$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: Jry9lKWCduM97EdXNLdBuKfVOtEI9XoT8fV/KIy7mrE= Subject key identifier: C4:56:3B:1B:F2:9B:5D:83:ED:2A:25:A6:D5:46:B8:0E:BD:62:16:78 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 08C4 Signing time: Thu 16 Apr 2026 20:22:32 +0000 Manifest this update: Thu 16 Apr 2026 20:22:32 +0000 Manifest next update: Thu 23 Apr 2026 20:22:32 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: J1OlSMV4BKST9+VcesXumlfGF2HlRhrmH+aM12BD+n4=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: aZVjwOBzEzdNCEW5XvUhfqb5dAMw3PX/S+WhGKoCahs=) 3: B2E74042602811EF90548827C4F9AE02.roa (hash: oTkK2i8CrxhUFMPdA2ToXRh9tqOM2ExbKiaxoXzOYoA=) 4: 8AF33E36160E11F195136F2C2B3D8C67.roa (hash: 3Qf43LejVMYObXq2xEMUis8BZYPMSWI0XFlk5JiZduA=) 5: EA0592C233BC11F18E15C13BAA833773.roa (hash: 0hJANdnST2Bxr7dBtneDjlXCF8SapdC+A0SzQCXlilg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Apr 16 20:22:32 2026 GMT Not After : Apr 23 20:22:32 2026 GMT Subject: CN=69e14508-dcea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bf:0c:ce:68:05:af:a1:5d:50:c1:7e:3c:03: 75:16:65:79:0d:ab:f7:5e:a5:d0:4b:fc:15:63:8c: 9f:75:6a:b2:98:2f:40:38:4b:40:0d:fa:40:7a:c1: 6a:b3:1d:47:dc:67:04:e3:99:ff:a0:70:80:e8:3d: a0:32:b3:4f:6a:dd:7a:32:be:41:0a:ad:b9:ea:b7: cf:f7:e8:33:54:bc:00:d9:c3:97:87:9f:49:dd:d7: f7:87:f4:b0:d4:7f:de:5a:f4:d5:00:2d:16:d1:43: a7:84:bf:25:3d:8f:e5:4e:c6:ab:f3:aa:c1:2b:b8: 32:75:31:2f:63:e2:46:97:06:40:27:67:7d:4b:1b: 34:52:d8:30:80:f9:63:ef:a4:b3:3f:23:c8:fe:c5: 4e:b2:3c:22:72:9a:fa:76:28:a1:d3:fd:a0:81:c8: 4d:fa:ca:49:98:d6:c0:2d:b8:8c:26:77:88:7c:18: f9:d7:d2:5c:27:63:8b:40:de:fd:9e:23:da:3a:15: 44:c6:0c:10:ef:17:ea:2b:dc:88:66:aa:b5:9a:a5: 8d:cd:12:4b:ed:b6:29:81:ce:bd:91:d7:1e:0c:7d: 27:11:03:53:10:cc:d1:50:c3:aa:62:0a:7e:1d:6d: 0a:4f:c3:bf:01:28:cd:2b:c5:9d:75:0a:02:02:96: fb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:56:3B:1B:F2:9B:5D:83:ED:2A:25:A6:D5:46:B8:0E:BD:62:16:78 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:09:7e:bc:de:70:90:73:ff:69:17:d0:c2:57:4f:87:6b:f6: 89:22:fd:25:d6:22:ff:66:8d:5b:3d:37:2a:61:d3:05:04:62: f7:9e:22:2f:9c:4a:41:93:6e:0e:a5:59:ce:9b:66:10:06:bf: 9d:3a:c9:0b:22:0f:12:a2:fa:a7:1f:bd:9e:0b:38:5b:aa:87: 2c:d3:72:e0:6a:5a:06:99:f5:e9:c3:a0:c5:94:9c:f0:c5:a2: 32:9d:50:ef:ba:19:56:e9:7b:1d:af:1a:cd:0b:4b:f2:39:12: 37:74:d1:c6:b0:21:92:ec:8f:e1:8b:cc:94:1c:b6:83:6e:ec: 89:be:ff:6f:90:4c:16:63:8e:c4:1b:75:88:a6:68:3c:80:c3: ed:1c:fd:f6:02:c6:09:91:23:fa:bb:15:c1:96:cf:81:11:0b: fc:4f:af:dd:c6:10:d7:89:12:9e:87:47:a6:e1:ac:0d:e3:c5: a7:bb:04:64:ed:46:5c:11:17:ac:c0:fc:c0:4f:a7:5b:44:87: ad:29:3c:68:77:a2:46:60:33:82:a8:88:55:f5:fd:f0:a7:c9: ae:69:e0:94:51:d1:4f:77:77:fe:b6:93:f6:3a:34:c4:09:fc: 11:f9:0f:57:51:f0:3c:00:fc:e7:21:00:e0:8d:1f:47:d2:12: a4:5c:d8:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjYwNDE2MjAyMjMyWhcNMjYwNDIzMjAyMjMyWjAYMRYwFAYD VQQDEw02OWUxNDUwOC1kY2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyr8MzmgFr6FdUMF+PAN1FmV5Dav3XqXQS/wVY4yfdWqymC9AOEtADfpAesFq sx1H3GcE45n/oHCA6D2gMrNPat16Mr5BCq256rfP9+gzVLwA2cOXh59J3df3h/Sw 1H/eWvTVAC0W0UOnhL8lPY/lTsar86rBK7gydTEvY+JGlwZAJ2d9Sxs0UtgwgPlj 76SzPyPI/sVOsjwicpr6diih0/2ggchN+spJmNbALbiMJneIfBj519JcJ2OLQN79 niPaOhVExgwQ7xfqK9yIZqq1mqWNzRJL7bYpgc69kdceDH0nEQNTEMzRUMOqYgp+ HW0KT8O/ASjNK8WddQoCApb7/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRWOxvy m12D7SolptVGuA69YhZ4MB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAswl+vN5wkHP/aRfQwldPh2v2iSL9JdYi/2aNWz03KmHTBQRi954iL5xKQZNu DqVZzptmEAa/nTrJCyIPEqL6px+9ngs4W6qHLNNy4GpaBpn16cOgxZSc8MWiMp1Q 77oZVul7Ha8azQtL8jkSN3TRxrAhkuyP4YvMlBy2g27sib7/b5BMFmOOxBt1iKZo PIDD7Rz99gLGCZEj+rsVwZbPgREL/E+v3cYQ14kSnodHpuGsDePFp7sEZO1GXBEX rMD8wE+nW0SHrSk8aHeiRmAzgqiIVfX98KfJrmnglFHRT3d3/raT9jo0xAn8EfkP V1HwPAD85yEA4I0fR9ISpFzYWA== -----END CERTIFICATE-----Generated at Fri Apr 17 05:33:32 2026 by rpki-client