$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: VFymLLad9UGziVd40ApyzMiXjmPhES0HcYMYvATwLwo= Subject key identifier: 12:E4:AF:36:51:58:90:DB:CA:88:D5:E1:C6:A6:6C:96:57:9E:02:7E Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 43 Signing time: Tue 13 May 2025 06:36:38 +0000 Manifest this update: Tue 13 May 2025 06:36:37 +0000 Manifest next update: Tue 20 May 2025 06:36:37 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: tiNlsK55b7EAggHlT0kR8pq3Vh8WztOg76ZgtgusWE0=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: May 13 06:36:37 2025 GMT Not After : May 20 06:36:37 2025 GMT Subject: CN=6822e876-5199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0a:aa:62:f1:98:ab:b6:bf:66:ad:ca:23:1a: 78:36:b2:eb:28:f1:60:02:15:fb:36:c9:13:24:58: d0:90:8c:0a:68:92:39:42:58:79:c4:f8:d9:60:01: 31:70:09:40:af:8e:da:28:7f:5d:ee:03:76:bf:5a: a9:73:b2:d6:2a:03:29:b1:07:7a:87:a8:9d:b5:0e: b6:d7:e0:04:05:1e:b2:d8:2b:c6:09:a5:13:5a:1a: 58:4a:3d:b8:bb:3a:75:da:28:e4:00:9e:d0:6a:f6: 5d:ea:0e:11:6d:6b:f3:f9:50:eb:e6:16:b7:13:c1: 09:15:95:b2:db:47:ac:7f:93:d8:85:c3:c5:12:01: 6a:49:86:ac:94:10:d6:ea:87:0e:80:e1:97:65:38: 0b:63:6c:5a:72:41:49:6b:ad:27:f3:cd:ff:33:da: ce:e7:02:92:86:a5:4f:b9:93:0e:34:de:5c:e2:89: ee:90:fa:8e:cf:5a:60:0a:bd:24:4e:15:49:76:29: 40:da:d5:4f:64:9a:67:ee:9f:a3:df:d7:88:af:7b: fc:9c:da:40:c4:a2:50:83:9f:71:6a:19:3a:57:04: eb:68:06:cb:4b:4b:e8:88:6e:4b:4e:ce:df:cd:06: a4:a3:a5:0e:17:89:87:ca:a4:ea:f0:5d:c4:4a:bf: 57:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E4:AF:36:51:58:90:DB:CA:88:D5:E1:C6:A6:6C:96:57:9E:02:7E X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ce:54:87:9d:86:38:61:95:42:59:cd:3d:a4:c7:57:5b:3d: 7e:4e:67:9a:76:63:d0:a2:eb:c9:c4:10:4c:41:b6:69:7f:85: 7a:08:18:3b:ce:cc:27:f2:c8:4f:42:b6:7c:d6:73:13:07:2c: b0:62:3c:d0:6d:a9:73:82:96:10:64:3f:07:19:9c:53:5a:cb: 52:76:dd:b7:01:25:6f:58:b0:63:bc:bf:4b:48:cb:82:46:4f: f8:13:72:55:cc:cd:e5:91:bf:92:2e:0a:9a:c6:af:51:58:0e: df:a3:62:e5:e3:b1:44:04:7b:f3:f7:15:d3:e1:06:49:23:6a: 36:df:ef:04:78:8e:2c:ed:4d:d5:c7:29:09:24:cc:1a:9e:e5: 3c:7e:f3:40:c3:71:2d:00:56:9d:ee:65:69:2d:af:95:fd:eb: 77:e5:05:cb:17:a9:d8:53:df:cb:10:66:14:c4:d3:5f:7e:24: 00:35:10:60:b2:a6:7e:0f:a0:1b:f8:d9:d0:11:e3:e8:87:21: c3:7b:6b:f7:c0:e5:f9:97:37:83:f7:3d:e0:5a:4c:68:83:6f: 82:6e:11:ac:c0:a0:a8:1f:3e:48:5b:b3:30:74:d3:00:b0:5e: 2e:56:79:65:fa:02:d6:57:d7:12:bb:92:7a:cf:21:c1:66:a9: f4:d3:92:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA1MTMwNjM2MzdaFw0yNTA1MjAwNjM2MzdaMBgxFjAUBgNV BAMTDTY4MjJlODc2LTUxOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbCqpi8Zirtr9mrcojGng2suso8WACFfs2yRMkWNCQjApokjlCWHnE+NlgATFw CUCvjtoof13uA3a/WqlzstYqAymxB3qHqJ21DrbX4AQFHrLYK8YJpRNaGlhKPbi7 OnXaKOQAntBq9l3qDhFta/P5UOvmFrcTwQkVlbLbR6x/k9iFw8USAWpJhqyUENbq hw6A4ZdlOAtjbFpyQUlrrSfzzf8z2s7nApKGpU+5kw403lziie6Q+o7PWmAKvSRO FUl2KUDa1U9kmmfun6Pf14ive/yc2kDEolCDn3FqGTpXBOtoBstLS+iIbktOzt/N BqSjpQ4XiYfKpOrwXcRKv1fbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEuSvNlFY kNvKiNXhxqZslleeAn4wHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEDOVIedhjhhlUJZzT2kx1dbPX5OZ5p2Y9Ci68nEEExBtml/hXoIGDvO zCfyyE9CtnzWcxMHLLBiPNBtqXOClhBkPwcZnFNay1J23bcBJW9YsGO8v0tIy4JG T/gTclXMzeWRv5IuCprGr1FYDt+jYuXjsUQEe/P3FdPhBkkjajbf7wR4jiztTdXH KQkkzBqe5Tx+80DDcS0AVp3uZWktr5X963flBcsXqdhT38sQZhTE019+JAA1EGCy pn4PoBv42dAR4+iHIcN7a/fA5fmXN4P3PeBaTGiDb4JuEazAoKgfPkhbszB00wCw Xi5WeWX6AtZX1xK7knrPIcFmqfTTknc= -----END CERTIFICATE-----Generated at Tue May 13 10:48:58 2025 by rpki-client