$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: 8Fta/PnspQe5EhcXEmzPRglzEFkPdEyXWw4GEDasEfE= Subject key identifier: C4:F2:B3:62:64:65:F3:25:38:91:71:AD:08:4F:F0:2A:26:85:46:D7 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 082F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 081D Signing time: Sat 14 Jun 2025 20:38:41 +0000 Manifest this update: Sat 14 Jun 2025 20:38:40 +0000 Manifest next update: Sat 21 Jun 2025 20:38:40 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: EEuPU9RFF3qlQW2D+0qCB0jnD1my8Ng9rWFQWs9SO6E=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Jun 14 20:38:40 2025 GMT Not After : Jun 21 20:38:40 2025 GMT Subject: CN=684dddd1-7c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:97:d8:d7:9c:b1:8f:05:a0:27:cf:a1:be: 61:97:7a:19:91:92:4d:8e:d9:58:4e:58:ed:95:43: 09:44:35:e6:ab:b8:f2:16:12:0f:08:88:ad:fd:53: 00:e7:5c:49:20:f2:ff:d2:ab:31:0e:0e:c6:2e:be: ee:28:ff:43:f1:3e:26:2a:bf:a7:98:b3:d3:8a:62: 29:54:84:3f:cd:9d:6b:d6:64:5e:6e:13:de:8a:41: c8:61:f6:09:f7:22:f7:d5:85:f3:7a:e9:c7:16:b6: 26:00:3a:b6:21:a1:ad:26:05:e3:1e:f2:9f:62:71: b9:df:ad:af:fa:56:f7:f4:4b:f8:7d:af:55:dc:85: 13:cc:1d:2a:7c:8d:17:6e:f1:5e:36:4d:7e:c3:a8: e4:17:a2:05:79:c7:b4:9c:32:1f:d3:35:0e:fa:52: 5d:3f:ff:50:60:09:43:6e:f6:f1:cd:83:19:d7:28: 98:08:a7:a3:4d:41:9b:1e:8c:81:9c:11:89:aa:b6: ed:f2:0a:7a:5f:81:e4:01:77:4f:b5:71:b8:8a:60: d5:4a:41:29:34:2c:eb:04:fd:6a:78:8b:c3:50:78: fc:fa:7f:67:a1:c0:df:37:f8:b2:7c:ee:a7:d7:7e: 18:9e:bd:3c:ac:4f:7f:10:38:01:16:b8:03:7b:ad: 85:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F2:B3:62:64:65:F3:25:38:91:71:AD:08:4F:F0:2A:26:85:46:D7 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:21:ed:3f:12:8d:3e:b4:eb:57:03:bc:21:f2:74:33:09:d5: c3:cc:63:71:cb:55:9e:93:44:49:53:77:41:6a:88:cd:25:13: dd:23:2c:2b:d5:25:46:e8:93:79:a0:20:bc:ea:7c:d1:9b:50: db:e3:2b:4c:82:f9:78:e1:a9:71:f3:da:db:30:12:98:17:18: be:1d:e0:14:fc:5e:f2:93:c2:71:86:40:c4:11:1e:8b:a3:cb: 56:10:9a:36:ae:da:ba:ae:e7:3f:b0:3b:48:98:8f:f3:a7:d4: 44:5d:5e:36:a5:48:3e:ea:81:3a:3a:22:f4:56:cc:48:e4:db: 55:85:41:8d:e4:3d:4e:b1:d0:f0:c0:cb:af:d6:1c:bd:bf:66: 47:02:8a:58:98:eb:3e:26:01:c4:17:26:a4:92:2f:5d:91:96: 96:94:9d:71:91:08:f9:52:3d:92:aa:c4:7d:50:4a:cf:55:67: 3a:b6:a9:88:f0:03:7f:f7:05:93:1d:5a:b3:bd:79:c9:23:43: c0:a7:9b:f2:03:18:a8:88:6b:0c:a8:89:15:93:7c:31:0c:11: 7e:90:f3:b4:7e:ed:c0:37:14:ec:15:a9:52:55:83:70:2c:08: ba:1a:2a:52:0d:e9:74:6b:03:3a:bf:6b:c1:67:a5:be:42:46: 07:1d:8a:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwNjE0MjAzODQwWhcNMjUwNjIxMjAzODQwWjAYMRYwFAYD VQQDEw02ODRkZGRkMS03YzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCCX2NecsY8FoCfPob5hl3oZkZJNjtlYTljtlUMJRDXmq7jyFhIPCIit/VMA 51xJIPL/0qsxDg7GLr7uKP9D8T4mKr+nmLPTimIpVIQ/zZ1r1mRebhPeikHIYfYJ 9yL31YXzeunHFrYmADq2IaGtJgXjHvKfYnG5362v+lb39Ev4fa9V3IUTzB0qfI0X bvFeNk1+w6jkF6IFece0nDIf0zUO+lJdP/9QYAlDbvbxzYMZ1yiYCKejTUGbHoyB nBGJqrbt8gp6X4HkAXdPtXG4imDVSkEpNCzrBP1qeIvDUHj8+n9nocDfN/iyfO6n 134Ynr08rE9/EDgBFrgDe62FYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTys2Jk ZfMlOJFxrQhP8ComhUbXMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmIe0/Eo0+tOtXA7wh8nQzCdXDzGNxy1Wek0RJU3dBaojNJRPdIywr 1SVG6JN5oCC86nzRm1Db4ytMgvl44alx89rbMBKYFxi+HeAU/F7yk8JxhkDEER6L o8tWEJo2rtq6ruc/sDtImI/zp9REXV42pUg+6oE6OiL0VsxI5NtVhUGN5D1OsdDw wMuv1hy9v2ZHAopYmOs+JgHEFyakki9dkZaWlJ1xkQj5Uj2SqsR9UErPVWc6tqmI 8AN/9wWTHVqzvXnJI0PAp5vyAxioiGsMqIkVk3wxDBF+kPO0fu3ANxTsFalSVYNw LAi6GipSDel0awM6v2vBZ6W+QkYHHYpd -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:49 2025 by rpki-client