$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft File: gez_R_JbIULxDfbUmuDiGf7XR_g.mft (raw, json) Hash identifier: 5foa2sefaNbW1VvYNJDl9RaU3Cg6Z3UbpUAtU0MRl7g= Subject key identifier: D8:00:E6:78:00:BB:32:5F:3B:33:09:F2:13:13:68:C7:B0:1E:07:2F Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0857 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft Manifest number: 084A Signing time: Sun 02 Nov 2025 20:43:34 +0000 Manifest this update: Sun 02 Nov 2025 20:43:34 +0000 Manifest next update: Sun 09 Nov 2025 20:43:34 +0000 Files and hashes: 1: gez_R_JbIULxDfbUmuDiGf7XR_g.crl (hash: i7qUhiDRwdIE/7kBTMxX/C1Y9gehWs+R0djGocReLUM=) 2: B287525CE81011EA926BE66FC4F9AE02.roa (hash: sFHCJw5BrykaJrt5HBvIuIZlR2YHVfxWnMrA0b3Zjo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Nov 2 20:43:34 2025 GMT Not After : Nov 9 20:43:34 2025 GMT Subject: CN=6907c276-0285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:de:4d:2c:08:1b:e3:d8:b2:a0:1d:49:3c:5a: c9:e9:3a:d7:c0:a9:4d:ac:20:31:fc:62:84:3b:ca: 39:15:3d:62:d0:6c:bf:a5:79:a3:26:c0:4c:ea:54: ef:10:7a:50:da:07:bc:e2:70:e4:f3:a8:1b:77:08: 67:91:24:d9:2f:35:d7:8e:c4:84:a1:e7:31:cd:f7: 31:96:ea:49:16:5f:b5:36:b0:e2:72:e4:84:35:c6: df:f5:76:54:51:e0:6c:88:70:37:ce:ee:dc:92:48: 8a:92:3e:ad:30:fb:cc:83:b5:4c:e8:ac:9b:4c:12: 5f:7c:4f:0d:c7:49:de:e7:a6:07:d9:25:58:90:c8: d4:a3:9b:78:b8:56:32:f2:79:af:a7:68:c8:b8:80: 8c:9f:74:70:39:c1:29:9e:d9:08:6c:91:4f:38:0b: 3b:fa:5d:35:bb:fd:23:74:54:9b:9d:a0:a3:48:57: 81:bc:d3:3d:df:3c:ac:0a:f1:a6:4b:c1:ff:50:e6: 97:ec:9b:33:2d:f3:69:94:8b:9f:e0:16:ce:9f:0b: 44:11:e2:76:94:ef:bb:b0:36:8f:1c:8e:b1:68:e9: 36:bd:e1:c2:c2:13:d4:1b:2d:d9:da:f4:04:c1:64: dc:0c:9d:e3:52:45:94:f6:40:5c:7a:ee:0d:97:c0: aa:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:00:E6:78:00:BB:32:5F:3B:33:09:F2:13:13:68:C7:B0:1E:07:2F X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:60:62:8b:ca:5d:66:01:ab:3a:e4:4e:99:1a:af:e0:b5:70: 8a:6e:62:f4:88:e1:2a:56:24:33:36:aa:a9:58:3b:6e:1f:87: fa:fd:27:58:04:65:93:3d:7d:4d:32:ea:ea:08:67:d1:13:de: 71:c0:2f:28:cd:e4:13:46:d0:39:6d:9e:5b:b1:06:ce:4a:29: 8f:45:39:35:2e:b4:02:14:8b:b0:4f:b0:53:06:21:ef:9d:56: 63:8c:0c:e8:01:18:1d:a6:b2:3c:39:3e:2c:13:4b:76:7f:28: 96:59:91:d2:0e:c4:03:a4:8a:13:89:e5:51:06:d4:a0:d4:55: 1e:fc:b7:6c:c0:9d:b1:d9:43:04:f7:54:84:a6:bb:8b:98:3d: 98:16:69:c9:ae:f0:66:82:b9:64:da:8a:22:21:02:ec:52:6b: c7:5b:a7:12:b2:d1:14:ad:42:e1:16:12:bf:87:42:77:20:95: 0a:6d:d6:37:3b:c8:1d:f7:aa:8f:fe:5e:6c:14:af:d7:bf:f9: 62:3d:c1:c4:f3:44:f6:f0:81:20:d8:01:9a:51:1d:02:82:cd: b8:0c:9c:dc:09:9a:b5:b9:58:6b:0a:88:e0:75:a6:ec:7c:3b: 19:b4:f6:22:69:77:1f:a9:d9:06:ec:49:5a:a0:8e:50:7a:76: 05:63:ff:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUxMTAyMjA0MzM0WhcNMjUxMTA5MjA0MzM0WjAYMRYwFAYD VQQDEw02OTA3YzI3Ni0wMjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3d5NLAgb49iyoB1JPFrJ6TrXwKlNrCAx/GKEO8o5FT1i0Gy/pXmjJsBM6lTv EHpQ2ge84nDk86gbdwhnkSTZLzXXjsSEoecxzfcxlupJFl+1NrDicuSENcbf9XZU UeBsiHA3zu7ckkiKkj6tMPvMg7VM6KybTBJffE8Nx0ne56YH2SVYkMjUo5t4uFYy 8nmvp2jIuICMn3RwOcEpntkIbJFPOAs7+l01u/0jdFSbnaCjSFeBvNM93zysCvGm S8H/UOaX7JszLfNplIuf4BbOnwtEEeJ2lO+7sDaPHI6xaOk2veHCwhPUGy3Z2vQE wWTcDJ3jUkWU9kBceu4Nl8Cq0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgA5ngA uzJfOzMJ8hMTaMewHgcvMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTVENi81QTUyRjkxMkU3NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklV THhEZmJVbXVEaUdmN1hSX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqYGKLyl1mAas65E6ZGq/gtXCKbmL0iOEqViQzNqqpWDtuH4f6/SdY BGWTPX1NMurqCGfRE95xwC8ozeQTRtA5bZ5bsQbOSimPRTk1LrQCFIuwT7BTBiHv nVZjjAzoARgdprI8OT4sE0t2fyiWWZHSDsQDpIoTieVRBtSg1FUe/LdswJ2x2UME 91SEpruLmD2YFmnJrvBmgrlk2ooiIQLsUmvHW6cSstEUrULhFhK/h0J3IJUKbdY3 O8gd96qP/l5sFK/Xv/liPcHE80T28IEg2AGaUR0Cgs24DJzcCZq1uVhrCojgdabs fDsZtPYiaXcfqdkG7ElaoI5QenYFY//3 -----END CERTIFICATE-----Generated at Tue Nov 4 18:54:31 2025 by rpki-client