$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: qjRtFAzrIQlRqERdQInH9rpCpynFPYVSeLn+yabM6/E= Subject key identifier: C6:B9:34:E4:BA:CC:E5:AF:CE:66:0A:1A:E5:81:99:69:E7:10:54:4D Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 087D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0868 Signing time: Tue 04 Nov 2025 20:45:02 +0000 Manifest this update: Tue 04 Nov 2025 20:45:02 +0000 Manifest next update: Tue 11 Nov 2025 20:45:02 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: +Em2J87hcSk+tOoeWvy51/lrL3gL9QzyHuGMJDF5pDA=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Nov 4 20:45:02 2025 GMT Not After : Nov 11 20:45:02 2025 GMT Subject: CN=690a65ce-0015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2b:91:ee:1b:34:1d:d5:19:e8:f1:c6:7a:74: 09:b4:29:cc:ba:73:51:51:f0:7b:5a:07:3f:cc:d2: be:ca:52:b3:0e:10:71:85:a1:66:61:65:dc:a9:2c: 75:3d:f4:53:8b:3f:8a:7a:b1:ba:df:f5:9c:89:e9: 2a:14:0d:9e:25:ed:fb:27:de:ca:82:d4:2b:4b:be: 29:e3:fa:cf:f0:39:f3:1d:f8:12:94:96:7e:13:df: ff:fc:07:53:9a:ca:76:b9:c0:b6:c2:bd:53:72:5a: 6d:07:29:0a:4d:5e:1b:7d:1b:67:5a:fb:6e:53:1b: 7d:74:10:33:2d:de:54:08:27:8a:1d:7e:a8:6e:32: 63:a0:02:49:34:26:40:09:ce:d0:a6:32:85:81:f3: af:35:d0:8d:55:0f:33:75:e9:99:e4:5e:00:5d:36: 75:8c:45:43:db:85:93:15:a3:11:39:3c:10:08:64: 82:6a:fb:0c:01:b8:a7:36:ee:f0:0b:88:ca:6f:7b: 0e:4b:5a:52:bc:c4:fe:aa:54:f2:62:1d:5d:50:b7: ff:fb:8e:de:97:73:17:2a:41:00:5b:34:0c:ff:48: e8:44:80:10:31:18:13:df:a5:b9:e0:79:7e:6f:f9: b4:2b:b4:a7:75:4b:d6:54:d5:22:b6:ca:11:33:5b: d3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B9:34:E4:BA:CC:E5:AF:CE:66:0A:1A:E5:81:99:69:E7:10:54:4D X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:56:31:cb:63:64:18:4e:16:6b:8e:28:39:9d:1c:ce:3d:79: b0:4a:f4:6a:10:d0:08:01:af:c4:cb:64:9a:1d:32:fe:33:32: 51:af:bb:51:11:91:02:5e:f3:4d:b0:d4:55:d1:4f:29:39:5a: 0b:d1:d7:73:79:d8:cd:da:d4:85:59:a2:10:73:2b:ff:03:9e: 72:a8:ce:0b:48:59:96:bb:38:12:9b:bf:d7:01:15:ad:ff:b9: e0:a0:dd:41:e2:90:b8:f7:d4:0c:44:26:e4:4c:03:b9:81:6c: 08:50:5a:5c:25:95:c6:bb:84:87:3f:4d:fe:33:7e:db:c5:83: c3:08:db:39:d6:cc:83:88:f8:dd:c3:f7:60:ba:b9:0e:40:43: de:f7:3c:5f:23:d4:c9:33:1d:28:12:8d:d5:94:a5:cb:13:84: 43:e8:b1:45:4e:6f:d8:29:ac:e6:f5:88:f5:b1:14:bf:d5:03: 26:6f:e1:fa:eb:75:6a:02:0f:e7:c5:cc:78:01:dd:30:d3:22: f9:ea:65:a9:0f:59:d0:2e:e0:c7:d6:c3:2c:67:0f:86:7e:d2: 42:6d:47:6b:fd:37:9a:54:e3:4a:fe:01:2c:b3:21:d5:8f:ad: 23:3d:5a:ba:ea:72:6d:05:c0:34:fc:b5:07:a2:a0:b9:8b:00: 47:1c:d9:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUxMTA0MjA0NTAyWhcNMjUxMTExMjA0NTAyWjAYMRYwFAYD VQQDEw02OTBhNjVjZS0wMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yuR7hs0HdUZ6PHGenQJtCnMunNRUfB7Wgc/zNK+ylKzDhBxhaFmYWXcqSx1 PfRTiz+KerG63/WciekqFA2eJe37J97KgtQrS74p4/rP8DnzHfgSlJZ+E9///AdT msp2ucC2wr1TclptBykKTV4bfRtnWvtuUxt9dBAzLd5UCCeKHX6objJjoAJJNCZA Cc7QpjKFgfOvNdCNVQ8zdemZ5F4AXTZ1jEVD24WTFaMROTwQCGSCavsMAbinNu7w C4jKb3sOS1pSvMT+qlTyYh1dULf/+47el3MXKkEAWzQM/0joRIAQMRgT36W54Hl+ b/m0K7SndUvWVNUitsoRM1vTHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMa5NOS6 zOWvzmYKGuWBmWnnEFRNMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDVjHLY2QYThZrjig5nRzOPXmwSvRqENAIAa/Ey2SaHTL+MzJRr7tR EZECXvNNsNRV0U8pOVoL0ddzedjN2tSFWaIQcyv/A55yqM4LSFmWuzgSm7/XARWt /7ngoN1B4pC499QMRCbkTAO5gWwIUFpcJZXGu4SHP03+M37bxYPDCNs51syDiPjd w/dgurkOQEPe9zxfI9TJMx0oEo3VlKXLE4RD6LFFTm/YKazm9Yj1sRS/1QMmb+H6 63VqAg/nxcx4Ad0w0yL56mWpD1nQLuDH1sMsZw+GftJCbUdr/TeaVONK/gEssyHV j60jPVq66nJtBcA0/LUHoqC5iwBHHNnf -----END CERTIFICATE-----Generated at Wed Nov 5 16:29:59 2025 by rpki-client