$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: wUh+HSQSg28qC+vLaSkkJ7ug5nMQlMQBOAWGKa1v8SI= Subject key identifier: CB:2C:E3:EB:92:BD:4E:B6:14:B1:5A:6E:03:D4:31:19:9A:1B:32:D7 Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 085E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 0849 Signing time: Thu 04 Sep 2025 20:59:08 +0000 Manifest this update: Thu 04 Sep 2025 20:59:07 +0000 Manifest next update: Thu 11 Sep 2025 20:59:07 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: mhqFp1tBszCZrSF+WX4SuAuivFhQSScS+CQ8z1QsugI=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs=) 3: 9F555EDC433611EB89B8BE60C4F9AE02.roa (hash: rEovmytiKNNVpD6gPGRI9HANLC4RwJ5LENxvCh8CzI0=) 4: B2E74042602811EF90548827C4F9AE02.roa (hash: BvCqMScG09pGK+LZUbihhOFZxqUcMb0S5ZcrEfWSJgU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2142 (0x85e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Sep 4 20:59:07 2025 GMT Not After : Sep 11 20:59:07 2025 GMT Subject: CN=68b9fd9b-40ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:d6:3b:49:96:4a:12:71:ca:e0:82:6c:34: eb:c6:92:bb:b5:71:94:2a:2d:0c:d4:be:f3:fa:b5: 09:ee:74:db:0e:da:e7:b1:b3:48:9e:1f:bf:3b:22: 07:60:ca:85:e3:a9:85:b6:0c:69:10:66:46:c7:d4: e1:c9:e5:87:df:c6:f1:0b:bb:ca:46:9b:3e:54:71: 96:51:af:d2:ce:7f:8e:6c:e6:d8:50:bd:ff:ef:cb: 2d:77:dc:4f:28:28:c8:d3:7f:a1:37:fc:68:98:eb: 6f:54:f8:d1:c6:58:28:fc:62:aa:7b:04:9f:a6:3e: c2:7b:91:52:94:4f:09:0a:28:66:e8:4d:12:db:64: 98:f6:69:ff:9f:6d:2b:cd:f9:e3:1f:15:e0:82:2a: df:e1:f6:56:ac:4b:1c:c0:05:db:99:30:54:09:e4: 65:d8:10:e8:6b:c7:ee:fc:85:9c:4a:4f:7b:46:a9: 30:41:c7:74:52:a0:31:b3:42:e7:64:e9:c3:61:c2: 74:75:68:4a:be:1a:4c:b7:86:62:37:a5:a7:4b:cb: 7a:37:4c:93:5f:a9:3f:cb:93:85:46:da:c7:7b:e7: 15:ea:f7:8a:bb:86:50:13:92:29:5d:08:ac:d6:ae: 2b:4b:6a:9c:d3:04:ac:37:e5:11:a9:f6:b4:a1:15: 5f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2C:E3:EB:92:BD:4E:B6:14:B1:5A:6E:03:D4:31:19:9A:1B:32:D7 X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:4f:c9:21:f0:41:c9:a8:f6:de:fa:59:44:c0:66:a4:08:cf: e1:76:fb:0a:95:e3:7d:bb:94:6c:a9:41:8d:0b:28:12:a3:10: e7:a5:ee:60:82:29:99:9a:93:1e:7b:37:90:58:38:c3:03:3b: a8:12:fa:02:17:d6:29:17:58:34:44:13:db:a2:49:29:e9:dd: 3e:d2:63:fd:c1:77:77:34:7d:fa:4f:53:40:58:42:2d:29:6b: bc:ea:bc:8a:d1:27:e5:d3:0b:c8:69:0f:fb:49:8c:7b:f3:0f: 8b:c9:31:3e:eb:78:b8:8e:0f:25:39:fa:e2:fd:2d:96:f2:8f: 04:34:ee:02:6a:4f:4d:9f:7a:19:6a:7f:f9:0a:30:ef:9d:3c: e0:17:81:43:79:7d:5f:4a:cb:03:43:8a:3c:c9:8c:8f:dd:3b: 19:2e:b5:90:5e:32:a4:cc:5c:09:ff:0c:59:f8:6d:8e:77:61: 5a:4b:7c:fa:b5:3a:8e:db:e9:b6:c2:40:10:5f:45:eb:84:c2: 1f:48:f2:98:9f:d1:8a:66:29:70:ff:de:e6:3b:57:1a:28:49: 37:9a:c0:1c:12:af:e2:11:f4:25:48:8e:a2:3e:59:b0:0e:ac: c8:7e:65:40:ca:da:4e:34:e3:b0:87:42:30:33:7f:b0:cf:38: 93:5d:11:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwOTA0MjA1OTA3WhcNMjUwOTExMjA1OTA3WjAYMRYwFAYD VQQDEw02OGI5ZmQ5Yi00MGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X/WO0mWShJxyuCCbDTrxpK7tXGUKi0M1L7z+rUJ7nTbDtrnsbNInh+/OyIH YMqF46mFtgxpEGZGx9ThyeWH38bxC7vKRps+VHGWUa/Szn+ObObYUL3/78std9xP KCjI03+hN/xomOtvVPjRxlgo/GKqewSfpj7Ce5FSlE8JCihm6E0S22SY9mn/n20r zfnjHxXggirf4fZWrEscwAXbmTBUCeRl2BDoa8fu/IWcSk97RqkwQcd0UqAxs0Ln ZOnDYcJ0dWhKvhpMt4ZiN6WnS8t6N0yTX6k/y5OFRtrHe+cV6veKu4ZQE5IpXQis 1q4rS2qc0wSsN+URqfa0oRVflQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMss4+uS vU62FLFabgPUMRmaGzLXMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPT8kh8EHJqPbe+llEwGakCM/hdvsKleN9u5RsqUGNCygSoxDnpe5g gimZmpMeezeQWDjDAzuoEvoCF9YpF1g0RBPbokkp6d0+0mP9wXd3NH36T1NAWEIt KWu86ryK0Sfl0wvIaQ/7SYx78w+LyTE+63i4jg8lOfri/S2W8o8ENO4Cak9Nn3oZ an/5CjDvnTzgF4FDeX1fSssDQ4o8yYyP3TsZLrWQXjKkzFwJ/wxZ+G2Od2FaS3z6 tTqO2+m2wkAQX0XrhMIfSPKYn9GKZilw/97mO1caKEk3msAcEq/iEfQlSI6iPlmw DqzIfmVAytpONOOwh0IwM3+wzziTXRHl -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:28 2025 by rpki-client