$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: jEUPDEu8ZWsd4NA1K38ob0VOGS0g7X50b1HxFPzxnMo= Subject key identifier: 5C:2F:D5:C1:28:82:51:31:8D:E2:C3:5D:90:EC:66:8C:4C:9B:C9:C5 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 76 Signing time: Sat 23 Aug 2025 07:00:24 +0000 Manifest this update: Sat 23 Aug 2025 07:00:23 +0000 Manifest next update: Sat 30 Aug 2025 07:00:23 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: SxbGukZ/hAOera9nveyfxHB9GwJnUbrZemLcsVDTtGg=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Aug 23 07:00:23 2025 GMT Not After : Aug 30 07:00:23 2025 GMT Subject: CN=68a96707-c281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:df:34:f4:a8:f8:35:21:46:e5:c8:c2:de:1b: cf:98:28:e4:7e:25:16:38:64:aa:56:3c:f6:66:a7: 9a:9d:5b:bf:71:16:1c:d5:f1:7a:63:54:51:1d:bc: d6:5d:f9:8b:d8:ca:e4:4a:1c:3d:f0:df:77:10:89: d4:3e:43:66:2f:f6:8c:49:f0:50:b3:5e:08:fe:52: 87:cc:ca:4a:1c:d4:58:5b:9d:ed:de:4e:d5:26:ab: 40:87:43:93:9e:56:c7:07:60:1f:19:b8:5b:00:81: 2b:5c:e4:45:0f:a8:12:45:d2:97:66:fc:06:a9:0d: 5d:84:94:d0:67:a6:75:b7:04:24:05:d3:2f:cf:07: c4:0c:44:65:78:57:56:83:33:96:4c:3d:c5:c1:ff: e8:77:27:b9:61:ce:25:ec:94:17:47:1a:60:0a:46: 0e:30:85:11:a6:1d:9c:82:66:60:ff:6c:7a:b1:2b: 9e:bb:56:ad:06:06:45:fa:e3:e5:c5:8c:c4:f2:e7: be:66:fb:8f:b7:33:ad:2f:92:2d:3a:88:55:a3:91: ac:3a:72:2e:c9:45:4e:06:5a:70:0b:0b:70:b6:6e: 7b:57:4a:ec:43:3e:41:8a:9a:91:dc:a4:45:d5:46: 09:04:d7:fe:53:b9:4a:30:14:3c:9a:df:2f:97:a7: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:2F:D5:C1:28:82:51:31:8D:E2:C3:5D:90:EC:66:8C:4C:9B:C9:C5 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:8e:4a:e5:53:92:3c:20:ab:98:0a:7e:79:0e:a0:d0:7e:8d: 83:03:f9:14:5f:69:88:05:53:f3:64:b8:08:f5:fb:11:fb:29: a3:fc:ab:ec:52:57:e2:1e:dc:30:b9:d9:17:89:d0:6d:b8:89: ff:f4:ce:ba:23:f0:4d:67:62:88:3a:c8:5c:20:3e:73:ba:91: a8:d5:23:d9:97:a9:36:ad:b5:fd:ba:5f:68:bc:88:64:67:4b: 0a:26:e1:e6:aa:7f:2f:98:c9:9d:31:39:98:44:b5:0b:84:1c: 45:c1:88:42:d6:42:51:3c:a8:42:e6:eb:c6:36:30:29:87:7d: 15:32:47:36:ff:7c:76:a8:13:45:30:bd:6c:04:e0:a6:74:69: 52:73:e5:29:c2:5e:5f:ab:53:c8:2f:ef:7e:aa:24:a8:a8:53: fa:8c:ad:69:3e:99:14:10:e9:b1:dd:9d:99:37:03:03:c2:d5: 19:80:2b:cf:c3:8b:4a:03:a2:6d:92:ae:8b:7d:11:ed:5d:7b: db:ea:aa:91:4e:58:45:fa:09:41:f8:0c:01:b9:16:4d:9f:d3: 2e:c4:93:98:ae:ae:08:4e:ff:75:48:6a:c9:88:88:a2:a2:ef: 0f:50:57:5e:f5:7f:b4:05:6c:31:8e:ae:dd:63:77:34:af:4f: 8b:55:d2:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA4MjMwNzAwMjNaFw0yNTA4MzAwNzAwMjNaMBgxFjAUBgNV BAMTDTY4YTk2NzA3LWMyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL3zT0qPg1IUblyMLeG8+YKOR+JRY4ZKpWPPZmp5qdW79xFhzV8XpjVFEdvNZd +YvYyuRKHD3w33cQidQ+Q2Yv9oxJ8FCzXgj+UofMykoc1Fhbne3eTtUmq0CHQ5Oe VscHYB8ZuFsAgStc5EUPqBJF0pdm/AapDV2ElNBnpnW3BCQF0y/PB8QMRGV4V1aD M5ZMPcXB/+h3J7lhziXslBdHGmAKRg4whRGmHZyCZmD/bHqxK567Vq0GBkX64+XF jMTy575m+4+3M60vki06iFWjkaw6ci7JRU4GWnALC3C2bntXSuxDPkGKmpHcpEXV RgkE1/5TuUowFDya3y+Xp35bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXC/VwSiC UTGN4sNdkOxmjEybycUwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIuOSuVTkjwgq5gKfnkOoNB+jYMD+RRfaYgFU/NkuAj1+xH7KaP8q+xS V+Ie3DC52ReJ0G24if/0zroj8E1nYog6yFwgPnO6kajVI9mXqTattf26X2i8iGRn Swom4eaqfy+YyZ0xOZhEtQuEHEXBiELWQlE8qELm68Y2MCmHfRUyRzb/fHaoE0Uw vWwE4KZ0aVJz5SnCXl+rU8gv736qJKioU/qMrWk+mRQQ6bHdnZk3AwPC1RmAK8/D i0oDom2Srot9Ee1de9vqqpFOWEX6CUH4DAG5Fk2f0y7Ek5iurghO/3VIasmIiKKi 7w9QV171f7QFbDGOrt1jdzSvT4tV0i0= -----END CERTIFICATE-----Generated at Sat Aug 23 17:21:28 2025 by rpki-client