$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: bCUMD6ClWSWMaeeELZ7Z3zGRC2/qUamubRUMu6zQuRk= Subject key identifier: 07:05:C1:C0:DB:28:66:9A:3D:8B:7B:06:77:A1:62:04:4C:C1:4A:93 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 07FA Signing time: Wed 04 Jun 2025 20:52:05 +0000 Manifest this update: Wed 04 Jun 2025 20:52:04 +0000 Manifest next update: Wed 11 Jun 2025 20:52:04 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: gyMaQHDqegNJW6+gwLz7v0r4vnBDfZnMu8nS2FrcOCo=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: qhioOnup64H2Oct1uVBt6trwRt6rR40e8Cq4NvfLSAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 20:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Jun 4 20:52:04 2025 GMT Not After : Jun 11 20:52:04 2025 GMT Subject: CN=6840b1f4-3332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:93:66:b3:23:2e:6c:38:25:e7:a0:20:65:6b: d1:29:63:3a:32:ae:5e:f7:05:12:97:20:29:12:88: 65:88:9e:1f:dd:3b:73:bd:2b:d7:b4:d0:bf:85:11: 85:55:59:b3:35:9f:fd:d1:cf:cb:b6:fb:5b:1b:48: b1:ff:7c:4e:e8:1f:7e:a6:98:48:83:5d:1b:39:1c: 6e:3b:e7:00:6a:62:9f:82:21:98:83:ef:f5:10:aa: 90:32:35:29:24:ba:74:38:d9:34:55:b2:ec:4f:5c: c5:c9:bc:8e:72:6f:a1:9f:5d:99:d4:48:9a:d8:bd: ce:c5:fb:d9:30:e7:6f:a9:9b:48:59:2a:8a:22:9d: c1:6c:21:3a:09:29:4c:b5:d5:13:f6:42:4c:84:19: e3:05:14:1a:e7:04:2e:8e:0d:ed:e9:43:08:a8:1a: f2:38:47:12:4e:80:e7:34:dc:c8:81:00:10:f7:db: 4b:cd:7c:59:09:bb:4e:59:23:51:d3:06:35:3e:b4: 96:82:c8:ff:b1:6d:d5:c2:d8:88:ae:42:eb:4f:a1: 9c:1f:f0:82:e3:2c:8f:8a:37:87:b1:04:db:0c:b0: bd:65:ad:98:4b:1c:24:a5:e4:44:30:de:10:e4:e8: 8d:32:29:e7:c3:d5:06:b7:80:c1:59:e7:d9:cd:9d: a4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:05:C1:C0:DB:28:66:9A:3D:8B:7B:06:77:A1:62:04:4C:C1:4A:93 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:f4:a1:2b:ae:8d:d9:d3:ed:e0:84:96:f6:a0:58:0f:35:df: d5:c3:33:2a:be:37:6f:a7:ee:c0:75:af:5f:20:6b:5e:92:59: 21:68:40:3e:26:2a:54:c1:06:f5:b0:b9:0c:81:67:f5:b1:6a: 40:8d:c6:4d:d8:63:07:fd:7a:79:43:58:7d:0d:d2:97:42:c2: d5:92:01:67:2b:c2:1d:f2:0d:28:63:52:9e:7a:61:b1:6f:98: fe:ef:fc:f5:5b:0b:23:2a:54:3c:3c:81:9f:fb:bd:8d:12:8f: 13:6c:83:d4:ce:0e:5b:64:a0:5e:5d:d2:40:23:74:de:52:ed: b2:9d:ee:e9:dd:bd:41:d5:52:70:af:1c:3d:8f:38:e9:c2:7e: d2:05:77:94:2a:e0:6e:46:c2:fb:e3:dd:ae:69:38:87:27:69: d1:75:29:9c:c5:67:5f:50:77:a3:0a:f8:e6:b9:03:d4:19:8b: d4:da:4b:ac:8b:af:27:f2:ec:d3:11:5b:a6:49:65:8c:df:69: 9e:37:ae:6f:92:fe:6b:79:7b:9e:21:45:30:10:85:35:ba:68: 0f:9c:be:2b:10:da:d4:25:04:d1:6a:b3:49:e6:30:29:7f:2b: d3:7d:fe:23:e1:bc:6b:de:bb:f7:39:a1:13:1d:9d:1b:a7:b6: b8:0b:db:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwNjA0MjA1MjA0WhcNMjUwNjExMjA1MjA0WjAYMRYwFAYD VQQDEw02ODQwYjFmNC0zMzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pNmsyMubDgl56AgZWvRKWM6Mq5e9wUSlyApEohliJ4f3TtzvSvXtNC/hRGF VVmzNZ/90c/LtvtbG0ix/3xO6B9+pphIg10bORxuO+cAamKfgiGYg+/1EKqQMjUp JLp0ONk0VbLsT1zFybyOcm+hn12Z1Eia2L3OxfvZMOdvqZtIWSqKIp3BbCE6CSlM tdUT9kJMhBnjBRQa5wQujg3t6UMIqBryOEcSToDnNNzIgQAQ99tLzXxZCbtOWSNR 0wY1PrSWgsj/sW3VwtiIrkLrT6GcH/CC4yyPijeHsQTbDLC9Za2YSxwkpeREMN4Q 5OiNMinnw9UGt4DBWefZzZ2kZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcFwcDb KGaaPYt7BnehYgRMwUqTMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ9KErro3Z0+3ghJb2oFgPNd/VwzMqvjdvp+7Ada9fIGteklkhaEA+ JipUwQb1sLkMgWf1sWpAjcZN2GMH/Xp5Q1h9DdKXQsLVkgFnK8Id8g0oY1KeemGx b5j+7/z1WwsjKlQ8PIGf+72NEo8TbIPUzg5bZKBeXdJAI3TeUu2yne7p3b1B1VJw rxw9jzjpwn7SBXeUKuBuRsL7492uaTiHJ2nRdSmcxWdfUHejCvjmuQPUGYvU2kus i68n8uzTEVumSWWM32meN65vkv5reXueIUUwEIU1umgPnL4rENrUJQTRarNJ5jAp fyvTff4j4bxr3rv3OaETHZ0bp7a4C9uq -----END CERTIFICATE-----Generated at Fri Jun 6 06:32:37 2025 by rpki-client