$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: e/un2MnUH0UTvlLqhT4ROAlyW6vfay6FpMbAhwm12MM= Subject key identifier: 18:50:28:3C:88:B3:C9:16:90:6B:A8:90:E2:2F:C7:87:21:A8:CB:F8 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 080A Signing time: Wed 02 Jul 2025 21:11:32 +0000 Manifest this update: Wed 02 Jul 2025 21:11:32 +0000 Manifest next update: Wed 09 Jul 2025 21:11:32 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: DWcWJW0dDQ4HFn9/UjLi5G5HHwC0Fhi6FW9XVt/waik=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: jwc4CjKaqj0yrYq98ywhthLA3J0G9mQwUg0CD9JYdH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Jul 2 21:11:32 2025 GMT Not After : Jul 9 21:11:32 2025 GMT Subject: CN=6865a084-2482 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c8:e4:f0:61:a6:e7:59:46:d1:df:b1:91:16: 45:fa:5c:16:1d:9f:26:f8:3d:03:c8:1f:1d:ef:46: db:e3:87:56:e5:c4:37:f4:56:72:c5:05:df:de:8f: f9:a8:1b:39:89:46:3a:a1:d0:44:a4:9f:ec:0e:9b: bc:64:f6:3b:ac:06:19:25:ca:1e:b8:a4:d3:4b:df: 1f:ac:13:a2:c0:d4:78:bd:db:3b:cc:90:ea:c9:29: 68:b2:e1:26:8f:bb:fc:82:40:b7:05:e3:b1:69:2a: 67:eb:e7:fd:6b:76:92:1c:ad:5b:fc:aa:e3:c7:0f: a2:61:11:c3:1d:15:aa:6b:06:d1:6b:b8:32:71:aa: 11:16:9c:95:46:38:b0:84:cf:bc:7e:cf:24:71:c1: d3:0c:4f:8c:f1:b7:9f:94:59:de:28:1b:aa:65:03: a6:dc:b2:47:34:28:4f:50:80:ba:51:72:7f:2e:e2: f2:bf:cc:7f:f1:35:03:58:f3:f7:72:74:16:57:03: d4:cd:5f:da:c0:ff:df:5b:2c:8f:e0:eb:3f:93:20: 31:75:16:4c:09:a1:d2:09:0b:91:45:bd:0b:5a:78: fb:b1:1a:5a:82:11:e9:bc:b7:59:2d:b5:3d:44:5c: 56:26:86:66:55:89:7f:d6:4d:b3:9a:0f:8f:36:2d: 9b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:50:28:3C:88:B3:C9:16:90:6B:A8:90:E2:2F:C7:87:21:A8:CB:F8 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e1:bf:50:c1:9a:b3:65:ef:a3:ba:5d:2d:f8:3b:76:55:fd: 70:53:f5:87:3b:e9:e9:ae:fb:20:54:51:35:e5:85:05:86:fb: 91:de:62:4b:9a:93:17:10:98:36:85:59:a4:d9:82:16:c8:45: 7e:f6:26:1e:7d:c9:df:f4:a0:7d:65:5c:b9:b6:2e:1d:45:c9: ec:6d:3c:29:5d:8f:f9:90:e2:2c:31:43:37:85:86:dd:bd:4b: ae:15:94:ff:6a:9d:9e:f8:a8:b4:3e:cd:1f:d1:a6:ae:fe:63: d9:c6:ff:f9:a7:6f:57:c2:87:19:4d:fb:55:5a:a3:b7:a1:d7: 7d:fb:a6:de:58:88:5c:85:e3:f8:53:7e:c6:85:5c:ab:db:9e: 10:ef:a3:23:d3:15:d7:1d:66:e4:b0:f4:bc:a2:82:70:5c:4e: b3:14:b2:09:56:94:d1:cf:5b:f5:4e:03:f1:d0:26:7e:11:28: ff:6a:d8:df:aa:55:20:a5:22:33:0e:2c:6b:35:80:de:da:6a: 6f:49:ca:ac:cf:2b:c7:44:3e:76:87:96:c9:4a:f6:03:37:32: ec:34:8a:da:a7:0e:0d:71:55:59:64:6f:fc:72:b3:a5:50:e2: 4f:2b:57:37:08:58:39:15:c8:13:79:8d:3b:5c:79:85:c4:c2: 26:12:0e:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwNzAyMjExMTMyWhcNMjUwNzA5MjExMTMyWjAYMRYwFAYD VQQDEw02ODY1YTA4NC0yNDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28jk8GGm51lG0d+xkRZF+lwWHZ8m+D0DyB8d70bb44dW5cQ39FZyxQXf3o/5 qBs5iUY6odBEpJ/sDpu8ZPY7rAYZJcoeuKTTS98frBOiwNR4vds7zJDqySlosuEm j7v8gkC3BeOxaSpn6+f9a3aSHK1b/Krjxw+iYRHDHRWqawbRa7gycaoRFpyVRjiw hM+8fs8kccHTDE+M8beflFneKBuqZQOm3LJHNChPUIC6UXJ/LuLyv8x/8TUDWPP3 cnQWVwPUzV/awP/fWyyP4Os/kyAxdRZMCaHSCQuRRb0LWnj7sRpaghHpvLdZLbU9 RFxWJoZmVYl/1k2zmg+PNi2bkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhQKDyI s8kWkGuokOIvx4chqMv4MB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd4b9QwZqzZe+jul0t+Dt2Vf1wU/WHO+nprvsgVFE15YUFhvuR3mJL mpMXEJg2hVmk2YIWyEV+9iYefcnf9KB9ZVy5ti4dRcnsbTwpXY/5kOIsMUM3hYbd vUuuFZT/ap2e+Ki0Ps0f0aau/mPZxv/5p29XwocZTftVWqO3odd9+6beWIhcheP4 U37GhVyr254Q76Mj0xXXHWbksPS8ooJwXE6zFLIJVpTRz1v1TgPx0CZ+ESj/atjf qlUgpSIzDixrNYDe2mpvScqszyvHRD52h5bJSvYDNzLsNIrapw4NcVVZZG/8crOl UOJPK1c3CFg5FcgTeY07XHmFxMImEg4U -----END CERTIFICATE-----Generated at Fri Jul 4 06:11:28 2025 by rpki-client