$ rpki-client -vvf rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft File: ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft (raw, json) Hash identifier: iraF7V6WZW0ma1+xnDdY9qzHS2dolQW1rxi3Di1IBAQ= Subject key identifier: 26:01:BC:17:FB:FA:1C:73:95:28:9B:BF:BD:20:42:F1:33:70:07:8D Authority key identifier: 67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF Certificate issuer: /CN=A916AFF4/serialNumber=6724BF400FA6A41C78DE7031BFA4F9AFC83780CF Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft Manifest number: 7B Signing time: Thu 03 Apr 2025 05:55:24 +0000 Manifest this update: Thu 03 Apr 2025 05:55:23 +0000 Manifest next update: Thu 10 Apr 2025 05:55:23 +0000 Files and hashes: 1: ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl (hash: aVOgTiqfO4FpceYWLPJ4PhbBEfNSjxUL6gBbno6WUXI=) 2: 59B897AE59EE11EFB2872947C4F9AE02.roa (hash: 1pdOgF9NWhDTBBV9RWwEHphdN2HbfeFbB0PL1U6/RqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:55:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AFF4 Validity Not Before: Apr 3 05:55:23 2025 GMT Not After : Apr 10 05:55:23 2025 GMT Subject: CN=67ee22cb-6cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:09:5f:aa:fd:5f:59:53:48:a0:a8:7d:db:ef: a1:b3:11:f3:4e:bd:27:f5:1f:69:e7:5f:db:4c:48: 6c:2a:74:52:e1:2d:75:53:5c:e5:67:09:cb:48:f3: 57:86:e5:9e:39:38:cd:0c:3d:f8:87:1a:86:d3:90: 47:b4:3b:8e:d4:f6:5b:bb:db:38:00:0f:36:d0:bf: 3f:ca:63:37:5a:bf:74:7c:c5:3f:5a:22:c9:17:b2: 9a:14:f3:c2:40:a2:08:9f:c2:b0:0e:29:db:47:65: be:f7:8c:88:24:56:66:bf:43:b6:98:a9:7b:b3:5b: eb:e0:a5:cc:d3:5d:40:ce:a9:6b:6d:d2:58:59:ad: c2:c0:98:2a:3c:f2:b7:11:ce:9e:68:fc:a2:9e:ce: 59:5d:8f:6c:86:c1:53:58:f8:02:53:59:db:3a:3d: f9:af:6f:6f:ce:f1:f6:94:a6:ba:63:e1:33:fd:68: 92:21:40:12:c9:06:31:d7:7b:4e:e9:95:ce:47:af: a2:dd:92:51:0d:de:92:93:6f:69:b5:93:70:b2:b0: f9:8b:d1:9f:d7:24:9e:b9:d0:cc:76:93:b9:31:0b: cd:9d:14:d0:80:98:6e:a9:e2:4a:2d:5b:cd:1f:02: 60:b6:ba:df:f4:32:c8:d8:73:2e:37:c6:82:1f:35: ba:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:01:BC:17:FB:FA:1C:73:95:28:9B:BF:BD:20:42:F1:33:70:07:8D X509v3 Authority Key Identifier: keyid:67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:af:1a:99:e4:de:ab:b7:e0:8d:a1:c8:45:93:c3:62:39:9d: e7:75:98:26:a1:31:03:c6:3d:01:c3:3a:8f:f5:76:04:57:7f: cc:70:23:7a:42:cd:34:7b:ac:77:d8:b7:da:0b:a5:ac:c5:b9: cb:f0:3f:51:d4:4b:cc:cb:fb:83:39:ac:5f:40:62:e9:a7:cb: a4:e2:b6:a3:f0:11:26:c9:a4:a8:6b:38:0f:cf:21:a5:1b:d9: 2a:6c:d0:d4:d1:33:57:f7:ef:8b:00:22:9a:ef:7e:9d:9c:08: cc:34:55:6f:2c:05:e2:93:79:55:0e:8c:27:63:d0:dd:b0:ff: 08:e7:d6:a7:6c:76:d3:42:d2:a5:75:e6:63:a9:7f:c9:92:46: a2:f9:0b:ab:96:57:c8:64:ab:08:1b:af:f9:46:33:21:69:41: 53:83:eb:90:2e:4a:b7:e7:0a:0d:ae:d0:78:e1:ed:2f:0a:36: 68:15:1e:76:91:56:a1:27:a8:d4:36:44:30:08:db:30:7e:9c: 15:73:52:a6:5b:c7:3b:32:34:f2:fe:37:a1:30:6f:6a:46:ce: 65:e0:e4:f5:ad:9f:59:d6:84:38:5a:22:e5:ac:5c:6f:fb:85: 7d:d8:2c:6d:aa:8e:da:d3:a0:d7:bc:5b:7a:8f:a8:a6:ba:99: 84:93:b2:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUZGNDExMC8GA1UEBRMoNjcyNEJGNDAwRkE2QTQxQzc4REU3MDMxQkZBNEY5QUZD ODM3ODBDRjAeFw0yNTA0MDMwNTU1MjNaFw0yNTA0MTAwNTU1MjNaMBgxFjAUBgNV BAMTDTY3ZWUyMmNiLTZjYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuCV+q/V9ZU0igqH3b76GzEfNOvSf1H2nnX9tMSGwqdFLhLXVTXOVnCctI81eG 5Z45OM0MPfiHGobTkEe0O47U9lu72zgADzbQvz/KYzdav3R8xT9aIskXspoU88JA ogifwrAOKdtHZb73jIgkVma/Q7aYqXuzW+vgpczTXUDOqWtt0lhZrcLAmCo88rcR zp5o/KKezlldj2yGwVNY+AJTWds6Pfmvb2/O8faUprpj4TP9aJIhQBLJBjHXe07p lc5Hr6LdklEN3pKTb2m1k3CysPmL0Z/XJJ650Mx2k7kxC82dFNCAmG6p4kotW80f AmC2ut/0MsjYcy43xoIfNbrDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJgG8F/v6 HHOVKJu/vSBC8TNwB40wHwYDVR0jBBgwFoAUZyS/QA+mpBx43nAxv6T5r8g3gM8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBRkY0LzBFNjIyOEM0NTlF RTExRUY5MTAyN0I0NkM0RjlBRTAyL1p5U19RQS1tcEJ4NDNuQXh2NlQ1cjhnM2dN OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnlTX1FBLW1wQng0M25BeHY2VDVyOGczZ004LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB RkY0LzBFNjIyOEM0NTlFRTExRUY5MTAyN0I0NkM0RjlBRTAyL1p5U19RQS1tcEJ4 NDNuQXh2NlQ1cjhnM2dNOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB6vGpnk3qu34I2hyEWTw2I5ned1mCahMQPGPQHDOo/1dgRXf8xwI3pC zTR7rHfYt9oLpazFucvwP1HUS8zL+4M5rF9AYumny6TitqPwESbJpKhrOA/PIaUb 2Sps0NTRM1f374sAIprvfp2cCMw0VW8sBeKTeVUOjCdj0N2w/wjn1qdsdtNC0qV1 5mOpf8mSRqL5C6uWV8hkqwgbr/lGMyFpQVOD65AuSrfnCg2u0Hjh7S8KNmgVHnaR VqEnqNQ2RDAI2zB+nBVzUqZbxzsyNPL+N6Ewb2pGzmXg5PWtn1nWhDhaIuWsXG/7 hX3YLG2qjtrToNe8W3qPqKa6mYSTsqE= -----END CERTIFICATE-----Generated at Fri Apr 4 21:52:07 2025 by rpki-client