$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: T/WlonHZwQNIHZVc1blbG3bpsCr5cOXks8AoX3AKyfs= Subject key identifier: 3C:A1:34:00:F8:6A:9A:D9:FA:4D:32:FB:F9:B2:8A:B6:E7:48:2A:0E Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0827 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 081B Signing time: Mon 04 Aug 2025 21:11:02 +0000 Manifest this update: Mon 04 Aug 2025 21:11:02 +0000 Manifest next update: Mon 11 Aug 2025 21:11:02 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: KwRAj3F0HmfQwB6gQJX9cGPCtjXqyesfn7N1pTSw0gw=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: jwc4CjKaqj0yrYq98ywhthLA3J0G9mQwUg0CD9JYdH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 21:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2087 (0x827) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Aug 4 21:11:02 2025 GMT Not After : Aug 11 21:11:02 2025 GMT Subject: CN=689121e6-d58e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:4c:fb:b9:97:64:3a:82:be:74:b0:33:2f: 23:09:42:86:0d:ef:2b:a9:60:e4:4f:1f:8e:7d:09: a7:a0:65:32:55:f0:4b:f8:4f:2c:3d:7f:d3:7d:48: ae:e2:f9:eb:d6:f1:d0:97:c3:be:62:2d:85:32:d7: 67:07:cf:bc:62:94:9f:18:f5:8c:71:44:7d:d6:41: 75:90:fe:18:38:b8:e4:c8:52:f1:fb:78:e9:da:76: 15:6d:a2:1e:3e:58:66:ae:3a:78:d6:7c:a0:b2:9c: a6:90:74:9b:39:7a:95:3f:65:9b:13:fa:f9:b4:0f: eb:9c:4c:ba:0c:18:54:0c:82:69:00:9d:c8:43:9b: f8:ff:bf:ef:11:28:88:a0:f2:7a:35:79:9a:4e:27: 55:5a:b5:e3:29:99:03:48:f1:98:b8:b8:3c:c3:c0: c9:22:e7:1a:44:f4:6b:ea:66:93:82:f7:98:51:42: 07:eb:f5:af:7e:ca:d4:e1:40:25:6d:2c:9f:78:e1: 9c:d7:15:37:e5:40:81:7f:e3:e4:e9:c1:c8:62:7a: f0:48:ae:27:36:7c:7e:cc:f3:c2:90:17:b3:eb:4f: 1d:7f:fc:e4:08:59:59:6a:77:f5:55:e6:01:6c:79: dd:3c:c2:fa:8c:de:c9:a9:d2:6a:a9:eb:20:02:99: 72:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A1:34:00:F8:6A:9A:D9:FA:4D:32:FB:F9:B2:8A:B6:E7:48:2A:0E X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:3d:83:9e:14:cb:4f:83:19:ad:6d:12:d4:26:41:42:4e:57: c6:a0:42:c8:d9:78:1f:5e:bf:43:84:1c:49:6a:ab:bc:32:dc: df:a4:69:f3:7a:61:32:7e:71:04:ee:7f:8a:18:c2:58:4b:ce: 55:87:b2:e0:4d:ea:18:f2:1d:70:e3:04:0c:66:68:fd:87:b4: c9:06:e3:8d:0a:84:97:bd:ac:ec:50:ee:51:b6:4e:2e:04:da: df:54:fe:2f:e7:cd:9c:77:b2:9e:d5:9d:23:af:04:b5:be:ca: 27:41:fa:12:ad:07:40:eb:5b:2e:c9:6c:66:f7:30:5a:f9:14: 76:03:e1:bb:0c:07:87:98:75:0e:ff:4b:f9:65:72:2b:45:15: 6a:37:4b:bd:b2:71:f5:05:38:4f:f9:bc:e0:61:3e:a8:13:fd: cd:7f:e0:80:a8:51:84:4a:d7:8c:b0:ed:02:1b:88:21:3f:05: 78:54:51:64:2d:d7:3e:46:dc:16:c7:f9:86:2d:5e:9d:02:6d: c6:e0:5c:b7:ca:26:15:c5:be:91:dd:34:fe:65:9d:b2:50:8d: ba:31:16:c6:4b:8a:23:f4:34:78:1d:0e:c5:f5:9e:65:90:2b: 4b:ed:ce:9e:96:d5:98:8d:c8:59:13:be:76:8e:0a:3c:a9:8c: be:09:40:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwODA0MjExMTAyWhcNMjUwODExMjExMTAyWjAYMRYwFAYD VQQDEw02ODkxMjFlNi1kNThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGdM+7mXZDqCvnSwMy8jCUKGDe8rqWDkTx+OfQmnoGUyVfBL+E8sPX/TfUiu 4vnr1vHQl8O+Yi2FMtdnB8+8YpSfGPWMcUR91kF1kP4YOLjkyFLx+3jp2nYVbaIe Plhmrjp41nygspymkHSbOXqVP2WbE/r5tA/rnEy6DBhUDIJpAJ3IQ5v4/7/vESiI oPJ6NXmaTidVWrXjKZkDSPGYuLg8w8DJIucaRPRr6maTgveYUUIH6/WvfsrU4UAl bSyfeOGc1xU35UCBf+Pk6cHIYnrwSK4nNnx+zPPCkBez608df/zkCFlZanf1VeYB bHndPML6jN7JqdJqqesgAply1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyhNAD4 aprZ+k0y+/myirbnSCoOMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYPYOeFMtPgxmtbRLUJkFCTlfGoELI2XgfXr9DhBxJaqu8MtzfpGnz emEyfnEE7n+KGMJYS85Vh7LgTeoY8h1w4wQMZmj9h7TJBuONCoSXvazsUO5Rtk4u BNrfVP4v582cd7Ke1Z0jrwS1vsonQfoSrQdA61suyWxm9zBa+RR2A+G7DAeHmHUO /0v5ZXIrRRVqN0u9snH1BThP+bzgYT6oE/3Nf+CAqFGESteMsO0CG4ghPwV4VFFk Ldc+RtwWx/mGLV6dAm3G4Fy3yiYVxb6R3TT+ZZ2yUI26MRbGS4oj9DR4HQ7F9Z5l kCtL7c6eltWYjchZE752jgo8qYy+CUAX -----END CERTIFICATE-----Generated at Wed Aug 6 05:57:20 2025 by rpki-client