$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: VC3H1jkSvEPTUkSraxA/aghwtmf2NuJNx4nxWeqkH5c= Subject key identifier: 2D:20:43:1D:E8:61:9A:6C:96:6A:9F:F4:84:3D:18:B5:5F:2E:EC:CC Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 08D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 08B5 Signing time: Tue 24 Mar 2026 20:15:34 +0000 Manifest this update: Tue 24 Mar 2026 20:15:34 +0000 Manifest next update: Tue 31 Mar 2026 20:15:34 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: AlYqpN3Uy8D+306xHdY567hpjOzKSU17IpztF5zm8Xc=) 2: 8AF33E36160E11F195136F2C2B3D8C67.roa (hash: 3Qf43LejVMYObXq2xEMUis8BZYPMSWI0XFlk5JiZduA=) 3: B2E74042602811EF90548827C4F9AE02.roa (hash: oTkK2i8CrxhUFMPdA2ToXRh9tqOM2ExbKiaxoXzOYoA=) 4: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: aZVjwOBzEzdNCEW5XvUhfqb5dAMw3PX/S+WhGKoCahs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2257 (0x8d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Mar 24 20:15:34 2026 GMT Not After : Mar 31 20:15:34 2026 GMT Subject: CN=69c2f0e6-a0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e2:01:f6:9c:1f:44:ee:87:d5:54:ad:0b:e7: 4e:d3:3b:5f:a9:bb:a4:dc:03:61:e6:01:38:21:5d: 41:35:03:34:7c:6e:95:d5:89:b4:b9:9a:e3:15:dd: 82:e9:3f:e5:2a:28:e7:a1:ad:53:47:89:68:e5:bc: 67:9e:13:3f:53:e3:c4:4a:15:ff:91:ec:ad:6f:1d: 67:56:18:85:2b:eb:c2:61:a6:72:27:54:1a:6c:31: a5:cc:f1:12:83:93:4f:1f:05:44:7a:37:60:98:4a: 8d:0a:ec:fc:f8:58:2b:8b:95:11:cf:71:cc:e0:9d: c1:80:db:e5:af:9d:22:2e:78:de:aa:3c:65:b4:48: 94:34:5d:b5:aa:51:26:48:4a:7b:3a:90:0b:8b:7b: 52:c2:27:d7:e3:49:49:5a:2a:f5:df:6e:97:e3:b8: 53:95:54:38:46:98:c9:97:f6:c6:9b:6d:5c:9c:e9: 06:81:29:89:69:9e:3f:32:f2:b3:d2:2f:fe:f5:67: 9c:41:7e:40:f5:32:ef:1b:da:b3:bc:d6:28:14:6f: c1:af:9a:35:54:35:8c:a4:50:8c:80:fe:6f:0b:dc: 6c:81:df:17:7a:0e:bf:5e:0a:e6:2a:ac:c5:f3:34: 20:17:a0:78:5e:da:f4:71:dd:f6:3d:0c:62:8e:58: 96:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:20:43:1D:E8:61:9A:6C:96:6A:9F:F4:84:3D:18:B5:5F:2E:EC:CC X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c1:bb:d6:17:83:61:8a:cc:f8:7a:fd:dd:d7:e2:7e:db:04: 76:be:12:c5:96:9b:dc:16:8d:f8:a1:f0:7e:d3:65:01:11:74: 5d:eb:19:77:1f:0b:8d:ee:0a:c8:a9:25:95:d9:ba:c3:10:41: 3e:e1:6e:42:6f:88:26:84:74:ea:0e:c1:10:8f:41:f7:fc:a9: 80:85:8f:38:fb:da:de:cf:05:c8:58:f0:95:b5:68:14:cd:de: ed:80:01:5c:f0:28:e8:fd:b0:4f:93:a5:ff:7f:a6:01:47:13: 15:17:df:8f:2f:c3:50:f1:79:8a:a3:85:74:0d:ec:66:46:3b: 1b:fd:5f:88:ca:48:28:65:60:a5:fa:78:d3:f4:83:a0:54:2e: a4:fa:a3:a9:44:03:28:6f:ec:1e:89:f1:54:60:aa:bb:51:4a: 66:4c:15:d3:37:6a:73:8d:f2:34:d4:7a:f9:c4:65:47:4c:93: 81:3e:2c:a7:cf:af:4c:c9:9f:05:b8:d2:94:11:17:b3:4f:95: b5:f3:98:5f:e1:e5:44:8a:59:56:f0:40:b2:35:b5:06:a8:d1: ef:b9:ab:34:29:2c:9d:c2:18:a3:39:f6:d9:1f:30:5d:a6:8b: 72:b6:c8:07:66:74:5c:a1:64:c1:a4:f3:da:ac:7f:41:ad:f2: 81:c2:45:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjYwMzI0MjAxNTM0WhcNMjYwMzMxMjAxNTM0WjAYMRYwFAYD VQQDEw02OWMyZjBlNi1hMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteIB9pwfRO6H1VStC+dO0ztfqbuk3ANh5gE4IV1BNQM0fG6V1Ym0uZrjFd2C 6T/lKijnoa1TR4lo5bxnnhM/U+PEShX/keytbx1nVhiFK+vCYaZyJ1QabDGlzPES g5NPHwVEejdgmEqNCuz8+Fgri5URz3HM4J3BgNvlr50iLnjeqjxltEiUNF21qlEm SEp7OpALi3tSwifX40lJWir1326X47hTlVQ4RpjJl/bGm21cnOkGgSmJaZ4/MvKz 0i/+9WecQX5A9TLvG9qzvNYoFG/Br5o1VDWMpFCMgP5vC9xsgd8Xeg6/XgrmKqzF 8zQgF6B4Xtr0cd32PQxijliWhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC0gQx3o YZpslmqf9IQ9GLVfLuzMMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAL8G71heDYYrM+Hr93dfiftsEdr4SxZab3BaN+KHwftNlARF0XesZdx8Lje4K yKklldm6wxBBPuFuQm+IJoR06g7BEI9B9/ypgIWPOPva3s8FyFjwlbVoFM3e7YAB XPAo6P2wT5Ol/3+mAUcTFRffjy/DUPF5iqOFdA3sZkY7G/1fiMpIKGVgpfp40/SD oFQupPqjqUQDKG/sHonxVGCqu1FKZkwV0zdqc43yNNR6+cRlR0yTgT4sp8+vTMmf BbjSlBEXs0+VtfOYX+HlRIpZVvBAsjW1BqjR77mrNCksncIYozn22R8wXaaLcrbI B2Z0XKFkwaTz2qx/Qa3ygcJFRQ== -----END CERTIFICATE-----Generated at Thu Mar 26 09:59:47 2026 by rpki-client