$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: eCTLG+b2Jeg2IjJ+dwAoePKB9RJrxnLZv1GDhwwRxOw= Subject key identifier: E4:41:1F:7C:6D:7C:08:F3:01:F5:B7:6B:92:21:3F:26:8F:7E:96:E5 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0839 Signing time: Fri 08 Aug 2025 21:08:48 +0000 Manifest this update: Fri 08 Aug 2025 21:08:47 +0000 Manifest next update: Fri 15 Aug 2025 21:08:47 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: OFHH3VL9wG8BNyFLQAohmZdZzN56h8/qRDB9bAEunD0=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Aug 8 21:08:47 2025 GMT Not After : Aug 15 21:08:47 2025 GMT Subject: CN=6896675f-a779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:69:10:45:33:e9:bf:93:5f:71:ef:ff:2d: db:26:66:24:3e:fb:77:d5:5b:54:75:16:36:d9:35: 93:f1:33:f5:55:82:4a:82:00:c0:77:6f:b4:0e:9d: df:de:bf:a9:ae:c0:8d:06:be:03:2c:aa:c1:c8:06: a4:c9:d2:18:aa:61:bc:8e:8d:fa:e8:96:45:de:17: 6d:2a:a1:16:cb:e8:d2:ad:58:b7:76:e3:42:83:f6: f7:2b:e1:89:32:19:8c:94:b6:fb:59:52:54:0f:94: ae:c4:54:a7:af:2f:97:fa:36:37:40:88:9d:08:74: 9a:04:7e:4f:ac:74:44:90:43:03:61:2b:06:e9:e1: 26:65:32:18:b3:10:71:be:73:2b:81:3e:c4:53:1a: 69:e6:fe:a1:b1:cf:6d:bb:bf:ed:6d:d5:72:2e:bb: a2:71:e4:59:93:5f:5c:fc:0f:08:01:ff:73:3c:c8: 76:1c:0b:c0:3f:03:9e:8b:66:bb:5f:98:4c:ca:a4: 7f:ab:b3:9b:49:9d:23:d4:26:2c:c4:a1:d6:e0:99: ce:30:4c:b2:55:a5:ca:3a:03:a2:aa:80:2e:4f:b2: 63:68:35:87:60:29:f3:a4:b9:32:81:f6:8d:ca:a5: bb:79:e8:98:d2:57:c6:c6:e0:a1:e5:46:dc:05:98: 80:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:41:1F:7C:6D:7C:08:F3:01:F5:B7:6B:92:21:3F:26:8F:7E:96:E5 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:71:81:c3:89:c6:55:e2:68:d3:30:1d:70:8c:4b:ef:af:e1: 4a:00:02:ab:99:d9:81:83:ee:2e:fe:a3:07:ac:fe:b8:ef:2b: 45:75:78:4f:35:b3:f4:ab:d4:38:d5:9c:85:ed:68:3c:64:a1: 16:4c:24:61:d8:e1:85:3f:e8:2e:c0:53:4d:49:d2:03:67:97: 46:e4:cb:6e:67:61:85:27:48:20:e5:7d:72:14:ed:55:68:a9: 89:7a:29:03:c0:7f:7b:6e:83:a2:f0:62:69:5a:e7:f0:7d:02: ee:63:32:4e:cd:a1:81:f3:91:74:69:1a:ce:16:b5:8c:68:01: f2:6d:8b:8b:99:30:4d:3e:f0:7e:aa:79:80:8a:8d:88:78:4c: 5f:37:4c:50:4b:96:e7:b3:d8:33:11:cd:64:58:50:f5:56:ab: 67:e6:92:46:76:18:e6:e2:1a:8a:b3:f3:33:55:67:8e:72:57: 2a:dc:d3:e5:fc:3c:66:6c:8b:8a:5e:73:01:01:d2:ff:e9:a2: 29:83:2d:b6:f6:06:73:e6:7b:59:f3:df:9f:f2:17:22:27:a7: b8:91:40:20:a7:67:33:ef:1b:8c:ac:a6:d3:92:40:8d:ef:56: 80:a2:4a:8e:c7:e2:39:f6:d5:ef:cb:24:6d:50:6b:4d:ab:df: f0:09:d3:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwODA4MjEwODQ3WhcNMjUwODE1MjEwODQ3WjAYMRYwFAYD VQQDEw02ODk2Njc1Zi1hNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo1pEEUz6b+TX3Hv/y3bJmYkPvt31VtUdRY22TWT8TP1VYJKggDAd2+0Dp3f 3r+prsCNBr4DLKrByAakydIYqmG8jo366JZF3hdtKqEWy+jSrVi3duNCg/b3K+GJ MhmMlLb7WVJUD5SuxFSnry+X+jY3QIidCHSaBH5PrHREkEMDYSsG6eEmZTIYsxBx vnMrgT7EUxpp5v6hsc9tu7/tbdVyLruiceRZk19c/A8IAf9zPMh2HAvAPwOei2a7 X5hMyqR/q7ObSZ0j1CYsxKHW4JnOMEyyVaXKOgOiqoAuT7JjaDWHYCnzpLkygfaN yqW7eeiY0lfGxuCh5UbcBZiAhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORBH3xt fAjzAfW3a5IhPyaPfpblMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhcYHDicZV4mjTMB1wjEvvr+FKAAKrmdmBg+4u/qMHrP647ytFdXhP NbP0q9Q41ZyF7Wg8ZKEWTCRh2OGFP+guwFNNSdIDZ5dG5MtuZ2GFJ0gg5X1yFO1V aKmJeikDwH97boOi8GJpWufwfQLuYzJOzaGB85F0aRrOFrWMaAHybYuLmTBNPvB+ qnmAio2IeExfN0xQS5bns9gzEc1kWFD1Vqtn5pJGdhjm4hqKs/MzVWeOclcq3NPl /DxmbIuKXnMBAdL/6aIpgy229gZz5ntZ89+f8hciJ6e4kUAgp2cz7xuMrKbTkkCN 71aAokqOx+I59tXvyyRtUGtNq9/wCdNQ -----END CERTIFICATE-----Generated at Sat Aug 9 22:49:11 2025 by rpki-client