$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: HgLKR6j3cB+CFJLIiduYi7Vwv3kE2Uo0yg+inJ54od4= Subject key identifier: 9A:B6:DD:3B:BA:93:11:E7:1F:21:CB:1F:38:C2:3B:90:E9:4D:D6:A5 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 9B Signing time: Wed 05 Nov 2025 06:31:50 +0000 Manifest this update: Wed 05 Nov 2025 06:31:50 +0000 Manifest next update: Wed 12 Nov 2025 06:31:50 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: YwXQCSrvHmXGVIOGDmOCp05GxZ9J2C/DSt66ZZBHvJo=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Nov 5 06:31:50 2025 GMT Not After : Nov 12 06:31:50 2025 GMT Subject: CN=690aef56-d559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:9d:9b:c5:eb:82:9b:41:83:d8:97:71:b7: b6:63:0b:ae:93:4e:16:12:3b:55:52:26:93:f6:8c: e9:46:f0:89:36:bd:b3:49:37:1c:3b:e7:0f:fc:98: 8e:cc:35:ab:53:44:86:b0:06:eb:1a:5d:ba:eb:be: af:13:54:fe:f1:a2:ef:7f:c4:8f:85:95:3e:73:c0: d6:94:b5:03:45:d4:d4:2a:87:31:31:1c:33:95:a9: b0:23:3d:6e:30:34:86:20:fb:1e:b8:c0:7f:78:5e: f1:c6:ab:4f:60:53:0a:73:77:6b:a1:9f:13:31:db: 9d:94:9a:9e:36:e4:ca:46:5d:d7:69:20:96:d2:33: bb:59:40:20:98:30:37:15:05:c7:26:c4:86:55:09: c2:db:6d:0f:ca:29:b0:94:d0:59:7c:d6:44:ac:b7: 0d:93:29:c7:31:64:14:2e:02:39:6a:7a:c2:98:fd: d0:e0:a4:b9:75:14:bf:e2:8c:23:5d:e1:af:6f:e8: d3:06:73:22:99:22:d4:ef:ba:73:16:46:03:cf:b9: 4b:8f:bd:6b:ed:4f:a6:57:bb:5f:24:7e:b2:fb:55: 21:bf:2e:06:04:44:40:e9:25:42:a8:5b:54:bb:d6: f2:d5:46:98:ab:e6:5d:d6:af:ba:8c:4a:75:23:b7: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B6:DD:3B:BA:93:11:E7:1F:21:CB:1F:38:C2:3B:90:E9:4D:D6:A5 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f2:39:0d:62:94:ea:8a:c5:af:22:58:2a:99:44:16:1e:6d: 74:f2:17:23:68:45:28:a4:63:fd:69:fc:c1:65:29:92:2e:48: 1f:96:ec:41:66:e2:c4:a6:ec:63:46:14:06:ad:e5:c5:b8:a5: 24:84:66:e0:b0:24:79:c1:81:2c:fb:47:ce:56:d4:84:26:2d: dc:9b:70:92:f8:7b:48:01:bb:47:89:16:09:30:25:25:af:3e: 4d:21:02:c6:9b:c2:9d:fb:fc:d3:18:c4:af:57:4a:ae:d8:3d: 52:79:0e:4f:c4:41:9f:4c:11:02:24:4a:0a:1f:6f:90:26:f8: 17:b7:9e:fc:45:36:ee:46:7e:19:08:02:7b:ad:5f:ae:d9:bf: 03:c5:e3:94:27:cf:85:24:c0:c8:7d:fc:11:f4:2a:31:39:91: 6a:ee:c4:d4:27:04:de:62:14:89:b8:c3:b6:89:13:99:40:d7: 07:ff:e2:36:fd:7e:90:c0:20:f9:b8:55:9d:91:2b:ad:14:59: 25:95:c0:5c:19:aa:8d:4c:45:7c:63:ad:9a:06:c2:f5:0e:24: c0:e6:db:22:78:b1:61:c8:28:2c:61:d6:09:57:ea:59:e0:cf: 9b:42:6d:2c:a7:33:ae:45:ab:e1:78:bc:47:18:c3:66:d0:9c: 70:51:80:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4NTQxMTAvBgNVBAUTKDZEQTc0ODFFMzk2MzJEMzM4MDM2NjkwRjdCNDNBMkM0 ODM2M0RCNjgwHhcNMjUxMTA1MDYzMTUwWhcNMjUxMTEyMDYzMTUwWjAYMRYwFAYD VQQDEw02OTBhZWY1Ni1kNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFydm8XrgptBg9iXcbe2Ywuuk04WEjtVUiaT9ozpRvCJNr2zSTccO+cP/JiO zDWrU0SGsAbrGl26676vE1T+8aLvf8SPhZU+c8DWlLUDRdTUKocxMRwzlamwIz1u MDSGIPseuMB/eF7xxqtPYFMKc3droZ8TMdudlJqeNuTKRl3XaSCW0jO7WUAgmDA3 FQXHJsSGVQnC220PyimwlNBZfNZErLcNkynHMWQULgI5anrCmP3Q4KS5dRS/4owj XeGvb+jTBnMimSLU77pzFkYDz7lLj71r7U+mV7tfJH6y+1Uhvy4GBERA6SVCqFtU u9by1UaYq+Zd1q+6jEp1I7f6GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJq23Tu6 kxHnHyHLHzjCO5DpTdalMB8GA1UdIwQYMBaAFG2nSB45Yy0zgDZpD3tDosSDY9to MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njg1NC9ERDkwQzNDMENC MjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxUT0FObWtQZTBPaXhJTmoy MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njg1NC9ERDkwQzNDMENCMjMxMUVGOUU4NjY4MkVDNEY5QUUwMi9iYWRJSGpsakxU T0FObWtQZTBPaXhJTmoyMmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs8jkNYpTqisWvIlgqmUQWHm108hcjaEUopGP9afzBZSmSLkgfluxB ZuLEpuxjRhQGreXFuKUkhGbgsCR5wYEs+0fOVtSEJi3cm3CS+HtIAbtHiRYJMCUl rz5NIQLGm8Kd+/zTGMSvV0qu2D1SeQ5PxEGfTBECJEoKH2+QJvgXt578RTbuRn4Z CAJ7rV+u2b8DxeOUJ8+FJMDIffwR9CoxOZFq7sTUJwTeYhSJuMO2iROZQNcH/+I2 /X6QwCD5uFWdkSutFFkllcBcGaqNTEV8Y62aBsL1DiTA5tsieLFhyCgsYdYJV+pZ 4M+bQm0spzOuRavheLxHGMNm0JxwUYCZ -----END CERTIFICATE-----Generated at Wed Nov 5 19:23:11 2025 by rpki-client