$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: yzR2ASFYApikAXAmIvpcG6tCaWoQsDBe4hT/SJYJ/T8= Subject key identifier: 27:59:F4:F3:7C:C6:60:01:83:BD:79:B2:8B:A9:3B:15:17:D7:4A:D9 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 0824 Signing time: Fri 22 Aug 2025 20:59:13 +0000 Manifest this update: Fri 22 Aug 2025 20:59:12 +0000 Manifest next update: Fri 29 Aug 2025 20:59:12 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: hFwagyFZvsZhWM+E15UPARPwCMpxubj5X7dyfv/rPrI=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: jwc4CjKaqj0yrYq98ywhthLA3J0G9mQwUg0CD9JYdH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Aug 22 20:59:12 2025 GMT Not After : Aug 29 20:59:12 2025 GMT Subject: CN=68a8da21-7f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:23:07:62:ef:07:62:1b:f8:49:ef:ab:15:b2: 2b:02:3d:27:09:52:03:00:06:4c:70:1a:07:70:ef: 86:bb:db:35:f1:eb:52:05:5a:15:6a:a5:1d:ce:d9: 37:17:b0:b5:60:35:20:b8:14:04:67:d8:5b:f8:01: d2:8c:1a:d0:69:44:25:5c:15:a7:45:8b:a8:1f:5a: 95:ba:e3:69:46:90:e8:17:b9:91:6f:47:13:48:0f: 30:32:ea:d2:d1:70:5c:81:5d:cc:81:f1:69:18:48: e5:19:c3:ec:ea:42:b4:0e:59:e6:32:03:f9:41:b5: 83:5a:4c:ad:b6:cc:34:c3:c6:76:63:0e:85:6a:f6: 0e:2e:9d:c6:d5:65:10:6e:1d:99:e3:7c:ec:60:ff: 34:59:87:f7:ac:44:8f:2a:9c:0c:47:3d:0c:88:dc: 3d:c6:b6:10:bd:2b:73:72:2e:26:10:97:30:bf:3a: e0:52:6c:a9:2f:4b:4c:80:ee:d1:f2:ee:e6:d5:38: c1:a3:82:a1:72:f7:3e:9c:1c:8a:4f:43:0b:2b:d5: 1c:41:3f:49:d7:d8:7b:0d:f1:f8:a8:50:d1:49:79: 7f:fd:58:7d:77:72:3e:ca:36:6f:0d:2e:5b:48:35: 6d:2e:3a:d3:71:89:39:85:62:d2:9b:3c:a4:40:c4: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:59:F4:F3:7C:C6:60:01:83:BD:79:B2:8B:A9:3B:15:17:D7:4A:D9 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:37:3a:14:65:68:b9:38:fe:14:4b:5b:05:62:ce:83:02:b9: 77:fa:70:ab:3b:c9:85:0e:42:5d:5f:7c:1c:c8:91:41:82:ca: 34:7c:21:7c:97:c2:3e:c4:c8:e3:61:f3:34:b0:3c:9f:86:82: 4a:7d:39:5e:f4:65:42:13:47:30:52:d0:17:64:85:fa:fb:dc: 48:31:da:6c:24:15:81:bc:36:8e:eb:0f:c8:28:e2:54:40:f5: 5e:4e:28:e5:47:8d:d0:90:7d:67:72:3d:49:a0:50:29:67:4b: 0d:a2:f4:3b:f7:2c:92:1a:f7:f0:e9:f5:7c:90:1f:8b:bb:97: 00:d1:22:5b:a0:03:8a:e6:ae:08:d9:63:9e:96:fa:6f:7b:1a: 84:e7:1a:95:ca:db:2c:e1:26:b0:9d:70:3e:64:64:9d:ed:62: c7:82:0d:4e:81:3c:c0:f4:e9:c7:a6:9a:a8:2c:18:66:c7:9d: a8:2c:bd:35:1d:5e:9e:f6:54:42:1c:1b:bf:b9:47:bb:c5:bb: 1d:89:a5:13:b9:ad:bb:c6:81:1f:ef:df:41:4d:4b:be:cd:7e: 20:58:d9:cc:48:d0:4e:fa:82:7d:5d:64:12:c5:ec:50:dc:14: e8:50:49:22:34:81:bc:51:9a:3f:2f:86:9b:f6:4a:16:1f:7a: a6:51:6e:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwODIyMjA1OTEyWhcNMjUwODI5MjA1OTEyWjAYMRYwFAYD VQQDEw02OGE4ZGEyMS03ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCMHYu8HYhv4Se+rFbIrAj0nCVIDAAZMcBoHcO+Gu9s18etSBVoVaqUdztk3 F7C1YDUguBQEZ9hb+AHSjBrQaUQlXBWnRYuoH1qVuuNpRpDoF7mRb0cTSA8wMurS 0XBcgV3MgfFpGEjlGcPs6kK0DlnmMgP5QbWDWkyttsw0w8Z2Yw6FavYOLp3G1WUQ bh2Z43zsYP80WYf3rESPKpwMRz0MiNw9xrYQvStzci4mEJcwvzrgUmypL0tMgO7R 8u7m1TjBo4Khcvc+nByKT0MLK9UcQT9J19h7DfH4qFDRSXl//Vh9d3I+yjZvDS5b SDVtLjrTcYk5hWLSmzykQMR9mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdZ9PN8 xmABg715soupOxUX10rZMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDNzoUZWi5OP4US1sFYs6DArl3+nCrO8mFDkJdX3wcyJFBgso0fCF8 l8I+xMjjYfM0sDyfhoJKfTle9GVCE0cwUtAXZIX6+9xIMdpsJBWBvDaO6w/IKOJU QPVeTijlR43QkH1ncj1JoFApZ0sNovQ79yySGvfw6fV8kB+Lu5cA0SJboAOK5q4I 2WOelvpvexqE5xqVytss4SawnXA+ZGSd7WLHgg1OgTzA9OnHppqoLBhmx52oLL01 HV6e9lRCHBu/uUe7xbsdiaUTua27xoEf799BTUu+zX4gWNnMSNBO+oJ9XWQSxexQ 3BToUEkiNIG8UZo/L4ab9koWH3qmUW5x -----END CERTIFICATE-----Generated at Sat Aug 23 14:04:33 2025 by rpki-client