$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft File: GhottiJwSYYNHLb7OB0DX3zd_nk.mft (raw, json) Hash identifier: 3yZLUUMy78wJpQ92l0VrBwbhXL/Qze748wlRlwBqGEE= Subject key identifier: 1A:35:28:FE:5F:0D:FC:28:EA:A3:47:B4:AE:88:8D:C2:47:48:AE:4C Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft Manifest number: 08BB Signing time: Sat 04 Apr 2026 20:16:24 +0000 Manifest this update: Sat 04 Apr 2026 20:16:24 +0000 Manifest next update: Sat 11 Apr 2026 20:16:24 +0000 Files and hashes: 1: GhottiJwSYYNHLb7OB0DX3zd_nk.crl (hash: y6g5SS2CgNf2NjlIXbD4uhkvxPofsZsg0R+q4gqzWUE=) 2: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (hash: aZVjwOBzEzdNCEW5XvUhfqb5dAMw3PX/S+WhGKoCahs=) 3: B2E74042602811EF90548827C4F9AE02.roa (hash: oTkK2i8CrxhUFMPdA2ToXRh9tqOM2ExbKiaxoXzOYoA=) 4: 8AF33E36160E11F195136F2C2B3D8C67.roa (hash: 3Qf43LejVMYObXq2xEMUis8BZYPMSWI0XFlk5JiZduA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Apr 4 20:16:24 2026 GMT Not After : Apr 11 20:16:24 2026 GMT Subject: CN=69d17198-8393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:ea:0f:d2:2d:4a:6c:e1:ca:77:f4:c8:af: de:6b:e7:52:88:c1:2c:6d:a6:75:4a:42:19:9b:6b: 22:76:6f:18:62:36:d9:4a:c9:92:4a:19:e2:28:f8: 18:c3:e8:d7:7e:9f:1a:d1:e0:47:80:60:50:fa:58: 27:12:f9:a2:b0:f9:26:b8:43:bc:bf:e5:16:63:2c: 04:f8:7f:24:02:1e:d4:c4:56:3b:80:84:1d:fb:63: 0e:80:95:5a:c5:98:aa:d9:4c:14:e9:8d:54:f4:bc: 39:8a:17:ac:5b:53:20:b2:91:d4:56:19:af:78:dc: 12:ab:0a:1a:9a:3d:12:d3:82:10:48:2c:c9:a8:57: 67:ff:20:5a:e0:1e:70:e9:0a:b0:7c:96:d0:13:db: 6d:9f:3b:08:94:be:f5:08:6d:8c:1e:c6:50:23:89: 6d:86:b0:5e:b3:cf:fa:80:41:60:69:83:d5:0d:d9: ce:44:26:7f:f7:35:e0:35:f9:d0:48:1c:28:68:53: 36:4f:5d:b1:d3:3f:b7:3c:6e:eb:b5:62:56:af:d8: cd:cf:9d:2f:ce:40:72:7c:2d:6b:02:fc:0c:38:78: 64:77:21:7d:64:fe:9c:91:22:29:02:6b:cf:4d:f2: bf:ee:75:fb:cf:8e:10:23:26:57:29:35:64:92:64: fe:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:35:28:FE:5F:0D:FC:28:EA:A3:47:B4:AE:88:8D:C2:47:48:AE:4C X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:45:0a:f8:75:6c:35:87:47:38:3d:b7:f0:1d:5b:a4:c8:d9: 03:26:a0:cd:ea:86:d6:5c:7f:e8:23:de:71:3a:bc:3b:44:0f: b6:42:eb:3e:38:a7:88:a2:5f:ab:70:13:f2:53:0a:fe:d6:a4: 9b:79:a4:68:76:b5:01:be:30:ec:36:f3:a4:4c:8c:dd:56:65: 4a:fb:3c:1d:b9:01:d2:d3:d8:f9:9d:83:35:8d:f3:9c:1d:3a: 4f:f7:94:6a:2a:23:0b:3a:b6:f8:d4:20:ab:a8:7e:f0:a0:1f: 2e:86:c5:24:d0:bf:a9:fb:17:b0:17:ae:33:5d:97:92:55:19: 70:35:f8:39:f8:3d:d7:fd:bd:4f:e5:d0:64:25:d9:c3:16:6f: 8b:b0:4d:48:75:8d:93:9f:90:ca:78:67:7e:af:c9:88:b1:fa: bd:54:e6:cb:6b:a9:1f:7e:f9:3b:d4:44:1a:64:dc:b8:d4:82: ef:8d:6d:42:84:e1:d5:7c:11:ba:f8:3a:4f:6f:03:a4:97:47: 88:19:da:a0:37:53:39:9c:dc:bc:2b:3e:b7:d5:df:6b:44:e3: 74:3e:28:8f:a2:9b:0b:ac:1e:0f:6f:20:d9:e4:66:12:a6:19: aa:8b:0e:26:00:4c:3c:b6:37:17:ad:ef:7a:eb:f3:0c:db:ac: 6d:5e:8c:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjYwNDA0MjAxNjI0WhcNMjYwNDExMjAxNjI0WjAYMRYwFAYD VQQDEw02OWQxNzE5OC04MzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEbqD9ItSmzhynf0yK/ea+dSiMEsbaZ1SkIZm2sidm8YYjbZSsmSShniKPgY w+jXfp8a0eBHgGBQ+lgnEvmisPkmuEO8v+UWYywE+H8kAh7UxFY7gIQd+2MOgJVa xZiq2UwU6Y1U9Lw5ihesW1MgspHUVhmveNwSqwoamj0S04IQSCzJqFdn/yBa4B5w 6QqwfJbQE9ttnzsIlL71CG2MHsZQI4lthrBes8/6gEFgaYPVDdnORCZ/9zXgNfnQ SBwoaFM2T12x0z+3PG7rtWJWr9jNz50vzkByfC1rAvwMOHhkdyF9ZP6ckSIpAmvP TfK/7nX7z44QIyZXKTVkkmT+SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBo1KP5f Dfwo6qNHtK6IjcJHSK5MMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkzMy9GRDk1MjFCMkRDNTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZ WU5ITGI3T0IwRFgzemRfbmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArEUK+HVsNYdHOD238B1bpMjZAyagzeqG1lx/6CPecTq8O0QPtkLrPjiniKJf q3AT8lMK/takm3mkaHa1Ab4w7DbzpEyM3VZlSvs8HbkB0tPY+Z2DNY3znB06T/eU aiojCzq2+NQgq6h+8KAfLobFJNC/qfsXsBeuM12XklUZcDX4Ofg91/29T+XQZCXZ wxZvi7BNSHWNk5+Qynhnfq/JiLH6vVTmy2upH375O9REGmTcuNSC741tQoTh1XwR uvg6T28DpJdHiBnaoDdTOZzcvCs+t9Xfa0TjdD4oj6KbC6weD28g2eRmEqYZqosO JgBMPLY3F63veuvzDNusbV6MGQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:32 2026 by rpki-client