$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: xwbhZbPwHo0iVgkfW4aB1EmRrmdiIfjaWbD8n7p94es= Subject key identifier: 26:33:B0:A7:3A:23:72:6E:52:EA:92:7E:C4:27:49:8A:8C:B2:99:58 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 3A Signing time: Fri 25 Apr 2025 06:29:59 +0000 Manifest this update: Fri 25 Apr 2025 06:29:59 +0000 Manifest next update: Fri 02 May 2025 06:29:59 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: dN2Mc5L8MrAuJgDW97u4fW5TZYD3ZPpiujLBeUBIkuA=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Apr 25 06:29:59 2025 GMT Not After : May 2 06:29:59 2025 GMT Subject: CN=680b2be7-f957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c2:cf:7f:06:73:8a:b0:9b:83:26:29:cf:41: 37:85:db:86:e0:dd:ae:31:64:4b:a3:0d:08:f9:60: 7a:9c:e5:52:58:ac:21:f6:e6:30:e0:35:f4:92:72: 9a:2b:40:92:0b:4c:54:96:16:d5:68:8c:96:24:5b: 22:cb:ee:8b:29:91:65:8d:48:89:c4:21:36:36:9e: f8:b4:4d:60:b6:2b:8b:6b:2b:3e:77:a3:36:65:57: 36:a7:07:cc:fa:1c:f8:52:52:a6:8a:25:7f:9e:c0: 86:d7:a6:51:43:0b:28:53:21:45:e2:dd:a1:34:75: e1:7c:73:d8:c7:34:11:8b:0a:13:82:3d:2a:67:2f: 21:6a:45:d9:c2:e5:35:b4:47:5b:82:50:a3:55:d1: f1:15:e1:39:35:d4:6d:1e:21:e9:30:14:9e:d8:1b: 81:1b:3b:b5:75:69:3f:a4:ec:30:31:12:3f:74:2f: 0e:58:e6:22:e1:f6:65:1e:0e:22:17:f3:10:99:1e: a4:d3:fc:cf:24:1a:21:c0:6b:f6:43:6f:ae:9c:ce: 8a:71:0a:5d:61:e1:93:2d:82:3a:4c:78:05:ae:90: b0:47:d5:b7:6b:e1:15:69:cc:ed:58:d7:22:6f:90: 9f:de:ea:96:c5:74:c0:4e:8f:0a:7c:f2:57:ee:fe: 8a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:33:B0:A7:3A:23:72:6E:52:EA:92:7E:C4:27:49:8A:8C:B2:99:58 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ab:3a:a5:8f:12:fc:f7:bf:40:eb:55:c9:ec:12:14:f9:0a: 01:a3:cc:30:e1:35:68:6f:33:df:9f:62:e1:71:ee:4b:10:5f: cb:40:95:1f:14:cf:a6:07:cf:0f:ca:04:a7:d5:ab:30:63:58: 50:91:0e:c3:58:8d:56:c4:15:44:89:2c:a3:fd:65:9e:11:84: 45:12:b2:ba:83:30:36:e8:c6:ed:5e:1a:85:30:39:a7:ae:0d: 21:c9:ce:da:35:27:9a:29:e3:b7:4f:ce:91:4a:23:8e:06:3a: be:fb:8a:7c:db:1b:bc:71:58:dc:68:48:66:9d:7b:84:fa:7f: fa:23:5b:9d:1e:0c:39:04:dd:2b:08:2d:ff:06:80:75:58:a5: c9:5b:7b:ce:54:2c:05:5f:93:88:63:b6:80:a8:dd:18:79:b3: 1b:d4:e9:26:7c:e4:35:5f:26:17:42:e2:90:c5:61:44:8e:bb: e8:00:2a:c2:26:ec:64:00:94:74:06:bc:b5:a8:b9:40:24:3f: 94:e5:2b:d2:c0:81:be:3f:59:df:e5:12:01:8b:dd:4c:64:be: 4f:b0:ea:28:57:07:85:33:d0:18:ae:9c:2f:27:cd:63:31:1a: ba:0d:fe:1b:5d:49:a9:48:1b:97:cf:9c:1d:10:bd:94:ac:37: b1:c4:91:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA0MjUwNjI5NTlaFw0yNTA1MDIwNjI5NTlaMBgxFjAUBgNV BAMTDTY4MGIyYmU3LWY5NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZws9/BnOKsJuDJinPQTeF24bg3a4xZEujDQj5YHqc5VJYrCH25jDgNfSScpor QJILTFSWFtVojJYkWyLL7ospkWWNSInEITY2nvi0TWC2K4trKz53ozZlVzanB8z6 HPhSUqaKJX+ewIbXplFDCyhTIUXi3aE0deF8c9jHNBGLChOCPSpnLyFqRdnC5TW0 R1uCUKNV0fEV4Tk11G0eIekwFJ7YG4EbO7V1aT+k7DAxEj90Lw5Y5iLh9mUeDiIX 8xCZHqTT/M8kGiHAa/ZDb66czopxCl1h4ZMtgjpMeAWukLBH1bdr4RVpzO1Y1yJv kJ/e6pbFdMBOjwp88lfu/orNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJjOwpzoj cm5S6pJ+xCdJioyymVgwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB6rOqWPEvz3v0DrVcnsEhT5CgGjzDDhNWhvM9+fYuFx7ksQX8tAlR8U z6YHzw/KBKfVqzBjWFCRDsNYjVbEFUSJLKP9ZZ4RhEUSsrqDMDboxu1eGoUwOaeu DSHJzto1J5op47dPzpFKI44GOr77inzbG7xxWNxoSGade4T6f/ojW50eDDkE3SsI Lf8GgHVYpclbe85ULAVfk4hjtoCo3Rh5sxvU6SZ85DVfJhdC4pDFYUSOu+gAKsIm 7GQAlHQGvLWouUAkP5TlK9LAgb4/Wd/lEgGL3Uxkvk+w6ihXB4Uz0BiunC8nzWMx GroN/htdSalIG5fPnB0QvZSsN7HEkQ0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:23 2025 by rpki-client