$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: zSUv0sRmh8voP67d4EyTaxrWZBKNzXWDi2Waq6TKUfE= Subject key identifier: 2A:0B:F5:92:92:47:60:E9:F7:FA:10:C6:CE:E4:E7:57:D1:98:46:2D Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0825 Signing time: Mon 30 Jun 2025 21:02:21 +0000 Manifest this update: Mon 30 Jun 2025 21:02:20 +0000 Manifest next update: Mon 07 Jul 2025 21:02:20 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: YMEwxwDf86WtgLFq0Jjqj5v0VDbmO5bJ+iZPmCp8kMo=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Jun 30 21:02:20 2025 GMT Not After : Jul 7 21:02:20 2025 GMT Subject: CN=6862fb5c-5206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:11:78:47:da:50:01:73:d9:9f:86:4a:f9: ab:ba:ab:74:ba:6f:c2:dd:bc:ed:97:3f:75:20:d6: df:f5:d3:22:07:27:b0:c3:3a:c7:d2:30:54:4f:a5: 21:e1:7d:e5:ec:a2:ab:36:ae:ec:9d:69:74:6f:42: 5a:3c:c6:5c:a0:b1:df:e8:18:fc:cc:27:22:db:c1: 40:6c:c8:02:36:b3:f7:4c:5a:03:46:ad:e4:1c:7c: 25:7f:0e:1d:b0:ba:ae:27:de:b7:f1:4a:08:04:56: d0:21:95:3a:33:de:00:a0:f3:98:e9:cd:46:93:7e: f0:fc:6a:01:af:63:fa:17:71:36:1b:15:42:e5:c1: db:ed:bf:a8:b9:f3:64:ab:04:de:6b:21:28:35:51: d6:d7:98:9a:1a:b5:82:37:bf:ed:b2:e1:4c:7a:37: 6c:61:ba:e7:c3:f4:80:6d:d7:92:56:f2:82:48:a2: 7e:e7:b6:17:10:2d:b2:5b:b0:91:f3:4f:26:f4:cf: 2a:50:15:c5:ea:7f:c1:42:25:15:24:ee:de:43:8e: 1b:5f:15:26:fb:92:a1:ae:2b:d9:f0:d3:56:2e:b6: d1:bb:27:74:13:8b:53:38:21:a2:88:6a:0c:f9:a7: 65:30:cb:8c:66:3d:71:0e:91:0b:65:10:7b:5e:ef: d7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0B:F5:92:92:47:60:E9:F7:FA:10:C6:CE:E4:E7:57:D1:98:46:2D X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:03:40:17:99:0c:39:d6:96:63:8f:82:c0:f9:13:83:73:50: a9:f0:a7:3f:fb:5d:23:5e:03:e6:b4:99:db:1c:11:cc:8d:fc: 6d:5a:18:10:e0:66:70:d7:2b:58:b3:2b:e1:57:0c:ec:16:49: 20:9a:a2:87:85:3d:cf:1a:23:ba:91:60:c8:3f:61:96:d3:d0: 22:17:21:33:ba:ab:b4:ff:24:3e:a5:cb:f9:e2:87:1d:40:5b: 43:c0:06:46:ba:ac:4e:88:df:f0:45:e6:fd:f5:9e:bb:05:12: e3:2d:ca:84:b6:95:8e:7b:34:44:08:86:3b:8b:b6:38:03:43: 3e:cd:41:16:36:fc:40:61:e4:6a:70:4d:05:3c:7e:63:ed:0a: 0b:aa:73:f2:96:6a:79:44:2d:6e:26:28:b2:af:d2:82:cb:59: 52:3a:b6:ba:ac:19:e4:d1:1e:3b:25:7e:3f:25:ae:91:99:76: d2:45:02:7a:d5:f6:15:94:79:a0:89:f0:59:0d:8f:eb:0c:c8: f1:a9:e1:3f:dd:f5:bd:0c:bf:27:03:61:18:0f:8d:7c:aa:18: 2b:ff:bd:23:b3:8a:0f:02:65:d9:26:30:50:58:70:a0:a0:75: 2d:36:21:6b:30:01:f4:e9:cf:3d:91:00:7c:de:18:c2:e2:c5: 0c:00:20:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwNjMwMjEwMjIwWhcNMjUwNzA3MjEwMjIwWjAYMRYwFAYD VQQDEw02ODYyZmI1Yy01MjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI4ReEfaUAFz2Z+GSvmruqt0um/C3bztlz91INbf9dMiByewwzrH0jBUT6Uh 4X3l7KKrNq7snWl0b0JaPMZcoLHf6Bj8zCci28FAbMgCNrP3TFoDRq3kHHwlfw4d sLquJ9638UoIBFbQIZU6M94AoPOY6c1Gk37w/GoBr2P6F3E2GxVC5cHb7b+oufNk qwTeayEoNVHW15iaGrWCN7/tsuFMejdsYbrnw/SAbdeSVvKCSKJ+57YXEC2yW7CR 808m9M8qUBXF6n/BQiUVJO7eQ44bXxUm+5KhrivZ8NNWLrbRuyd0E4tTOCGiiGoM +adlMMuMZj1xDpELZRB7Xu/XBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoL9ZKS R2Dp9/oQxs7k51fRmEYtMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwA0AXmQw51pZjj4LA+RODc1Cp8Kc/+10jXgPmtJnbHBHMjfxtWhgQ 4GZw1ytYsyvhVwzsFkkgmqKHhT3PGiO6kWDIP2GW09AiFyEzuqu0/yQ+pcv54ocd QFtDwAZGuqxOiN/wReb99Z67BRLjLcqEtpWOezRECIY7i7Y4A0M+zUEWNvxAYeRq cE0FPH5j7QoLqnPylmp5RC1uJiiyr9KCy1lSOra6rBnk0R47JX4/Ja6RmXbSRQJ6 1fYVlHmgifBZDY/rDMjxqeE/3fW9DL8nA2EYD418qhgr/70js4oPAmXZJjBQWHCg oHUtNiFrMAH06c89kQB83hjC4sUMACBA -----END CERTIFICATE-----Generated at Wed Jul 2 19:58:38 2025 by rpki-client