$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: +LDokVK+VZoHoeBiB3p8i6CtCsv98IUSzS6LJAOwJdw= Subject key identifier: 34:BB:1F:C5:D2:8E:2B:F6:59:70:ED:B1:C5:4C:81:48:5E:3D:E6:84 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0874 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 085F Signing time: Sat 18 Oct 2025 21:51:46 +0000 Manifest this update: Sat 18 Oct 2025 21:51:45 +0000 Manifest next update: Sat 25 Oct 2025 21:51:45 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: NDuudAvkVVTBSnkmJkcaTYYxeXrCHMsCTJRIvSf2dxw=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Oct 18 21:51:45 2025 GMT Not After : Oct 25 21:51:45 2025 GMT Subject: CN=68f40bf1-6b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:df:3f:83:3a:eb:b8:2b:63:7a:fa:12:8e:89: 26:cd:8b:cf:b7:33:5c:0f:62:24:e0:15:f7:10:eb: fc:3a:80:3b:91:f4:77:96:3b:f4:95:ef:f6:76:9a: d9:86:3f:9e:77:06:71:23:6a:f6:63:31:cf:c4:a8: 55:5f:1d:dc:27:f9:0f:cf:c7:fc:7b:df:da:01:0b: ba:cf:be:67:3b:8f:33:7c:da:de:58:d8:f9:ed:47: f1:25:9f:f2:d6:58:cd:8c:66:b9:78:b4:ee:f7:37: 1d:4c:92:b0:25:13:78:a8:8c:b2:48:2c:16:77:9f: f0:05:2b:4c:88:f7:be:55:80:2a:c4:78:c3:c5:66: d5:40:4d:c4:be:f7:32:42:24:6d:01:98:9b:29:6f: 34:b1:d4:a0:1d:f8:39:c6:d2:8b:30:0a:92:73:9a: 85:54:bd:f8:9b:68:a1:0d:a3:76:5e:4a:be:1a:92: ce:d3:58:57:fb:15:c0:45:8a:c2:03:41:42:46:65: c2:7e:f9:47:c1:29:52:7b:27:d5:96:35:cd:b9:86: 44:13:0a:89:67:34:74:c3:3f:40:1d:e6:5b:5d:e2: c9:42:0c:ab:d0:1a:7a:04:69:b0:62:76:98:fd:1b: 61:61:46:fa:69:7c:70:91:24:88:7d:3d:da:34:57: 3c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BB:1F:C5:D2:8E:2B:F6:59:70:ED:B1:C5:4C:81:48:5E:3D:E6:84 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:0e:88:e7:e4:6d:59:59:12:98:a4:d7:ef:6b:31:3c:69:18: c2:f3:89:bc:4d:0a:4a:27:c9:0f:ac:1b:4f:c3:59:34:0f:45: f3:25:d6:f1:8e:8a:66:5e:3e:ad:f4:2c:dd:07:38:6b:e5:71: 25:19:ad:98:35:5e:12:af:67:a8:a5:bb:f6:cd:a9:7f:39:9b: 67:be:50:f0:04:8c:d7:51:0b:90:97:6e:ce:cb:d4:2e:ef:81: ba:c2:21:e0:23:72:8c:16:6d:b9:36:ef:f4:83:99:7f:02:51: 79:0a:bb:e0:c4:d0:08:f3:eb:15:a6:d4:54:e6:60:a5:d4:7c: ae:60:d0:26:9b:5b:82:31:97:39:c5:96:96:12:7b:d4:e5:e8: 84:32:54:90:c8:eb:86:72:d7:1b:4f:37:e3:5a:9f:6e:12:3b: 8a:d3:55:d2:c7:91:9f:35:55:4a:56:40:80:66:de:2a:51:c0: b3:2f:c0:2f:c3:4a:0b:48:b7:03:23:b1:72:64:81:26:88:7c: 04:97:a7:08:b2:db:7e:1b:1b:b5:95:6e:b1:fd:79:b2:f9:62: f5:c5:71:b5:9c:5e:91:7b:9f:7f:c1:87:ff:bf:24:d0:8c:23: 3f:d9:15:95:82:20:76:27:f1:de:18:27:2c:17:92:49:20:df: 6a:5f:bf:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUxMDE4MjE1MTQ1WhcNMjUxMDI1MjE1MTQ1WjAYMRYwFAYD VQQDEw02OGY0MGJmMS02YjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d8/gzrruCtjevoSjokmzYvPtzNcD2Ik4BX3EOv8OoA7kfR3ljv0le/2dprZ hj+edwZxI2r2YzHPxKhVXx3cJ/kPz8f8e9/aAQu6z75nO48zfNreWNj57UfxJZ/y 1ljNjGa5eLTu9zcdTJKwJRN4qIyySCwWd5/wBStMiPe+VYAqxHjDxWbVQE3Evvcy QiRtAZibKW80sdSgHfg5xtKLMAqSc5qFVL34m2ihDaN2Xkq+GpLO01hX+xXARYrC A0FCRmXCfvlHwSlSeyfVljXNuYZEEwqJZzR0wz9AHeZbXeLJQgyr0Bp6BGmwYnaY /RthYUb6aXxwkSSIfT3aNFc8HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS7H8XS jiv2WXDtscVMgUhePeaEMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPDojn5G1ZWRKYpNfvazE8aRjC84m8TQpKJ8kPrBtPw1k0D0XzJdbx jopmXj6t9CzdBzhr5XElGa2YNV4Sr2eopbv2zal/OZtnvlDwBIzXUQuQl27Oy9Qu 74G6wiHgI3KMFm25Nu/0g5l/AlF5CrvgxNAI8+sVptRU5mCl1HyuYNAmm1uCMZc5 xZaWEnvU5eiEMlSQyOuGctcbTzfjWp9uEjuK01XSx5GfNVVKVkCAZt4qUcCzL8Av w0oLSLcDI7FyZIEmiHwEl6cIstt+Gxu1lW6x/Xmy+WL1xXG1nF6Re59/wYf/vyTQ jCM/2RWVgiB2J/HeGCcsF5JJIN9qX79t -----END CERTIFICATE-----Generated at Mon Oct 20 19:28:00 2025 by rpki-client