$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: 7rI73Y0D3hFS2ihL2VfH7L2QVKn0T7qOAaVVLxXnPos= Subject key identifier: 34:2C:6A:DE:6D:05:A6:BC:6F:3F:31:0C:89:56:5F:43:FA:CF:3A:A5 Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 6F Signing time: Sat 09 Aug 2025 07:20:07 +0000 Manifest this update: Sat 09 Aug 2025 07:20:05 +0000 Manifest next update: Sat 16 Aug 2025 07:20:05 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: m9KKrk5xodfMagtsaJ98Rh7cuVIdBh1R5G7IyIhoDxU=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Aug 9 07:20:05 2025 GMT Not After : Aug 16 07:20:05 2025 GMT Subject: CN=6896f6a7-f0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7c:7a:c6:7b:e9:5b:c6:9d:40:8c:0b:c0:7b: 4e:c3:a3:42:d6:f9:ba:81:24:8a:b3:68:28:8d:45: 04:d6:29:c6:e0:fa:3a:cf:43:55:d9:c9:55:8b:40: c8:42:36:21:03:04:e7:56:ad:91:b5:89:40:51:69: ea:58:b1:81:e7:ff:9a:f3:92:d7:5d:3f:2d:89:cb: 02:af:cd:2d:a2:21:4d:4b:07:4a:44:96:8e:d2:7c: 81:88:5a:f3:93:77:20:17:ac:e1:e6:bf:93:77:4f: c3:b8:f6:53:5a:a1:dd:dc:76:b1:75:51:f2:41:68: f3:c0:1c:95:8c:54:4c:60:22:f2:cb:a4:b4:32:7c: 82:4e:05:16:14:83:be:bc:83:41:ff:cc:f4:e6:f5: d4:94:c4:1e:72:a8:89:ce:73:52:77:2e:86:af:5d: 1b:9d:96:50:45:73:93:8b:38:35:ea:fe:cc:6b:1a: 5b:1e:a9:49:7f:b8:42:59:15:40:bb:4b:3e:24:e1: ac:fa:69:0f:f6:fa:c5:9e:94:9d:ac:a2:cc:80:fd: 69:b0:16:7c:9e:01:e5:05:04:86:98:72:21:2d:6e: c4:d3:c8:b5:f8:77:d0:98:06:97:71:cd:25:9e:09: ac:cf:47:9f:f7:f2:cc:91:c6:42:75:b4:11:66:3e: 51:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:2C:6A:DE:6D:05:A6:BC:6F:3F:31:0C:89:56:5F:43:FA:CF:3A:A5 X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:47:04:af:a3:15:0b:2a:60:78:0d:b9:37:0e:d7:c6:79:ac: 2d:de:30:c1:7b:43:61:bd:04:c2:28:9d:2e:f9:ec:2b:d8:8c: 61:d3:9d:fd:ea:be:5f:cc:a3:64:65:6f:5c:44:ae:2d:3c:da: 35:85:fe:e2:54:4d:6f:8b:52:d6:51:1d:56:43:f6:8b:6c:2c: 3a:4f:95:4b:b8:ee:15:ec:32:06:5d:a9:1f:a2:7f:91:95:2a: 02:a7:17:38:45:b8:f3:4d:09:be:8d:d8:1c:dd:fe:da:08:51: 5f:03:df:46:8e:26:d4:2d:ac:a0:dc:6a:bb:11:fb:dc:18:48: 2a:52:00:c3:09:82:5d:22:82:4e:3a:68:56:52:2e:0b:53:e0: a5:a2:23:9d:cf:68:50:cd:5f:a9:ad:13:fe:aa:3f:ca:a1:8f: b2:f6:8e:8d:2b:7d:d5:c8:c6:14:c4:e4:38:d3:71:9b:24:b2: ac:85:56:b4:c4:c6:b7:1a:21:ae:8a:94:61:b4:07:c3:ac:83: b2:47:ca:ab:0d:79:d5:f7:b5:32:ab:58:40:f9:59:df:5e:3b: d8:eb:a6:40:e6:c1:d0:95:a0:20:cb:93:b3:ef:0f:2b:af:69: d2:07:49:0d:35:ab:59:6f:ba:75:82:8f:71:e1:e8:88:83:4c: 04:ea:17:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA4MDkwNzIwMDVaFw0yNTA4MTYwNzIwMDVaMBgxFjAUBgNV BAMTDTY4OTZmNmE3LWYwYzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqfHrGe+lbxp1AjAvAe07Do0LW+bqBJIqzaCiNRQTWKcbg+jrPQ1XZyVWLQMhC NiEDBOdWrZG1iUBRaepYsYHn/5rzktddPy2JywKvzS2iIU1LB0pElo7SfIGIWvOT dyAXrOHmv5N3T8O49lNaod3cdrF1UfJBaPPAHJWMVExgIvLLpLQyfIJOBRYUg768 g0H/zPTm9dSUxB5yqInOc1J3LoavXRudllBFc5OLODXq/sxrGlseqUl/uEJZFUC7 Sz4k4az6aQ/2+sWelJ2sosyA/WmwFnyeAeUFBIaYciEtbsTTyLX4d9CYBpdxzSWe CazPR5/38syRxkJ1tBFmPlHLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNCxq3m0F prxvPzEMiVZfQ/rPOqUwHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEZHBK+jFQsqYHgNuTcO18Z5rC3eMMF7Q2G9BMIonS757CvYjGHTnf3q vl/Mo2Rlb1xEri082jWF/uJUTW+LUtZRHVZD9otsLDpPlUu47hXsMgZdqR+if5GV KgKnFzhFuPNNCb6N2Bzd/toIUV8D30aOJtQtrKDcarsR+9wYSCpSAMMJgl0igk46 aFZSLgtT4KWiI53PaFDNX6mtE/6qP8qhj7L2jo0rfdXIxhTE5DjTcZsksqyFVrTE xrcaIa6KlGG0B8Osg7JHyqsNedX3tTKrWED5Wd9eO9jrpkDmwdCVoCDLk7PvDyuv adIHSQ01q1lvunWCj3Hh6IiDTATqF3Q= -----END CERTIFICATE-----Generated at Sat Aug 9 14:32:56 2025 by rpki-client