$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: WVVfT4L7Sp0ZPwyThR7ov6eAmst4zEXVWWZm1Yqn/sU= Subject key identifier: 96:98:D4:DB:F4:9E:1D:14:8B:9A:78:B6:44:2B:C4:58:87:E2:DC:7F Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0836 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 082A Signing time: Tue 02 Sep 2025 21:07:05 +0000 Manifest this update: Tue 02 Sep 2025 21:07:04 +0000 Manifest next update: Tue 09 Sep 2025 21:07:04 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: 7R78HQAMVwre+XDtORZWcI11r3vpvSAwgSfQyD5dxaY=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: jwc4CjKaqj0yrYq98ywhthLA3J0G9mQwUg0CD9JYdH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 21:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Sep 2 21:07:04 2025 GMT Not After : Sep 9 21:07:04 2025 GMT Subject: CN=68b75c79-276e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4e:f0:7f:8e:68:94:a5:d9:c3:9c:b2:38:b2: 2d:45:7d:50:f2:63:40:bd:64:89:0c:2d:8f:c1:67: 3e:04:90:3f:4e:16:b9:43:97:bf:a0:2a:d0:27:3b: 1b:92:0f:a7:8b:46:13:12:e8:8e:ba:12:6c:36:ba: c3:c8:d1:23:01:d7:fb:49:a2:cd:10:e8:ba:a3:85: 6d:18:be:20:e0:1c:99:41:46:12:bf:25:5d:03:6a: 77:a1:13:aa:b5:67:2a:90:bb:2c:7d:58:50:bf:c3: 30:e1:48:69:a5:94:53:89:8c:87:67:d1:39:2b:4b: 4b:8e:e3:7b:21:4e:e4:45:81:cd:a7:b9:3a:49:12: 9f:69:c1:f2:16:26:72:cc:73:75:04:d4:1a:ea:ba: 10:db:38:b1:19:5a:0f:11:06:e8:1c:74:e0:42:ba: ef:de:4b:c2:e2:d8:35:bc:b6:8e:e4:fb:81:75:b8: e1:43:73:1c:c3:d3:d2:09:49:65:fa:81:ef:b1:22: 11:73:e7:ea:24:18:5b:ef:9a:59:96:50:7a:f6:31: 59:75:3d:45:de:09:c9:66:99:64:61:ef:0d:5a:57: bf:48:38:ce:2e:a4:08:b5:22:7d:6a:18:68:53:a4: 5a:03:10:fb:4c:6e:85:cd:9c:ed:f2:0f:90:2f:ed: 7e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:98:D4:DB:F4:9E:1D:14:8B:9A:78:B6:44:2B:C4:58:87:E2:DC:7F X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:7f:79:ae:47:85:d0:8c:01:b1:6b:a1:15:9e:6f:a5:dc:1e: ba:e9:d9:5c:f8:af:6c:6a:7c:d1:f9:d2:88:4e:a5:ca:99:c2: 5c:fa:cd:fd:00:79:90:99:e4:15:cb:c8:11:a2:09:1c:c6:66: e4:87:61:24:06:2d:77:59:1c:ab:cc:fe:97:77:9c:30:12:28: dd:75:aa:13:d8:8b:04:5e:13:8c:89:1a:42:c7:6a:5f:9f:cd: 48:b1:bf:86:31:50:73:15:a6:d7:66:c7:fa:e6:53:b1:91:b9: 92:f5:c6:1f:15:72:23:a1:c7:20:6f:49:6c:dd:14:cc:8f:05: 87:da:f5:0a:ab:83:6f:6b:79:ed:2e:79:7a:69:8c:84:50:a0: 8b:f9:0f:92:56:a2:0e:94:4b:19:76:a3:ff:e5:f4:be:03:8a: 7f:45:c8:34:27:15:07:8d:a1:8f:c2:4d:19:4a:5d:20:1f:f4: 23:2f:04:01:de:d3:60:7a:b0:56:08:04:7c:a4:16:ab:93:9d: cf:45:8a:a0:b6:89:1e:b9:b3:71:f7:32:ec:73:2b:37:0b:4d: 4a:fb:85:b7:ef:b3:b9:d4:3a:62:1f:5a:39:99:62:1d:6a:cc: 5a:37:48:35:5c:7f:19:26:4d:48:6e:dd:a0:62:2a:1c:05:ef: e4:55:76:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwOTAyMjEwNzA0WhcNMjUwOTA5MjEwNzA0WjAYMRYwFAYD VQQDEw02OGI3NWM3OS0yNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl07wf45olKXZw5yyOLItRX1Q8mNAvWSJDC2PwWc+BJA/Tha5Q5e/oCrQJzsb kg+ni0YTEuiOuhJsNrrDyNEjAdf7SaLNEOi6o4VtGL4g4ByZQUYSvyVdA2p3oROq tWcqkLssfVhQv8Mw4UhppZRTiYyHZ9E5K0tLjuN7IU7kRYHNp7k6SRKfacHyFiZy zHN1BNQa6roQ2zixGVoPEQboHHTgQrrv3kvC4tg1vLaO5PuBdbjhQ3Mcw9PSCUll +oHvsSIRc+fqJBhb75pZllB69jFZdT1F3gnJZplkYe8NWle/SDjOLqQItSJ9ahho U6RaAxD7TG6FzZzt8g+QL+1+uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaY1Nv0 nh0Ui5p4tkQrxFiH4tx/MB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUf3muR4XQjAGxa6EVnm+l3B666dlc+K9sanzR+dKITqXKmcJc+s39 AHmQmeQVy8gRogkcxmbkh2EkBi13WRyrzP6Xd5wwEijddaoT2IsEXhOMiRpCx2pf n81Isb+GMVBzFabXZsf65lOxkbmS9cYfFXIjoccgb0ls3RTMjwWH2vUKq4Nva3nt Lnl6aYyEUKCL+Q+SVqIOlEsZdqP/5fS+A4p/Rcg0JxUHjaGPwk0ZSl0gH/QjLwQB 3tNgerBWCAR8pBark53PRYqgtokeubNx9zLscys3C01K+4W377O51DpiH1o5mWId asxaN0g1XH8ZJk1Ibt2gYiocBe/kVXYy -----END CERTIFICATE-----Generated at Thu Sep 4 16:00:07 2025 by rpki-client