$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: h2vZxGjRhGaPh5SSCjqPrT+rKbdX3Jt6DsdCnmnvUpU= Subject key identifier: 3E:4B:10:C3:F0:44:E1:3F:1F:75:68:45:F8:81:6D:58:C7:D5:12:D6 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 5D Signing time: Sat 05 Jul 2025 07:23:46 +0000 Manifest this update: Sat 05 Jul 2025 07:23:45 +0000 Manifest next update: Sat 12 Jul 2025 07:23:45 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: eTlaaZ42jJfXf4Cp9f71wrz9vVHKU5t8mixDHfWRos4=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Jul 5 07:23:45 2025 GMT Not After : Jul 12 07:23:45 2025 GMT Subject: CN=6868d301-3342 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b9:e0:1d:7b:14:a9:55:99:38:9b:73:71:71: fd:fd:9b:06:d8:a4:64:4d:a7:62:2f:14:ef:04:20: cb:88:38:2d:ef:c8:ec:3e:7e:16:fb:8e:08:dd:4c: 67:fd:0e:62:8a:cd:95:29:57:ae:c3:ce:74:b1:7a: 02:aa:fb:85:06:7d:11:e9:b3:e6:7b:71:cb:6d:47: 8b:71:51:89:ef:61:0e:09:71:01:a6:a4:48:59:15: 00:ef:e5:37:3f:c9:18:fc:55:13:13:9b:77:c0:5e: 60:6a:d0:83:91:07:b3:98:7a:54:b9:90:c3:af:a3: 84:dd:3f:b1:9b:24:cb:67:35:be:1a:ba:29:23:49: 26:de:07:4b:31:10:85:c8:9b:06:dd:fe:37:15:cc: 02:b1:e1:51:42:76:4a:b3:25:1c:a3:cf:8d:ab:2f: c3:87:e7:19:e2:70:b2:66:ae:53:2d:f0:d2:c2:f3: af:2b:27:40:27:a7:57:5e:40:53:67:e9:1e:ed:51: 36:81:52:b8:46:5d:b3:e8:a8:73:a1:f3:72:ca:91: de:a5:ea:09:9e:77:28:74:46:0b:3b:97:27:67:a8: 45:a1:ab:b2:c7:b4:a2:d0:df:08:b3:65:ca:4f:a0: e6:d0:4b:70:f2:9d:7b:c8:e6:20:3a:57:90:d5:52: 5f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:4B:10:C3:F0:44:E1:3F:1F:75:68:45:F8:81:6D:58:C7:D5:12:D6 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:2c:07:08:de:39:15:03:64:b0:64:51:c1:36:cc:2b:77:98: 5e:df:ba:33:04:11:40:4a:60:8d:b1:7b:76:e7:96:31:5d:a4: 00:47:96:0e:de:ba:8d:31:25:90:12:19:07:4d:f7:7d:28:3e: 3b:2d:2d:5d:c8:58:b3:76:a0:d0:20:d0:b0:0d:3b:c0:d6:a1: e8:3f:51:29:4d:19:bb:1a:b0:c6:8e:6e:cc:37:c0:0c:33:8d: 23:88:b7:c0:cd:86:8d:ff:87:6e:00:46:de:ee:97:b0:69:96: 59:ad:07:ac:2c:28:58:a0:78:d5:91:27:fe:5b:96:94:50:e8: c6:37:11:3d:84:86:11:23:fd:65:cc:5b:54:7f:e9:89:80:af: 1f:89:cc:26:02:ef:20:2e:10:9f:9d:c0:0f:f6:ae:d7:83:b3: ce:b4:fc:9a:94:3b:e3:8d:68:1b:71:4c:49:2f:74:b5:60:99: 34:91:17:d3:09:f9:85:19:6d:8d:74:50:fb:96:e5:fd:33:a8: 22:ef:60:2b:16:57:3a:eb:2f:a6:40:ab:86:ae:cf:a5:9d:f0: d8:26:e8:b2:61:ef:48:07:6a:a0:07:31:78:07:f8:ef:21:82: 01:2f:c8:1e:97:35:11:14:96:85:2f:45:18:2a:c4:b4:dc:e0: 8c:eb:3a:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA3MDUwNzIzNDVaFw0yNTA3MTIwNzIzNDVaMBgxFjAUBgNV BAMTDTY4NjhkMzAxLTMzNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgueAdexSpVZk4m3Nxcf39mwbYpGRNp2IvFO8EIMuIOC3vyOw+fhb7jgjdTGf9 DmKKzZUpV67DznSxegKq+4UGfRHps+Z7ccttR4txUYnvYQ4JcQGmpEhZFQDv5Tc/ yRj8VRMTm3fAXmBq0IORB7OYelS5kMOvo4TdP7GbJMtnNb4auikjSSbeB0sxEIXI mwbd/jcVzAKx4VFCdkqzJRyjz42rL8OH5xnicLJmrlMt8NLC868rJ0Anp1deQFNn 6R7tUTaBUrhGXbPoqHOh83LKkd6l6gmedyh0Rgs7lydnqEWhq7LHtKLQ3wizZcpP oObQS3DynXvI5iA6V5DVUl/9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPksQw/BE 4T8fdWhF+IFtWMfVEtYwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADcsBwjeORUDZLBkUcE2zCt3mF7fujMEEUBKYI2xe3bnljFdpABHlg7e uo0xJZASGQdN930oPjstLV3IWLN2oNAg0LANO8DWoeg/USlNGbsasMaObsw3wAwz jSOIt8DNho3/h24ARt7ul7BpllmtB6wsKFigeNWRJ/5blpRQ6MY3ET2EhhEj/WXM W1R/6YmArx+JzCYC7yAuEJ+dwA/2rteDs860/JqUO+ONaBtxTEkvdLVgmTSRF9MJ +YUZbY10UPuW5f0zqCLvYCsWVzrrL6ZAq4auz6Wd8Ngm6LJh70gHaqAHMXgH+O8h ggEvyB6XNREUloUvRRgqxLTc4IzrOuo= -----END CERTIFICATE-----Generated at Mon Jul 7 03:20:44 2025 by rpki-client