$ rpki-client -vvf rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft File: badIHjljLTOANmkPe0OixINj22g.mft (raw, json) Hash identifier: KXAibzOsuh0ujEZDNmP/4Noi7wjDdpcMXV36FWICqek= Subject key identifier: CC:C9:B3:45:F9:B6:7E:86:D8:64:D6:4C:F4:4D:84:EF:D0:AC:DC:6D Authority key identifier: 6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 Certificate issuer: /CN=A9156854/serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft Manifest number: 3B Signing time: Sun 27 Apr 2025 06:19:05 +0000 Manifest this update: Sun 27 Apr 2025 06:19:04 +0000 Manifest next update: Sun 04 May 2025 06:19:04 +0000 Files and hashes: 1: badIHjljLTOANmkPe0OixINj22g.crl (hash: ftl0UBib2ui5s7vlJJNI3Yzt+JifiAFgN1x+ZydonZM=) 2: CCE068D6CB2411EF93F63631C4F9AE02.roa (hash: ZSOsUiVtVH7stSF1LBrKEfbqy25tB+towx5vwiTWj1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156854, serialNumber=6DA7481E39632D338036690F7B43A2C48363DB68 Validity Not Before: Apr 27 06:19:04 2025 GMT Not After : May 4 06:19:04 2025 GMT Subject: CN=680dcc59-50b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:b8:bc:b7:9a:d8:96:27:92:27:d4:c6:3a:82: 57:63:19:96:0a:16:04:cf:42:bb:9c:3a:aa:8b:3e: 4b:88:08:f5:0a:6b:8c:bb:95:71:86:ce:e9:d9:c7: 6a:dc:aa:1b:ab:69:8d:92:74:91:20:c1:32:12:51: 5f:99:87:6c:3c:71:a7:8b:bf:ac:c9:fc:4d:21:3b: 2d:ee:48:2c:65:cf:87:db:00:52:36:06:95:b4:87: 25:89:05:2d:74:9c:8e:86:4e:11:26:3e:a6:a2:de: 24:7b:2c:6c:31:c8:6c:9d:27:63:02:ad:b4:d2:23: 17:53:03:18:9f:b1:72:05:8e:b5:0d:42:98:5b:c8: 70:84:50:12:e9:40:31:ee:b4:b9:7c:33:25:10:a2: e7:7b:b8:2a:ed:d8:6e:a7:33:bd:ab:a2:a2:bf:19: 0f:64:7b:8f:df:ba:f3:bb:0f:b0:5a:28:62:9b:c6: a0:10:1a:58:3a:71:6d:83:0f:e6:3b:c8:52:30:a8: e8:2a:4d:9d:e8:6a:60:26:d7:1f:71:3e:6c:1e:b2: f1:d3:31:91:c9:9f:54:18:21:84:32:15:48:7a:fd: 80:4f:c7:2f:ec:5a:56:f5:cf:6d:91:01:f2:32:25: 89:57:48:5e:c5:a6:d1:14:85:46:a2:01:f7:2d:f6: f8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C9:B3:45:F9:B6:7E:86:D8:64:D6:4C:F4:4D:84:EF:D0:AC:DC:6D X509v3 Authority Key Identifier: keyid:6D:A7:48:1E:39:63:2D:33:80:36:69:0F:7B:43:A2:C4:83:63:DB:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/badIHjljLTOANmkPe0OixINj22g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156854/DD90C3C0CB2311EF9E86682EC4F9AE02/badIHjljLTOANmkPe0OixINj22g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:39:dc:0c:47:64:00:34:fb:42:dd:c6:f8:89:98:83:39:6e: 30:15:ec:86:27:a4:e0:dd:24:26:2a:a1:a3:30:2f:26:01:d3: 9f:47:89:2c:41:38:75:79:87:88:4f:1d:2d:ce:92:ee:1f:ab: 74:9c:bc:c3:96:a3:0c:3d:b1:7d:ed:3d:e4:cb:51:be:56:6a: 8d:9f:9e:a8:52:e5:57:2e:55:7c:65:ac:f1:aa:0e:0a:b9:a1: 80:67:1c:a0:4d:b9:74:b6:2c:84:6c:dd:c2:d0:49:3c:f6:ec: 5f:72:2f:fd:c4:8a:e3:08:fe:11:42:59:24:a0:93:9e:30:18: 24:cf:7e:9d:72:52:d3:ab:d7:77:60:f3:1b:24:56:8b:68:29: 67:33:50:18:9e:3d:4e:50:e2:89:57:b0:99:4c:50:12:51:63: 26:98:fb:6f:5f:67:9e:84:f1:b5:d4:be:53:1a:38:a8:5c:3b: da:16:52:d4:44:80:85:7e:9e:fa:7c:68:cd:3e:c0:1a:da:02: b0:53:35:63:81:56:be:64:a3:82:cf:ad:22:79:73:55:15:0c: d3:b0:15:7d:64:8e:68:2d:47:e3:c1:73:e0:ae:fe:01:45:2e: c7:11:93:1d:ff:03:66:82:e3:05:39:06:46:34:3c:09:17:78: 8b:c9:c4:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Njg1NDExMC8GA1UEBRMoNkRBNzQ4MUUzOTYzMkQzMzgwMzY2OTBGN0I0M0EyQzQ4 MzYzREI2ODAeFw0yNTA0MjcwNjE5MDRaFw0yNTA1MDQwNjE5MDRaMBgxFjAUBgNV BAMTDTY4MGRjYzU5LTUwYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpuLy3mtiWJ5In1MY6gldjGZYKFgTPQrucOqqLPkuICPUKa4y7lXGGzunZx2rc qhuraY2SdJEgwTISUV+Zh2w8caeLv6zJ/E0hOy3uSCxlz4fbAFI2BpW0hyWJBS10 nI6GThEmPqai3iR7LGwxyGydJ2MCrbTSIxdTAxifsXIFjrUNQphbyHCEUBLpQDHu tLl8MyUQoud7uCrt2G6nM72roqK/GQ9ke4/fuvO7D7BaKGKbxqAQGlg6cW2DD+Y7 yFIwqOgqTZ3oamAm1x9xPmwesvHTMZHJn1QYIYQyFUh6/YBPxy/sWlb1z22RAfIy JYlXSF7FptEUhUaiAfct9vh5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzMmzRfm2 fobYZNZM9E2E79Cs3G0wHwYDVR0jBBgwFoAUbadIHjljLTOANmkPe0OixINj22gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2ODU0L0REOTBDM0MwQ0Iy MzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRPQU5ta1BlME9peElOajIy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmFkSUhqbGpMVE9BTm1rUGUwT2l4SU5qMjJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2 ODU0L0REOTBDM0MwQ0IyMzExRUY5RTg2NjgyRUM0RjlBRTAyL2JhZElIamxqTFRP QU5ta1BlME9peElOajIyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAQ53AxHZAA0+0LdxviJmIM5bjAV7IYnpODdJCYqoaMwLyYB059HiSxB OHV5h4hPHS3Oku4fq3ScvMOWoww9sX3tPeTLUb5Wao2fnqhS5VcuVXxlrPGqDgq5 oYBnHKBNuXS2LIRs3cLQSTz27F9yL/3EiuMI/hFCWSSgk54wGCTPfp1yUtOr13dg 8xskVotoKWczUBiePU5Q4olXsJlMUBJRYyaY+29fZ56E8bXUvlMaOKhcO9oWUtRE gIV+nvp8aM0+wBraArBTNWOBVr5ko4LPrSJ5c1UVDNOwFX1kjmgtR+PBc+Cu/gFF LscRkx3/A2aC4wU5BkY0PAkXeIvJxHw= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:47 2025 by rpki-client on console.sobornost.net