
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json)
Hash identifier: +LDokVK+VZoHoeBiB3p8i6CtCsv98IUSzS6LJAOwJdw=
Subject key identifier: 34:BB:1F:C5:D2:8E:2B:F6:59:70:ED:B1:C5:4C:81:48:5E:3D:E6:84
Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Certificate serial: 0874
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
Manifest number: 085F
Signing time: Sat 18 Oct 2025 21:51:46 +0000
Manifest this update: Sat 18 Oct 2025 21:51:45 +0000
Manifest next update: Sat 25 Oct 2025 21:51:45 +0000
Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: NDuudAvkVVTBSnkmJkcaTYYxeXrCHMsCTJRIvSf2dxw=)
2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=)
3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=)
4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl
rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 25 Oct 2025 21:51:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2164 (0x874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Validity
Not Before: Oct 18 21:51:45 2025 GMT
Not After : Oct 25 21:51:45 2025 GMT
Subject: CN=68f40bf1-6b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:df:3f:83:3a:eb:b8:2b:63:7a:fa:12:8e:89:
26:cd:8b:cf:b7:33:5c:0f:62:24:e0:15:f7:10:eb:
fc:3a:80:3b:91:f4:77:96:3b:f4:95:ef:f6:76:9a:
d9:86:3f:9e:77:06:71:23:6a:f6:63:31:cf:c4:a8:
55:5f:1d:dc:27:f9:0f:cf:c7:fc:7b:df:da:01:0b:
ba:cf:be:67:3b:8f:33:7c:da:de:58:d8:f9:ed:47:
f1:25:9f:f2:d6:58:cd:8c:66:b9:78:b4:ee:f7:37:
1d:4c:92:b0:25:13:78:a8:8c:b2:48:2c:16:77:9f:
f0:05:2b:4c:88:f7:be:55:80:2a:c4:78:c3:c5:66:
d5:40:4d:c4:be:f7:32:42:24:6d:01:98:9b:29:6f:
34:b1:d4:a0:1d:f8:39:c6:d2:8b:30:0a:92:73:9a:
85:54:bd:f8:9b:68:a1:0d:a3:76:5e:4a:be:1a:92:
ce:d3:58:57:fb:15:c0:45:8a:c2:03:41:42:46:65:
c2:7e:f9:47:c1:29:52:7b:27:d5:96:35:cd:b9:86:
44:13:0a:89:67:34:74:c3:3f:40:1d:e6:5b:5d:e2:
c9:42:0c:ab:d0:1a:7a:04:69:b0:62:76:98:fd:1b:
61:61:46:fa:69:7c:70:91:24:88:7d:3d:da:34:57:
3c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:BB:1F:C5:D2:8E:2B:F6:59:70:ED:B1:C5:4C:81:48:5E:3D:E6:84
X509v3 Authority Key Identifier:
keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0e:88:e7:e4:6d:59:59:12:98:a4:d7:ef:6b:31:3c:69:18:
c2:f3:89:bc:4d:0a:4a:27:c9:0f:ac:1b:4f:c3:59:34:0f:45:
f3:25:d6:f1:8e:8a:66:5e:3e:ad:f4:2c:dd:07:38:6b:e5:71:
25:19:ad:98:35:5e:12:af:67:a8:a5:bb:f6:cd:a9:7f:39:9b:
67:be:50:f0:04:8c:d7:51:0b:90:97:6e:ce:cb:d4:2e:ef:81:
ba:c2:21:e0:23:72:8c:16:6d:b9:36:ef:f4:83:99:7f:02:51:
79:0a:bb:e0:c4:d0:08:f3:eb:15:a6:d4:54:e6:60:a5:d4:7c:
ae:60:d0:26:9b:5b:82:31:97:39:c5:96:96:12:7b:d4:e5:e8:
84:32:54:90:c8:eb:86:72:d7:1b:4f:37:e3:5a:9f:6e:12:3b:
8a:d3:55:d2:c7:91:9f:35:55:4a:56:40:80:66:de:2a:51:c0:
b3:2f:c0:2f:c3:4a:0b:48:b7:03:23:b1:72:64:81:26:88:7c:
04:97:a7:08:b2:db:7e:1b:1b:b5:95:6e:b1:fd:79:b2:f9:62:
f5:c5:71:b5:9c:5e:91:7b:9f:7f:c1:87:ff:bf:24:d0:8c:23:
3f:d9:15:95:82:20:76:27:f1:de:18:27:2c:17:92:49:20:df:
6a:5f:bf:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG
N0NEREZFNzkwHhcNMjUxMDE4MjE1MTQ1WhcNMjUxMDI1MjE1MTQ1WjAYMRYwFAYD
VQQDEw02OGY0MGJmMS02YjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0d8/gzrruCtjevoSjokmzYvPtzNcD2Ik4BX3EOv8OoA7kfR3ljv0le/2dprZ
hj+edwZxI2r2YzHPxKhVXx3cJ/kPz8f8e9/aAQu6z75nO48zfNreWNj57UfxJZ/y
1ljNjGa5eLTu9zcdTJKwJRN4qIyySCwWd5/wBStMiPe+VYAqxHjDxWbVQE3Evvcy
QiRtAZibKW80sdSgHfg5xtKLMAqSc5qFVL34m2ihDaN2Xkq+GpLO01hX+xXARYrC
A0FCRmXCfvlHwSlSeyfVljXNuYZEEwqJZzR0wz9AHeZbXeLJQgyr0Bp6BGmwYnaY
/RthYUb6aXxwkSSIfT3aNFc8HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS7H8XS
jiv2WXDtscVMgUhePeaEMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD
NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf
bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw
C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ
WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu
YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB
CwUAA4IBAQBPDojn5G1ZWRKYpNfvazE8aRjC84m8TQpKJ8kPrBtPw1k0D0XzJdbx
jopmXj6t9CzdBzhr5XElGa2YNV4Sr2eopbv2zal/OZtnvlDwBIzXUQuQl27Oy9Qu
74G6wiHgI3KMFm25Nu/0g5l/AlF5CrvgxNAI8+sVptRU5mCl1HyuYNAmm1uCMZc5
xZaWEnvU5eiEMlSQyOuGctcbTzfjWp9uEjuK01XSx5GfNVVKVkCAZt4qUcCzL8Av
w0oLSLcDI7FyZIEmiHwEl6cIstt+Gxu1lW6x/Xmy+WL1xXG1nF6Re59/wYf/vyTQ
jCM/2RWVgiB2J/HeGCcsF5JJIN9qX79t
-----END CERTIFICATE-----
Generated at Mon Oct 20 19:28:00 2025 by rpki-client