e:8a:dc:05:b7:f3:87: eb:95:56:ea:22:4c:03:44:26:68:bd:80:17:4a:53:8b:27:de: 68:b9:0a:e4:64:88:f4:bd:4f:98:00:52:7c:23:1e:f7:6a:1f: b4:f3:ad:15:fe:c1:e2:d1:d0:4e:96:50:a4:ec:24:30:9d:fa: cd:78:d9:18:55:eb:bb:bb:c4:61:1d:57:41:61:d0:80:0e:0c: d3:6b:0a:f3:c1:e5:61:8d:df:4c:51:29:00:a6:ba:a3:10:20: 50:95:52:ae:a0:a6:58:e0:ff:00:0e:6c:56:14:58:6c:d1:b0: b6:ac:74:64:4a:62:91:1f:c1:8d:7c:91:5e:c0:c4:8e:42:50: 5f:62:7b:cd:18:77:27:bb:1b:28:2f:6b:06:65:cd:11:d5:72: 3b:e4:83:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA3MjMwNzE5MDZaFw0yNTA3MzAwNzE5MDZaMBgxFjAUBgNV BAMTDTY4ODA4Y2VhLTZiMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfvPktx389uMchmhspcdfP5gt0SZg7a0AkDO67v8U1GV22F6l+jqu89lyY4Q3I cwQQvpSL7orF+AgH9AiBsF6cQPSS7dVSOPkgpKa9EokKt58UDVaRLPh3cmLyhVxr /JKBDcGg+6stGHZW0R83ojHvlOFdNmrMz8UpF+Iu0BZRflSM3CF2HFa/Yn2Clm8J /w8asji/bNPhoIHkVSgplhK2+plLDchFarhQmK2jcEQulw95NIEbl16IBw7c8cBA lbqDrl+qjtnZXbV1If9M7TPTTwGLgieY9DYZUnIZQiN5L2/8LpRA6v9rrFOS4B4e Tr3zseMWHodyykli3una6eo5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUObjA7zN0 sl+3IhUoSgrA+xTFo/IwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAItH5d6xRiIGVwmJVBhy9VRflUWWs8greYcBjnJIoEmMnH3sDrt0FMyJ 8puSOdJN/uYIkv8fL7GLAbNUFEy9zbCYCpD9ag4Rk+lAbVhkP+3lWPJPP0KP0Sik C3YMZpSj3i4Zx46xjorcBbfzh+uVVuoiTANEJmi9gBdKU4sn3mi5CuRkiPS9T5gA UnwjHvdqH7TzrRX+weLR0E6WUKTsJDCd+s142RhV67u7xGEdV0Fh0IAODNNrCvPB 5WGN30xRKQCmuqMQIFCVUq6gpljg/wAObFYUWGzRsLasdGRKYpEfwY18kV7AxI5C UF9ie80Ydye7GygvawZlzRHVcjvkg/Q= -----END CERTIFICATE-----Generated at Wed Jul 23 12:50:06 2025 by rpki-client