$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: ntaP2JscA38afIY7ktO6WZRxFCigUBPE8DocUu4YKXU= Subject key identifier: 30:5E:ED:E7:75:C5:B2:46:D9:D5:1A:25:1D:DF:42:E0:38:F5:0B:C5 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 080C Signing time: Sat 10 May 2025 20:35:15 +0000 Manifest this update: Sat 10 May 2025 20:35:14 +0000 Manifest next update: Sat 17 May 2025 20:35:14 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: t/P72i/JKXpCu6APHE9gEIY2s1l4zPa47BAeWur5vPg=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: May 10 20:35:14 2025 GMT Not After : May 17 20:35:14 2025 GMT Subject: CN=681fb882-4bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:09:a6:51:f0:92:d7:cb:fb:1a:61:e0:a7:87: fa:98:6d:80:19:38:a1:cf:f6:4c:4d:99:13:d4:d8: 1b:24:05:86:c7:20:87:b5:7f:da:47:85:b6:26:e0: 89:f5:6d:30:7c:89:b0:35:2b:40:69:0a:3d:98:f5: ca:af:cd:63:90:b2:d8:34:c3:71:74:d2:7c:07:6e: 8c:b9:c3:cf:90:3f:98:b7:98:05:fa:40:bc:fa:64: 4f:ed:9a:e9:1a:53:2e:c8:f4:05:3f:db:f1:d4:01: d9:69:6f:7e:55:6f:72:45:c7:e8:c7:9f:d5:b5:54: ba:d0:4c:99:45:a1:13:e4:ac:36:f6:8e:1c:ec:5b: ac:7a:ff:88:af:f1:bf:be:c0:ff:ce:8e:b9:db:e3: 7a:65:05:05:7a:f0:12:63:44:e1:3e:4c:f5:3d:bb: 17:51:d6:c5:9d:9e:d5:b6:7b:0d:10:31:26:ad:4e: 1a:31:6d:e3:2d:6f:c4:2c:6b:22:b1:78:f0:bf:65: eb:1b:62:85:8c:ef:b9:04:08:4c:aa:11:39:23:d9: 95:85:05:6d:a3:ba:fd:9d:64:2b:9d:45:36:8e:6f: 3d:9b:2d:ba:a2:a0:a8:f4:d2:d1:7e:af:a8:88:ea: c7:a0:20:ba:ac:2e:6f:76:33:c3:c9:16:8e:67:7b: 5d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:5E:ED:E7:75:C5:B2:46:D9:D5:1A:25:1D:DF:42:E0:38:F5:0B:C5 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:73:07:83:42:9a:4f:13:38:72:f9:aa:0b:3c:74:be:cc:7e: 5f:4a:fd:cc:87:b4:1c:f8:0e:13:72:a1:23:a1:4c:d8:1c:9f: 56:45:31:71:04:ef:5d:47:88:d7:ee:b5:3e:72:de:31:57:de: ab:72:11:91:9e:87:55:73:38:17:89:df:e6:d6:99:74:ca:b0: ce:0e:10:ad:60:8c:af:b1:cf:86:c8:ee:3e:ef:8a:a7:6a:49: b4:33:b5:a2:17:43:64:28:48:26:06:2d:ae:17:65:73:a6:c4: 95:bd:cb:7d:45:62:84:be:88:b0:5c:1a:d4:7c:fd:85:87:aa: 7c:01:de:af:e4:8b:26:38:c1:33:a7:0b:33:68:da:df:69:7e: 22:62:ff:43:7e:80:a8:7e:4b:1d:d0:4d:4a:76:66:6d:d1:c8: ce:50:37:4f:a6:7a:ec:97:24:8e:9e:7f:5e:67:8f:c3:f3:45: 7d:01:18:23:54:b6:ef:af:82:38:06:45:e7:e9:7b:d8:24:ea: 9d:8a:d2:f3:1c:ae:76:24:25:e0:2d:f0:67:93:ba:31:2c:cd: c1:82:47:ee:22:a4:be:18:81:4f:ff:29:8a:58:8f:00:e9:1c: 35:36:92:12:70:91:ec:4a:84:fa:7d:95:a1:64:a6:f8:cf:1a: d9:4b:93:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwNTEwMjAzNTE0WhcNMjUwNTE3MjAzNTE0WjAYMRYwFAYD VQQDEw02ODFmYjg4Mi00YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AmmUfCS18v7GmHgp4f6mG2AGTihz/ZMTZkT1NgbJAWGxyCHtX/aR4W2JuCJ 9W0wfImwNStAaQo9mPXKr81jkLLYNMNxdNJ8B26MucPPkD+Yt5gF+kC8+mRP7Zrp GlMuyPQFP9vx1AHZaW9+VW9yRcfox5/VtVS60EyZRaET5Kw29o4c7Fusev+Ir/G/ vsD/zo652+N6ZQUFevASY0ThPkz1PbsXUdbFnZ7VtnsNEDEmrU4aMW3jLW/ELGsi sXjwv2XrG2KFjO+5BAhMqhE5I9mVhQVto7r9nWQrnUU2jm89my26oqCo9NLRfq+o iOrHoCC6rC5vdjPDyRaOZ3tdZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBe7ed1 xbJG2dUaJR3fQuA49QvFMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqcweDQppPEzhy+aoLPHS+zH5fSv3Mh7Qc+A4TcqEjoUzYHJ9WRTFx BO9dR4jX7rU+ct4xV96rchGRnodVczgXid/m1pl0yrDODhCtYIyvsc+GyO4+74qn akm0M7WiF0NkKEgmBi2uF2VzpsSVvct9RWKEvoiwXBrUfP2Fh6p8Ad6v5IsmOMEz pwszaNrfaX4iYv9DfoCofksd0E1KdmZt0cjOUDdPpnrslySOnn9eZ4/D80V9ARgj VLbvr4I4BkXn6XvYJOqditLzHK52JCXgLfBnk7oxLM3BgkfuIqS+GIFP/ymKWI8A 6Rw1NpIScJHsSoT6fZWhZKb4zxrZS5Ot -----END CERTIFICATE-----Generated at Mon May 12 19:48:40 2025 by rpki-client