$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: 2RdkHsfzwji8co38xSH2ex2qZUXSO9yLj8XWhsnzD+Y= Subject key identifier: A8:8D:53:FA:6B:66:93:FE:BC:A2:8F:48:FC:3A:12:15:5C:C9:8A:89 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0815 Signing time: Fri 30 May 2025 21:07:16 +0000 Manifest this update: Fri 30 May 2025 21:07:16 +0000 Manifest next update: Fri 06 Jun 2025 21:07:16 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: C62Z0nB22uBMtQwkYRIyU+qfIdW1TpVydjegoadtxPs=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: 4M65KGjZx3n4TcnEBrSY9PlP+MFh9MlbhpJEgtId4vg=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: 5CfU6Ey+EqR6j3v3qr6f+yrfJbdI9IE9e5KRkCXxOtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: May 30 21:07:16 2025 GMT Not After : Jun 6 21:07:16 2025 GMT Subject: CN=683a1e04-45fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b7:d0:56:24:83:9f:00:c0:fb:69:67:dd:80: ee:b4:96:e9:ad:ac:ef:3b:7f:2c:1d:e5:b3:fd:b1: e8:e2:e7:34:08:60:5e:f4:0a:68:5a:52:11:a3:8e: 2c:dc:72:96:8e:46:ea:ba:e9:13:0e:c6:9e:fe:f4: cd:1d:2d:dd:c7:7a:37:97:d0:57:8e:5f:5e:52:9c: 26:ca:2c:66:3a:6a:f1:6f:81:8f:75:4b:85:d9:92: 0c:6e:5c:48:47:1c:18:af:2a:ff:f4:13:1d:26:49: d6:2f:c6:d9:36:86:08:c8:0c:8f:47:b5:70:91:3b: 4a:30:05:ec:f8:d9:2f:e2:35:15:eb:b1:d0:4b:8f: 72:46:32:b5:ee:7d:0b:bf:b5:67:7a:55:a2:33:ea: 50:a1:0d:17:fc:32:3f:10:95:2b:55:30:1c:95:59: ef:1f:1c:09:ea:99:8a:d0:0f:32:80:1f:fc:6c:ec: a6:80:39:89:91:dc:cf:a2:dd:43:e4:b1:b6:9a:ef: 7a:d8:12:49:8f:37:cf:31:68:33:ba:7a:90:ae:2f: d1:38:c5:1d:7c:67:e7:73:c2:d2:8d:4d:e5:62:d4: c5:67:37:1f:8f:15:aa:bb:5e:b6:96:74:08:6a:68: 36:26:65:bf:42:a2:32:44:1b:be:2c:59:8c:14:95: 33:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8D:53:FA:6B:66:93:FE:BC:A2:8F:48:FC:3A:12:15:5C:C9:8A:89 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:84:17:bd:7b:0b:c8:1e:01:c2:5d:1a:51:af:9f:66:c0:4a: 87:67:94:c5:99:21:91:52:17:9e:d4:8d:a1:0b:d7:d8:b8:44: 03:99:ac:de:d5:32:7b:a6:81:1c:9c:f9:18:76:d0:c2:f2:fa: 75:0b:98:e5:59:86:40:e8:84:77:eb:25:02:4d:87:04:c0:85: dd:44:6e:af:ca:a2:b0:e4:81:1c:d5:88:b5:ff:a2:73:79:a2: cb:4a:56:d0:de:89:47:52:0f:b9:15:e9:88:f1:8e:cb:62:61: d5:10:ea:89:78:84:60:3f:e5:08:9a:0e:56:bd:1a:89:32:f1: 1d:a2:d9:e9:4d:70:bf:09:6d:fe:c3:2b:22:ce:6b:38:58:7b: fb:46:22:e4:73:12:b8:66:21:91:24:b5:8e:d0:31:ee:47:cf: 88:c2:d8:8a:52:4d:d6:88:2d:28:5d:93:5b:7e:c3:7e:60:13: 15:18:d8:90:fb:12:f4:77:5e:d1:18:41:1b:42:d7:78:b4:9c: fb:ac:5b:3d:61:d5:ca:06:c9:46:ee:dc:39:ae:a7:a3:c9:8d: a1:9c:53:f5:ba:97:9a:70:58:5c:cf:53:bf:a7:4b:57:54:f0: 22:1b:73:8a:a1:d5:c6:2c:2a:73:8b:0e:19:ad:81:fa:09:e5: 5d:bf:1d:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwNTMwMjEwNzE2WhcNMjUwNjA2MjEwNzE2WjAYMRYwFAYD VQQDEw02ODNhMWUwNC00NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rfQViSDnwDA+2ln3YDutJbprazvO38sHeWz/bHo4uc0CGBe9ApoWlIRo44s 3HKWjkbquukTDsae/vTNHS3dx3o3l9BXjl9eUpwmyixmOmrxb4GPdUuF2ZIMblxI RxwYryr/9BMdJknWL8bZNoYIyAyPR7VwkTtKMAXs+Nkv4jUV67HQS49yRjK17n0L v7VnelWiM+pQoQ0X/DI/EJUrVTAclVnvHxwJ6pmK0A8ygB/8bOymgDmJkdzPot1D 5LG2mu962BJJjzfPMWgzunqQri/ROMUdfGfnc8LSjU3lYtTFZzcfjxWqu162lnQI amg2JmW/QqIyRBu+LFmMFJUzJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiNU/pr ZpP+vKKPSPw6EhVcyYqJMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAehBe9ewvIHgHCXRpRr59mwEqHZ5TFmSGRUhee1I2hC9fYuEQDmaze 1TJ7poEcnPkYdtDC8vp1C5jlWYZA6IR36yUCTYcEwIXdRG6vyqKw5IEc1Yi1/6Jz eaLLSlbQ3olHUg+5FemI8Y7LYmHVEOqJeIRgP+UImg5WvRqJMvEdotnpTXC/CW3+ wysizms4WHv7RiLkcxK4ZiGRJLWO0DHuR8+IwtiKUk3WiC0oXZNbfsN+YBMVGNiQ +xL0d17RGEEbQtd4tJz7rFs9YdXKBslG7tw5rqejyY2hnFP1upeacFhcz1O/p0tX VPAiG3OKodXGLCpziw4ZrYH6CeVdvx33 -----END CERTIFICATE-----Generated at Sat May 31 17:00:27 2025 by rpki-client