$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: tT5WZxrf0LozjA5fpO+7aM8DyMZ+PenpoE4jG3bEqNk= Subject key identifier: 3F:50:F9:25:3D:0D:78:90:69:3A:88:C4:EB:F1:65:D0:00:36:97:78 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0804 Signing time: Thu 24 Apr 2025 20:46:08 +0000 Manifest this update: Thu 24 Apr 2025 20:46:07 +0000 Manifest next update: Thu 01 May 2025 20:46:07 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: ExCr1jZkEmPMYGOrpgNP7H8pjSQk/OItNbjY/SSyvLw=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Apr 24 20:46:07 2025 GMT Not After : May 1 20:46:07 2025 GMT Subject: CN=680aa310-db48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:95:ec:18:59:d7:dd:18:2f:1f:23:4a:5d:20: 09:92:9b:46:0e:04:e9:80:62:b0:47:a9:09:f4:0c: 09:20:3f:0e:86:6a:2c:3c:13:c3:79:24:ba:44:c5: fd:04:c3:24:07:df:93:35:ef:cd:c5:f0:5d:25:a8: ae:04:04:83:3c:80:79:a2:56:60:91:0c:e8:85:cb: 4e:d8:cb:a0:39:fa:8a:cb:88:2a:57:b9:70:c9:7c: f7:11:d1:38:4a:12:80:cb:8f:0c:a4:04:30:0e:27: 7a:bd:c3:50:34:09:aa:fa:bb:94:7c:5e:6a:29:a3: 7e:6a:4e:53:12:a0:24:f2:60:71:f0:77:e6:99:b4: 8a:bd:45:5d:e8:bb:10:3e:c5:19:85:37:b3:29:c7: 24:8c:08:4d:b8:e1:dc:f2:13:17:9e:d7:8a:ba:31: 2b:4c:d3:a5:e0:14:af:b8:ad:66:24:97:90:ac:22: ab:b7:13:dd:df:c1:46:03:a0:90:21:a9:e4:e2:3a: 07:77:04:7b:6f:08:fb:55:55:ef:28:bf:df:3e:e2: 46:3d:f0:39:ed:fd:a3:d9:01:65:0c:dd:28:51:52: 09:d9:92:dc:75:bf:22:5f:db:4b:58:88:bf:75:6c: 00:27:c3:82:d2:af:56:d4:45:1e:99:95:b5:1c:5e: 0a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:50:F9:25:3D:0D:78:90:69:3A:88:C4:EB:F1:65:D0:00:36:97:78 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:8d:ff:84:b4:3d:ae:21:54:52:a5:90:37:79:07:db:fc:8e: eb:01:49:13:22:b6:4e:05:f9:97:c4:1e:d8:d3:2f:4d:f0:34: d4:29:9e:8e:18:f4:4a:18:b7:cc:28:f8:7a:8b:49:e0:df:27: d3:9f:84:fb:c6:1b:b4:5c:7c:d5:be:3e:c3:59:8c:39:e9:ea: 90:6e:cd:13:89:e9:79:60:dc:4e:a3:2e:ea:db:5f:0c:2c:9f: c1:04:5d:b0:15:0e:2f:1e:7a:85:af:a9:b0:47:98:f2:a9:19: 5e:5a:25:1a:00:7b:60:55:73:e2:ae:52:db:1d:40:67:61:0f: f6:db:9c:44:bf:57:31:f7:e0:32:d0:e2:d2:cd:f7:d6:c3:a1: 30:ca:f8:e0:a6:18:dc:20:7a:dd:33:fb:dd:3e:90:1f:1f:b4: db:39:53:4a:d2:40:f3:ae:37:1f:ab:95:96:e3:0a:23:b3:16: b8:eb:f0:47:4f:99:db:91:f7:0b:8e:ed:b9:dd:99:66:c0:2a: bf:6d:24:ea:66:4d:98:e4:e6:8a:f0:ad:36:6c:33:a3:5a:32: f2:07:bb:ad:fc:68:90:30:e8:2d:e4:f7:cc:f6:63:93:0b:6e: 82:53:5d:c9:1f:5b:d3:eb:aa:66:e3:d4:5f:9e:8d:84:09:1d: 39:7a:ce:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwNDI0MjA0NjA3WhcNMjUwNTAxMjA0NjA3WjAYMRYwFAYD VQQDEw02ODBhYTMxMC1kYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJXsGFnX3RgvHyNKXSAJkptGDgTpgGKwR6kJ9AwJID8OhmosPBPDeSS6RMX9 BMMkB9+TNe/NxfBdJaiuBASDPIB5olZgkQzohctO2MugOfqKy4gqV7lwyXz3EdE4 ShKAy48MpAQwDid6vcNQNAmq+ruUfF5qKaN+ak5TEqAk8mBx8HfmmbSKvUVd6LsQ PsUZhTezKcckjAhNuOHc8hMXnteKujErTNOl4BSvuK1mJJeQrCKrtxPd38FGA6CQ Iank4joHdwR7bwj7VVXvKL/fPuJGPfA57f2j2QFlDN0oUVIJ2ZLcdb8iX9tLWIi/ dWwAJ8OC0q9W1EUemZW1HF4KHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9Q+SU9 DXiQaTqIxOvxZdAANpd4MB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAujf+EtD2uIVRSpZA3eQfb/I7rAUkTIrZOBfmXxB7Y0y9N8DTUKZ6O GPRKGLfMKPh6i0ng3yfTn4T7xhu0XHzVvj7DWYw56eqQbs0Tiel5YNxOoy7q218M LJ/BBF2wFQ4vHnqFr6mwR5jyqRleWiUaAHtgVXPirlLbHUBnYQ/225xEv1cx9+Ay 0OLSzffWw6EwyvjgphjcIHrdM/vdPpAfH7TbOVNK0kDzrjcfq5WW4wojsxa46/BH T5nbkfcLju253ZlmwCq/bSTqZk2Y5OaK8K02bDOjWjLyB7ut/GiQMOgt5PfM9mOT C26CU13JH1vT66pm49Rfno2ECR05es70 -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:20 2025 by rpki-client