$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: Eb7iA0clt3k1JoETOwNyUwffoHj8i9XfASBtR1Kaymk= Subject key identifier: 2B:3F:04:4D:C1:C6:3C:24:2A:FB:86:A6:93:56:91:74:DB:D4:BF:28 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0852 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0840 Signing time: Fri 22 Aug 2025 20:54:15 +0000 Manifest this update: Fri 22 Aug 2025 20:54:15 +0000 Manifest next update: Fri 29 Aug 2025 20:54:15 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: +YvTF3+xj/k3qiSvKfHdVLd6017qMgQ+GN2qv3huOOU=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2130 (0x852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Aug 22 20:54:15 2025 GMT Not After : Aug 29 20:54:15 2025 GMT Subject: CN=68a8d8f7-259e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:dc:97:76:34:60:af:c8:32:8d:13:d0:94: f9:25:a2:47:25:a4:13:24:a1:d0:e3:2f:88:de:7a: f0:e3:fe:e1:5e:6b:d7:00:e1:b8:f9:38:d5:94:b8: bb:62:c0:83:b6:06:fe:98:3c:b0:05:14:2d:5a:26: bf:c7:36:37:a2:07:d4:31:34:d7:21:e4:41:b7:75: f2:c6:9a:f3:d0:09:4f:e9:40:4f:53:06:f1:71:15: 10:85:5c:cf:96:30:12:3d:e0:e5:ac:28:d6:31:f8: df:7c:ba:b9:dc:54:5a:1b:ae:e3:4e:ad:10:32:63: 64:d4:1f:f9:44:d1:13:3f:9c:f9:07:6b:01:83:7f: 0e:8a:2a:2c:2e:cd:c4:65:fc:48:de:a0:a9:50:7d: df:c7:69:1a:44:76:fb:ca:6d:d5:10:1d:b8:89:99: 28:29:d9:a7:41:ce:79:8f:28:27:e8:b3:89:c3:72: 7b:0c:e7:a3:46:8e:0e:77:58:af:18:68:40:bd:85: eb:08:f2:9d:6a:40:28:f2:42:8c:e3:ff:57:17:a2: 80:b6:42:3a:56:af:b4:b5:0d:ac:54:2f:ed:1a:d6: d7:23:9d:fb:3f:1a:a5:42:da:45:8a:63:04:01:8a: 74:b1:b6:e7:49:6d:9f:57:f2:1f:f7:d5:13:45:86: d6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3F:04:4D:C1:C6:3C:24:2A:FB:86:A6:93:56:91:74:DB:D4:BF:28 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:06:1e:09:11:a3:47:73:e0:fb:ce:ec:af:51:e5:92:9d:dc: 18:56:0f:a6:32:31:47:e2:ee:70:3d:92:23:b7:0e:8a:32:29: f5:6e:c9:34:25:f5:21:5f:ce:1d:b2:b5:a8:85:9b:7e:16:f4: d5:57:c1:e9:85:14:24:f6:30:98:8f:0c:28:f7:fe:fc:12:c1: 6a:be:53:18:e1:eb:3d:08:df:e3:cd:1e:7b:08:53:29:66:df: 16:b5:51:61:45:83:e1:e2:72:33:aa:d1:2f:a4:bb:ea:6c:6a: 29:70:c7:4e:41:18:49:98:5a:7a:6b:30:04:b0:20:ce:a3:4f: 36:02:8a:df:d8:cc:5d:c3:d0:3b:b9:4d:40:4e:e7:c4:76:fb: 4a:8a:3a:58:a1:76:24:47:1e:29:2f:6d:d5:d4:41:95:b0:00: eb:0c:ac:37:dd:72:db:71:2f:74:25:bb:48:26:28:ba:eb:04: ee:c5:10:ac:fe:85:07:a7:71:5c:05:4a:63:7e:b7:6f:8c:4a: ce:83:1a:ff:77:3e:6c:63:20:d5:93:ea:f5:cd:3f:cf:63:cf: da:29:28:05:75:64:d5:a3:87:ae:ae:b9:75:18:9f:2f:c0:14: 30:f7:ad:46:da:5c:45:1c:7d:5a:bd:c3:8e:a0:9a:52:b3:5f: d7:28:1c:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwODIyMjA1NDE1WhcNMjUwODI5MjA1NDE1WjAYMRYwFAYD VQQDEw02OGE4ZDhmNy0yNTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW/cl3Y0YK/IMo0T0JT5JaJHJaQTJKHQ4y+I3nrw4/7hXmvXAOG4+TjVlLi7 YsCDtgb+mDywBRQtWia/xzY3ogfUMTTXIeRBt3Xyxprz0AlP6UBPUwbxcRUQhVzP ljASPeDlrCjWMfjffLq53FRaG67jTq0QMmNk1B/5RNETP5z5B2sBg38OiiosLs3E ZfxI3qCpUH3fx2kaRHb7ym3VEB24iZkoKdmnQc55jygn6LOJw3J7DOejRo4Od1iv GGhAvYXrCPKdakAo8kKM4/9XF6KAtkI6Vq+0tQ2sVC/tGtbXI537PxqlQtpFimME AYp0sbbnSW2fV/If99UTRYbWWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCs/BE3B xjwkKvuGppNWkXTb1L8oMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbBh4JEaNHc+D7zuyvUeWSndwYVg+mMjFH4u5wPZIjtw6KMin1bsk0 JfUhX84dsrWohZt+FvTVV8HphRQk9jCYjwwo9/78EsFqvlMY4es9CN/jzR57CFMp Zt8WtVFhRYPh4nIzqtEvpLvqbGopcMdOQRhJmFp6azAEsCDOo082Aorf2Mxdw9A7 uU1ATufEdvtKijpYoXYkRx4pL23V1EGVsADrDKw33XLbcS90JbtIJii66wTuxRCs /oUHp3FcBUpjfrdvjErOgxr/dz5sYyDVk+r1zT/PY8/aKSgFdWTVo4eurrl1GJ8v wBQw961G2lxFHH1avcOOoJpSs1/XKBwH -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:43 2025 by rpki-client