$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: uhOVmg7pqbmCyL3G9RVaviWZJm42kll3fu6JWgjFcd8= Subject key identifier: 79:EE:E3:38:72:CF:25:A4:56:97:7C:6A:48:02:97:15:8C:DF:A1:A7 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0732 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 072B Signing time: Mon 06 May 2024 22:34:17 +0000 Manifest this update: Mon 06 May 2024 22:34:16 +0000 Manifest next update: Mon 13 May 2024 22:34:16 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: GbY2CyqyLYICibR0tdcjQ8jBjL359WTwY1g42Nf1pi8=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: 0yo4rpI4Jk+1akL7kBrCcFa30wmeKWrTV9fA7cVvIFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: May 6 22:34:16 2024 GMT Not After : May 13 22:34:16 2024 GMT Subject: CN=66395ae8-b045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:26:47:51:65:c9:80:6c:cd:c8:b0:49:04:ed: e8:30:15:b6:00:36:8f:6d:e0:ab:db:bd:ee:a3:31: 71:fe:97:5d:22:a6:19:4e:94:01:f2:03:9f:26:2b: dc:9f:1a:29:c9:a3:75:62:10:05:09:86:07:4c:33: 80:0f:e0:67:16:6e:cf:4c:4d:86:00:f7:8f:b1:bd: 92:44:c1:ea:c2:27:4f:e6:b4:5f:3f:0c:87:56:44: 3a:0e:89:0d:3c:74:eb:c9:e8:01:09:6d:84:0e:d4: 5c:55:cc:aa:ba:f6:dc:a3:32:19:28:a8:65:98:55: eb:b7:14:2b:25:25:c7:fb:27:29:cc:4d:33:13:3e: cf:ae:75:78:22:25:eb:e1:95:15:5b:8f:b2:b5:f2: e3:f3:28:7b:2a:7d:f4:12:52:2b:eb:fa:25:93:9b: 16:ce:3d:e1:a4:6f:29:ec:9b:ce:dd:c1:75:80:5e: 9d:cb:24:68:e7:4b:7b:bc:b1:da:6b:d5:97:92:7d: 7a:d0:4c:44:57:31:78:0f:e3:96:92:27:e3:f0:c4: 4d:6f:23:a2:26:54:93:1d:b0:df:a5:3a:59:12:11: 78:7c:d9:9d:f1:aa:be:68:b3:27:53:d2:c8:3f:bd: 8f:25:8e:71:53:b0:fc:b7:96:25:ad:c3:e8:27:00: 9d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EE:E3:38:72:CF:25:A4:56:97:7C:6A:48:02:97:15:8C:DF:A1:A7 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:81:5e:fa:f8:67:9e:97:75:59:10:a9:30:50:5e:a0:01:bb: 10:a2:84:16:aa:c2:11:14:dc:4e:09:a7:28:0d:f8:8d:c2:9e: a0:d3:98:57:7f:c0:39:86:17:a5:e0:27:c4:ca:d0:a5:9a:ad: 48:a7:0e:70:5c:98:64:44:d1:02:31:95:83:f5:93:61:c8:1d: b9:d9:c1:2d:7a:53:54:d8:ad:68:24:30:f3:27:0f:6c:d8:2e: c2:7e:94:d2:a6:b7:4b:d1:cb:9a:61:b3:75:bc:e8:ee:51:47: d3:a7:19:eb:b8:71:96:8b:86:a2:81:cc:8d:d3:96:12:f1:45: 49:16:e1:d4:ed:cd:98:78:6b:2e:30:d2:ad:c3:34:68:78:d3: 57:ce:ac:42:5c:31:65:1c:60:a8:cd:66:b2:c2:bd:7c:7d:01: 7c:1a:db:07:8f:a8:6f:fa:55:43:70:53:5c:4e:25:fd:71:92: 81:01:3a:5b:5a:70:50:34:6a:80:87:1e:46:a3:dc:74:42:f5: 17:73:dc:64:66:6e:5a:d6:c5:9b:d1:a9:8b:1b:c7:65:f5:07: 43:c7:da:2d:47:05:0c:ed:61:1e:7b:42:e3:20:da:66:44:2e: 49:d8:37:2b:e6:a1:ff:04:ee:fc:80:ea:9c:56:cd:a0:f9:36: 86:a0:04:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjQwNTA2MjIzNDE2WhcNMjQwNTEzMjIzNDE2WjAYMRYwFAYD VQQDEw02NjM5NWFlOC1iMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iZHUWXJgGzNyLBJBO3oMBW2ADaPbeCr273uozFx/pddIqYZTpQB8gOfJivc nxopyaN1YhAFCYYHTDOAD+BnFm7PTE2GAPePsb2SRMHqwidP5rRfPwyHVkQ6DokN PHTryegBCW2EDtRcVcyquvbcozIZKKhlmFXrtxQrJSXH+ycpzE0zEz7PrnV4IiXr 4ZUVW4+ytfLj8yh7Kn30ElIr6/olk5sWzj3hpG8p7JvO3cF1gF6dyyRo50t7vLHa a9WXkn160ExEVzF4D+OWkifj8MRNbyOiJlSTHbDfpTpZEhF4fNmd8aq+aLMnU9LI P72PJY5xU7D8t5YlrcPoJwCdGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnu4zhy zyWkVpd8akgClxWM36GnMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2gV76+Geel3VZEKkwUF6gAbsQooQWqsIRFNxOCacoDfiNwp6g05hX f8A5hhel4CfEytClmq1Ipw5wXJhkRNECMZWD9ZNhyB252cEtelNU2K1oJDDzJw9s 2C7CfpTSprdL0cuaYbN1vOjuUUfTpxnruHGWi4aigcyN05YS8UVJFuHU7c2YeGsu MNKtwzRoeNNXzqxCXDFlHGCozWaywr18fQF8GtsHj6hv+lVDcFNcTiX9cZKBATpb WnBQNGqAhx5Go9x0QvUXc9xkZm5a1sWb0amLG8dl9QdDx9otRwUM7WEee0LjINpm RC5J2Dcr5qH/BO78gOqcVs2g+TaGoAQw -----END CERTIFICATE-----Generated at Mon May 6 23:05:37 2024 by rpki-client on console-fra.rpki-client.org