
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json)
Hash identifier: +yOi5nsT8ITxYI2Q/cVYJpZB0VtNwxjkAV+5Q0zpxmE=
Subject key identifier: CB:29:9C:49:8A:F3:E1:8F:68:63:D4:48:40:FD:C4:4F:60:88:D2:39
Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Certificate serial: 090F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
Manifest number: 08F2
Signing time: Thu 16 Jul 2026 20:39:28 +0000
Manifest this update: Thu 16 Jul 2026 20:39:27 +0000
Manifest next update: Thu 23 Jul 2026 20:39:27 +0000
Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: NZWOtuV84p5x+HIvCqRWFzYMYfvTWYPz+nyxWbh6UoM=)
2: B2E74042602811EF90548827C4F9AE02.roa (hash: oTkK2i8CrxhUFMPdA2ToXRh9tqOM2ExbKiaxoXzOYoA=)
3: 8AF33E36160E11F195136F2C2B3D8C67.roa (hash: 3Qf43LejVMYObXq2xEMUis8BZYPMSWI0XFlk5JiZduA=)
4: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: aZVjwOBzEzdNCEW5XvUhfqb5dAMw3PX/S+WhGKoCahs=)
5: EA0592C233BC11F18E15C13BAA833773.roa (hash: 0hJANdnST2Bxr7dBtneDjlXCF8SapdC+A0SzQCXlilg=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl
rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 23 Jul 2026 20:39:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2319 (0x90f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Validity
Not Before: Jul 16 20:39:27 2026 GMT
Not After : Jul 23 20:39:27 2026 GMT
Subject: CN=6a594180-199c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:7e:14:b7:8f:08:cd:89:d4:ae:49:6c:e2:
19:48:fa:a3:ff:aa:a9:67:c6:6d:0b:b6:fa:84:51:
f1:86:ae:27:3d:cd:ab:57:6f:27:4f:ed:30:92:5f:
46:57:8d:20:40:5a:7e:fa:64:21:70:10:74:2f:fe:
ea:2a:03:2d:5b:04:ac:44:27:eb:74:52:c3:9e:09:
9d:6d:4c:a8:d0:5f:e8:af:18:33:12:fe:0a:de:45:
37:37:e1:8b:bc:79:28:cf:1a:e2:09:4a:57:5a:38:
30:06:e5:63:d0:8a:8e:12:9d:2b:88:63:a4:11:82:
19:9e:15:3b:2c:71:ab:34:eb:6c:c4:00:8c:a3:91:
dc:11:3c:51:a2:95:9e:d3:ee:b8:3f:a7:c2:4f:8c:
7f:d0:ff:46:62:08:3e:8b:fe:bb:9b:72:d7:5d:f2:
61:84:8c:37:51:ed:c8:86:e4:8d:16:49:1a:65:40:
ab:c6:90:09:a1:8c:2e:cd:8c:c3:f4:eb:1a:7e:9e:
17:6f:9d:69:76:94:5b:0c:67:d6:2d:c1:1c:73:00:
fd:f9:8e:d5:0f:6f:e4:fd:82:c6:35:86:3d:7e:14:
88:3b:c9:0f:0d:66:f6:bf:22:d8:e4:72:95:d3:a2:
bb:c9:a3:8a:19:47:89:f6:ae:be:05:90:b0:42:b2:
77:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:29:9C:49:8A:F3:E1:8F:68:63:D4:48:40:FD:C4:4F:60:88:D2:39
X509v3 Authority Key Identifier:
keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
90:bb:61:c7:f9:d1:34:d9:3e:ba:59:08:63:d1:f7:01:a1:9b:
72:75:1d:2a:85:06:6d:f3:5e:7a:a7:ee:3b:0c:ed:bb:27:26:
98:35:a5:89:75:d7:64:f8:60:b3:39:fc:e1:b4:21:5a:c3:b4:
bd:8e:ae:60:0b:7f:7e:b2:ee:1a:85:36:d4:a9:53:e4:d6:29:
1c:ed:79:6d:b7:96:1c:02:af:73:0c:ac:05:b3:0a:65:e5:8c:
39:9f:02:7b:64:23:f8:1e:e8:62:3c:e7:e9:8b:d8:71:10:09:
50:c8:4f:ee:3f:6b:d5:9f:a0:ba:c1:61:5e:14:66:20:6f:a4:
d0:89:d7:7a:31:69:d5:cd:ed:b3:6f:df:a5:ab:7b:da:4b:13:
af:b6:a8:12:2a:11:9d:14:f9:82:d7:b2:cb:ee:d1:25:8a:43:
2e:d9:e0:0a:a6:ad:53:f6:4d:d7:75:80:35:fc:14:7f:f4:7c:
ea:83:b9:36:60:2c:79:d4:ef:1e:bb:0c:ca:5c:4e:34:92:c9:
87:94:0f:3e:1e:ba:2a:26:9b:7b:a2:e1:13:f8:10:c2:97:b4:
af:55:31:51:1a:8d:b1:aa:f4:2a:5e:2e:98:da:d0:20:3d:51:
7f:5e:40:f5:2d:e4:a2:1d:57:f8:09:7b:a1:82:eb:06:73:db:
22:4f:d8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 07:23:43 2026 by rpki-client