$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: OZ4zz+bm9b95l1Z3mqFLmZEDZ7H4QQImn3Z3qr4LQHQ= Subject key identifier: 4E:7B:7B:DA:8C:A2:13:2B:22:AC:7A:76:22:CA:1E:61:04:22:30:60 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 07CE Signing time: Wed 12 Mar 2025 20:44:50 +0000 Manifest this update: Wed 12 Mar 2025 20:44:50 +0000 Manifest next update: Wed 19 Mar 2025 20:44:50 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: Gxf+C++jEHEG8lPrCkaPnMBd8YalWqDBu9/yjJ6nUP8=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: kQOgS4peBBp70aUmxSiUFHTW5T23lIg32+P5LpE+4Fo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6 Validity Not Before: Mar 12 20:44:50 2025 GMT Not After : Mar 19 20:44:50 2025 GMT Subject: CN=67d1f242-6693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:dd:2e:c7:81:bc:37:61:43:27:96:41:48:e6: ed:3a:b8:b5:2d:9e:0e:a6:21:52:30:1b:6f:13:61: 6f:f2:53:de:8b:af:a0:0a:cd:19:2c:e2:e3:d6:cb: d8:b6:4c:41:05:dd:01:73:50:96:4b:1e:77:4d:65: 45:c9:7d:4c:73:f8:56:d7:3f:6f:95:b8:8c:28:9d: 51:14:a0:70:9f:e8:0a:05:68:cb:26:85:6b:f1:7b: 21:e8:9e:d0:eb:10:7f:59:1f:3d:c5:9a:26:39:1a: cd:3f:d8:8a:e9:45:e2:db:d4:bd:93:97:17:20:cf: f0:e0:9f:f8:f2:25:61:89:fa:14:64:1a:49:5c:b0: 63:b6:a3:e2:14:51:db:e6:7e:aa:d0:21:2f:da:5f: 2f:ae:3e:1a:e3:67:ec:11:0f:d4:42:b1:1f:d0:f5: ed:a3:9f:bd:e0:ec:02:88:41:a6:8a:da:54:2f:87: 05:8d:e9:3e:31:98:35:6f:d8:ba:66:d4:0b:5c:d2: a9:55:be:e8:2d:af:37:bb:e2:7a:d3:66:80:1e:2f: 98:4e:82:af:f7:35:6f:2e:db:31:d4:e9:e5:e3:92: 98:b7:94:f8:6b:26:7f:25:5e:4b:0c:2e:f3:b1:dc: 43:ed:5f:3a:77:60:67:48:01:09:55:55:b9:9d:aa: 64:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7B:7B:DA:8C:A2:13:2B:22:AC:7A:76:22:CA:1E:61:04:22:30:60 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:2b:0c:f2:82:ff:92:54:a6:86:fc:4e:32:ce:2d:0d:ba:1a: 42:f4:bf:a4:b8:f4:a2:02:71:71:54:4e:7f:96:fc:1f:8c:5c: 99:87:51:f2:33:b7:a6:8d:2b:b6:3e:dc:99:19:f6:90:68:17: 95:0b:e5:a9:09:cc:41:03:93:25:9a:a8:83:32:6c:72:70:bf: 33:94:0f:81:9d:a0:89:65:90:a7:e8:50:09:a4:22:3c:e6:1a: b7:ad:39:32:59:bf:8e:c1:3d:e9:b8:74:6f:78:db:bc:cf:b1: 15:a7:a4:74:38:34:c8:3a:42:6b:cf:9f:18:19:93:85:28:13: 8c:88:bb:8a:fc:53:2a:7c:9d:e8:4e:0d:c0:84:d1:32:45:fc: 0a:00:82:5f:c7:0f:9e:74:16:bc:ff:3a:94:a3:53:a1:e3:dc: b0:88:72:8d:08:df:8c:6c:bd:70:2c:83:55:ae:5c:d9:7a:f9: 12:33:a4:db:ea:64:8f:e0:92:80:01:10:55:37:cb:75:84:ee: 58:20:dc:9a:56:c6:c2:80:63:9c:bb:18:2e:08:f0:17:b1:59: 45:66:82:60:2c:2f:eb:56:5d:ea:2b:d2:23:6d:9d:90:99:26: 0f:80:8b:e2:b4:71:92:fa:27:82:c9:1f:52:db:e5:72:12:24: d0:f0:89:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwMzEyMjA0NDUwWhcNMjUwMzE5MjA0NDUwWjAYMRYwFAYD VQQDEw02N2QxZjI0Mi02NjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApd0ux4G8N2FDJ5ZBSObtOri1LZ4OpiFSMBtvE2Fv8lPei6+gCs0ZLOLj1svY tkxBBd0Bc1CWSx53TWVFyX1Mc/hW1z9vlbiMKJ1RFKBwn+gKBWjLJoVr8Xsh6J7Q 6xB/WR89xZomORrNP9iK6UXi29S9k5cXIM/w4J/48iVhifoUZBpJXLBjtqPiFFHb 5n6q0CEv2l8vrj4a42fsEQ/UQrEf0PXto5+94OwCiEGmitpUL4cFjek+MZg1b9i6 ZtQLXNKpVb7oLa83u+J602aAHi+YToKv9zVvLtsx1Onl45KYt5T4ayZ/JV5LDC7z sdxD7V86d2BnSAEJVVW5napkbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE57e9qM ohMrIqx6diLKHmEEIjBgMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnKwzygv+SVKaG/E4yzi0NuhpC9L+kuPSiAnFxVE5/lvwfjFyZh1Hy M7emjSu2PtyZGfaQaBeVC+WpCcxBA5MlmqiDMmxycL8zlA+BnaCJZZCn6FAJpCI8 5hq3rTkyWb+OwT3puHRveNu8z7EVp6R0ODTIOkJrz58YGZOFKBOMiLuK/FMqfJ3o Tg3AhNEyRfwKAIJfxw+edBa8/zqUo1Oh49ywiHKNCN+MbL1wLINVrlzZevkSM6Tb 6mSP4JKAARBVN8t1hO5YINyaVsbCgGOcuxguCPAXsVlFZoJgLC/rVl3qK9IjbZ2Q mSYPgIvitHGS+ieCyR9S2+VyEiTQ8Ikp -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:48 2025 by rpki-client