$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: Iav+GCyV2yKbsYeDSFZ87sZ0NwedMHdLS+DYfl06A6E= Subject key identifier: 0E:08:00:83:FD:AB:AA:0A:0C:F6:DB:30:44:6C:FA:2F:4E:60:3B:F1 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 93 Signing time: Sun 19 Oct 2025 09:39:35 +0000 Manifest this update: Sun 19 Oct 2025 09:39:34 +0000 Manifest next update: Sun 26 Oct 2025 09:39:34 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: raNadnfTy3IjJAvE2qn1NV2+xLZNGh5N+3PTeFVL+/Q=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Oct 19 09:39:34 2025 GMT Not After : Oct 26 09:39:34 2025 GMT Subject: CN=68f4b1d7-9eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:6b:98:5d:75:73:2e:5e:2a:e7:1e:16:3e: 1b:4e:b5:01:5d:5e:db:ad:70:71:95:c0:05:dc:13: 77:b3:ba:93:43:f4:b9:19:46:ea:c7:4f:10:ea:71: ce:78:c3:7c:3d:c1:e2:aa:0d:22:d8:23:40:64:ab: f6:33:fb:8e:4f:cf:82:7c:f2:df:44:d0:1a:48:41: 06:e8:7a:37:34:bf:2d:d4:99:be:ae:d7:0b:d7:40: a1:1d:22:53:75:6c:8c:bb:02:1c:4e:da:e5:b5:f7: ba:18:16:f8:82:ca:e3:41:b0:98:37:ad:ff:15:53: 9a:32:5f:9b:fe:0f:e6:25:d8:3c:12:45:25:c6:2e: fe:f7:dd:1f:a5:45:ba:94:78:03:17:49:e2:16:ac: e4:fe:de:1e:26:ea:95:1b:1a:61:62:17:40:26:0a: 25:4d:45:7e:98:a3:c7:6e:cf:c8:e0:69:c1:b9:ce: 74:7a:b2:9b:28:76:24:2a:d6:dc:ff:43:1c:20:c8: fd:69:37:65:18:0a:51:96:25:7f:79:0b:9b:3a:bb: 02:76:04:bd:e0:5c:f8:12:7a:c2:18:46:00:01:63: 78:35:a3:64:08:8a:c3:ab:19:1a:d9:31:4b:2b:cb: 14:74:a0:db:82:d1:7b:3f:3e:4f:f7:f7:d7:66:f8: 26:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:08:00:83:FD:AB:AA:0A:0C:F6:DB:30:44:6C:FA:2F:4E:60:3B:F1 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:37:03:36:44:72:7f:2e:3e:4b:32:28:c1:b4:ed:81:98:3c: d9:3e:09:79:54:d2:0e:35:88:64:35:eb:08:eb:e3:71:49:ba: 99:75:f4:87:ba:89:3b:19:bb:da:dc:b0:14:e9:91:7a:08:2d: 02:d9:07:dc:7a:15:8d:10:a1:bc:d5:b4:90:bf:eb:3f:de:f3: 5e:03:1c:d5:6e:56:0e:04:9d:bc:46:0e:3b:06:a2:72:e5:a9: 16:9d:22:a9:b5:7f:ae:fd:fe:1e:a3:c1:95:c0:4a:14:d3:b4: 09:f5:ef:a0:4b:a4:c4:1e:1c:cc:d6:36:04:97:73:0f:ad:6b: 12:58:a2:af:5d:0e:60:25:80:cf:a5:67:75:81:57:7a:96:8f: 51:1e:d2:d3:7b:61:d4:e1:b0:6a:a8:4e:80:31:ad:fc:9c:0b: 1b:b7:02:e3:da:98:29:8e:77:f8:22:19:37:d2:f8:04:c6:71: c2:d4:de:f4:37:cc:fb:e2:21:96:7c:b9:17:9f:a2:b5:b9:33: 15:c2:87:15:e4:78:d1:f3:52:aa:1f:3a:51:9b:c7:cd:d0:bc: dc:f5:98:87:e3:ef:aa:21:4e:41:e3:7e:de:3d:3f:17:14:c6: 05:4f:d7:70:b7:c1:1d:3f:91:3b:51:d8:5a:88:85:fa:98:a1: dd:94:ed:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4NTQxMTAvBgNVBAUTKDZEQTc0ODFFMzk2MzJEMzM4MDM2NjkwRjdCNDNBMkM0 ODM2M0RCNjgwHhcNMjUxMDE5MDkzOTM0WhcNMjUxMDI2MDkzOTM0WjAYMRYwFAYD VQQDEw02OGY0YjFkNy05ZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC5rmF11cy5eKuceFj4bTrUBXV7brXBxlcAF3BN3s7qTQ/S5GUbqx08Q6nHO eMN8PcHiqg0i2CNAZKv2M/uOT8+CfPLfRNAaSEEG6Ho3NL8t1Jm+rtcL10ChHSJT dWyMuwIcTtrltfe6GBb4gsrjQbCYN63/FVOaMl+b/g/mJdg8EkUlxi7+990fpUW6 lHgDF0niFqzk/t4eJuqVGxphYhdAJgolTUV+mKPHbs/I4GnBuc50erKbKHYkKtbc /0McIMj9aTdlGApRliV/eQubOrsCdgS94Fz4EnrCGEYAAWN4NaNkCIrDqxka2TFL K8sUdKDbgtF7Pz5P9/fXZvgmRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4IAIP9 q6oKDPbbMERs+i9OYDvxMB8GA1UdIwQYMBaAFG2nSB45Yy0zgDZpD3tDosSDY9to MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njg1NC9ERDkwQzNDMENC MjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxUT0FObWtQZTBPaXhJTmoy MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njg1NC9ERDkwQzNDMENCMjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxU T0FObWtQZTBPaXhJTmoyMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQNwM2RHJ/Lj5LMijBtO2BmDzZPgl5VNIONYhkNesI6+NxSbqZdfSH uok7Gbva3LAU6ZF6CC0C2QfcehWNEKG81bSQv+s/3vNeAxzVblYOBJ28Rg47BqJy 5akWnSKptX+u/f4eo8GVwEoU07QJ9e+gS6TEHhzM1jYEl3MPrWsSWKKvXQ5gJYDP pWd1gVd6lo9RHtLTe2HU4bBqqE6AMa38nAsbtwLj2pgpjnf4Ihk30vgExnHC1N70 N8z74iGWfLkXn6K1uTMVwocV5HjR81KqHzpRm8fN0Lzc9ZiH4++qIU5B437ePT8X FMYFT9dwt8EdP5E7UdhaiIX6mKHdlO2n -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:12 2025 by rpki-client