$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: khGnr8nS9gewbnzbLbSA3maIRGyQ4VeIPgV+BjgQLUI= Subject key identifier: E6:77:3C:F7:F9:D7:F9:D5:30:B0:2B:AB:65:65:5C:5B:A7:FA:EC:FA Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0850 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 0843 Signing time: Sat 18 Oct 2025 21:57:48 +0000 Manifest this update: Sat 18 Oct 2025 21:57:47 +0000 Manifest next update: Sat 25 Oct 2025 21:57:47 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: HvVmWfIZiprGkMVYB8MpGKmFHHJHk7c/Po6p+yYXTwo=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: sFHCJw5BrykaJrt5HBvIuIZlR2YHVfxWnMrA0b3Zjo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2128 (0x850) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Oct 18 21:57:47 2025 GMT Not After : Oct 25 21:57:47 2025 GMT Subject: CN=68f40d5c-b32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6b:62:40:81:ee:94:f9:18:b5:43:ae:a6:6a: 2f:6d:00:fa:63:e4:bf:e9:b3:f8:56:46:f2:a9:00: a1:55:06:78:b4:17:40:92:db:0a:5a:01:81:be:1e: b4:28:cb:9a:c0:31:32:2e:dd:d0:43:07:96:72:1a: e9:44:a0:b4:cd:94:37:44:f0:9c:54:4d:dd:06:dd: 40:9f:dd:9c:6d:e5:13:2d:4f:b0:cc:3e:2b:86:71: 06:ff:3e:14:f4:5c:1e:96:0c:1d:16:f5:00:4f:64: 44:bf:91:9f:e8:26:ab:43:90:bd:e3:d4:2c:b9:10: ae:db:3b:16:b3:f0:dd:b4:ca:12:e6:b0:ef:1c:80: 52:a3:20:d5:85:28:e9:86:28:ac:ff:19:60:22:0c: 3b:20:f2:f3:a5:68:4e:32:db:c3:2c:7f:b6:d8:cd: 7a:ef:ac:b5:f3:cd:22:01:82:1a:76:69:62:e2:f0: 82:53:45:a8:12:12:4b:96:53:33:50:0f:e9:3f:d1: 6a:ba:e5:a3:94:0a:94:d7:f0:e0:7d:9d:48:bf:f4: b7:22:1a:c4:9c:4f:80:14:1c:b9:2b:3f:90:97:e4: 13:c4:bf:ec:9a:da:26:29:b6:b7:57:9e:9a:46:32: 79:51:d7:ce:a7:61:ba:77:3d:e2:b2:56:b1:8a:57: c6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:77:3C:F7:F9:D7:F9:D5:30:B0:2B:AB:65:65:5C:5B:A7:FA:EC:FA X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:b7:d2:c2:52:47:83:e5:34:07:5b:47:1f:48:a9:3f:f1:84: b0:ae:62:03:88:4f:35:15:27:94:a6:d4:14:42:c0:28:7d:61: 2c:7f:5b:89:b5:76:7c:2a:1e:b3:be:d2:63:53:36:50:f7:46: 3f:4b:03:7d:5d:13:94:04:30:35:ed:18:93:4a:21:7d:bc:dd: 8e:c0:04:77:80:e4:37:c2:48:8f:aa:9b:38:74:f2:e9:10:d8: b5:ce:eb:cb:99:96:c8:2c:04:f7:89:9e:88:6b:de:14:db:1d: a7:b8:00:9d:9d:82:e9:d8:50:48:2d:56:48:c7:80:ce:e7:1f: cf:20:d6:67:d0:f0:4a:12:52:54:18:0f:7a:8c:32:1e:a0:5f: cd:9f:7c:a6:31:8e:c9:a4:34:2a:75:aa:f4:0e:17:a8:cd:80: e7:b7:c5:73:a0:f5:31:23:6f:89:79:13:9d:d6:53:30:ec:20: 64:01:78:4b:52:69:e3:8f:e4:cd:dc:9e:45:99:5b:08:f0:b1: 34:fa:01:12:09:4c:e5:65:1c:b4:c8:df:38:32:d8:fa:cc:8b: 7d:f7:0c:2f:48:28:3d:c8:79:89:a5:e4:41:0f:f0:ac:f2:d2: 8c:a8:10:87:4d:46:c3:f9:1f:b5:fb:f5:9c:09:ee:80:ad:42: ad:6b:7d:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUxMDE4MjE1NzQ3WhcNMjUxMDI1MjE1NzQ3WjAYMRYwFAYD VQQDEw02OGY0MGQ1Yy1iMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2tiQIHulPkYtUOupmovbQD6Y+S/6bP4VkbyqQChVQZ4tBdAktsKWgGBvh60 KMuawDEyLt3QQweWchrpRKC0zZQ3RPCcVE3dBt1An92cbeUTLU+wzD4rhnEG/z4U 9FwelgwdFvUAT2REv5Gf6CarQ5C949QsuRCu2zsWs/DdtMoS5rDvHIBSoyDVhSjp hiis/xlgIgw7IPLzpWhOMtvDLH+22M1676y1880iAYIadmli4vCCU0WoEhJLllMz UA/pP9FquuWjlAqU1/DgfZ1Iv/S3IhrEnE+AFBy5Kz+Ql+QTxL/smtomKba3V56a RjJ5UdfOp2G6dz3islaxilfGGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ3PPf5 1/nVMLArq2VlXFun+uz6MB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCot9LCUkeD5TQHW0cfSKk/8YSwrmIDiE81FSeUptQUQsAofWEsf1uJ tXZ8Kh6zvtJjUzZQ90Y/SwN9XROUBDA17RiTSiF9vN2OwAR3gOQ3wkiPqps4dPLp ENi1zuvLmZbILAT3iZ6Ia94U2x2nuACdnYLp2FBILVZIx4DO5x/PINZn0PBKElJU GA96jDIeoF/Nn3ymMY7JpDQqdar0DheozYDnt8VzoPUxI2+JeROd1lMw7CBkAXhL Umnjj+TN3J5FmVsI8LE0+gESCUzlZRy0yN84Mtj6zIt99wwvSCg9yHmJpeRBD/Cs 8tKMqBCHTUbD+R+1+/WcCe6ArUKta33h -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:14 2025 by rpki-client