$ rpki-client -vvf rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft File: ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft (raw, json) Hash identifier: PQQy5lxFK5UY2UAwyd6BJ8kfC1JBHJ7C85vQQ0AOkc8= Subject key identifier: 0F:89:78:C7:3D:48:86:0C:31:9D:C0:9A:64:4B:57:F4:77:31:CD:BB Authority key identifier: 67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF Certificate issuer: /CN=A916AFF4/serialNumber=6724BF400FA6A41C78DE7031BFA4F9AFC83780CF Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft Manifest number: B0 Signing time: Sat 19 Jul 2025 06:13:23 +0000 Manifest this update: Sat 19 Jul 2025 06:13:22 +0000 Manifest next update: Sat 26 Jul 2025 06:13:22 +0000 Files and hashes: 1: ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl (hash: mX5dZNBTDmvUQ9DsR/XUIMj+5czm/F34r4YdfcBjtQU=) 2: 59B897AE59EE11EFB2872947C4F9AE02.roa (hash: 1pdOgF9NWhDTBBV9RWwEHphdN2HbfeFbB0PL1U6/RqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AFF4, serialNumber=6724BF400FA6A41C78DE7031BFA4F9AFC83780CF Validity Not Before: Jul 19 06:13:22 2025 GMT Not After : Jul 26 06:13:22 2025 GMT Subject: CN=687b3782-f134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3b:86:32:3b:c5:33:64:84:34:de:f4:b2:08: 15:63:26:fd:f7:32:08:f4:d4:87:6d:03:71:fb:49: 73:7f:6d:8d:af:c3:c9:be:c4:40:81:64:df:86:21: b9:3d:75:ee:88:24:bf:58:51:6c:21:cb:f5:98:6a: 70:c3:1f:13:95:12:3b:c7:54:b9:af:b3:58:4e:15: e9:98:a7:0d:89:06:38:9f:04:c6:9c:2d:ee:12:25: d3:b7:15:95:9b:d3:4e:e7:15:d1:b2:b8:f5:88:f2: c8:e3:6b:b7:6a:3d:2a:15:0e:ad:18:c1:7a:39:c7: 98:3f:2b:62:f8:39:19:01:95:4c:0e:4f:76:a7:44: 36:3b:3e:6e:92:85:bb:b7:cf:37:f5:1b:ae:f2:de: 22:24:87:84:20:d1:4c:66:c8:0c:23:64:75:fc:8c: 13:e5:d2:a4:84:b0:7c:52:cb:d9:2e:e0:e9:d2:74: b5:31:84:1f:28:c9:bf:08:6e:48:66:58:fb:8e:2e: 92:31:5f:59:d0:1a:7c:46:e0:60:a9:ef:3c:0e:2b: 46:e5:6f:1b:fb:f1:5e:f5:07:62:16:46:14:4d:18: f9:cc:a7:e6:37:ad:a3:8c:e0:00:51:1d:02:28:d7: bd:d7:1d:49:14:78:05:86:5d:ae:11:4a:4a:40:37: 00:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:89:78:C7:3D:48:86:0C:31:9D:C0:9A:64:4B:57:F4:77:31:CD:BB X509v3 Authority Key Identifier: keyid:67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:5c:54:c3:d6:03:6b:76:7f:2d:d0:7f:a4:f7:69:80:8d:16: 5a:a4:4b:38:5c:64:44:56:91:24:28:5a:d7:f0:27:ef:7a:4a: ec:cb:94:50:6c:a0:4a:fd:04:8e:39:b9:12:ca:81:38:01:59: ec:94:56:dc:7c:0c:13:e1:b7:d4:d9:89:06:5d:f2:ab:46:02: f7:4b:46:99:99:3d:18:bc:3f:98:36:0b:c0:00:91:02:e6:7e: f5:5b:b1:0e:73:e5:c0:75:3f:44:93:26:28:09:d5:eb:f5:3a: 05:6c:4d:04:55:19:aa:6f:e1:73:5b:79:fd:a7:0f:ff:15:84: 57:be:00:53:fa:d6:92:4c:ab:9e:8f:99:21:68:b0:83:89:4c: 45:95:3b:e8:96:15:b9:8e:f8:5f:70:56:d3:4b:46:04:8b:dd: 19:71:ed:33:eb:b3:f7:5a:8c:7e:83:2b:02:d2:c3:18:e7:4c: 0d:87:3f:c3:49:f8:4d:df:8f:f8:ee:6f:19:d2:23:67:45:4f: c1:4b:65:9c:f7:e3:0e:c8:bc:7e:96:f8:58:f2:bc:25:78:b7: 3e:b2:a4:54:86:df:54:eb:9a:c7:4b:43:b0:2a:e1:e9:93:36: a4:34:6f:d6:ce:0c:36:c9:7e:16:77:aa:04:1f:cd:df:7f:21: 78:ae:f0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGRjQxMTAvBgNVBAUTKDY3MjRCRjQwMEZBNkE0MUM3OERFNzAzMUJGQTRGOUFG QzgzNzgwQ0YwHhcNMjUwNzE5MDYxMzIyWhcNMjUwNzI2MDYxMzIyWjAYMRYwFAYD VQQDEw02ODdiMzc4Mi1mMTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zuGMjvFM2SENN70sggVYyb99zII9NSHbQNx+0lzf22Nr8PJvsRAgWTfhiG5 PXXuiCS/WFFsIcv1mGpwwx8TlRI7x1S5r7NYThXpmKcNiQY4nwTGnC3uEiXTtxWV m9NO5xXRsrj1iPLI42u3aj0qFQ6tGMF6OceYPyti+DkZAZVMDk92p0Q2Oz5ukoW7 t8839Ruu8t4iJIeEINFMZsgMI2R1/IwT5dKkhLB8UsvZLuDp0nS1MYQfKMm/CG5I Zlj7ji6SMV9Z0Bp8RuBgqe88DitG5W8b+/Fe9QdiFkYUTRj5zKfmN62jjOAAUR0C KNe91x1JFHgFhl2uEUpKQDcAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+JeMc9 SIYMMZ3AmmRLV/R3Mc27MB8GA1UdIwQYMBaAFGckv0APpqQceN5wMb+k+a/IN4DP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUZGNC8wRTYyMjhDNDU5 RUUxMUVGOTEwMjdCNDZDNEY5QUUwMi9aeVNfUUEtbXBCeDQzbkF4djZUNXI4ZzNn TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5U19RQS1tcEJ4NDNuQXh2NlQ1cjhnM2dNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUZGNC8wRTYyMjhDNDU5RUUxMUVGOTEwMjdCNDZDNEY5QUUwMi9aeVNfUUEtbXBC eDQzbkF4djZUNXI4ZzNnTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhXFTD1gNrdn8t0H+k92mAjRZapEs4XGREVpEkKFrX8Cfvekrsy5RQ bKBK/QSOObkSyoE4AVnslFbcfAwT4bfU2YkGXfKrRgL3S0aZmT0YvD+YNgvAAJEC 5n71W7EOc+XAdT9EkyYoCdXr9ToFbE0EVRmqb+FzW3n9pw//FYRXvgBT+taSTKue j5khaLCDiUxFlTvolhW5jvhfcFbTS0YEi90Zce0z67P3Wox+gysC0sMY50wNhz/D SfhN34/47m8Z0iNnRU/BS2Wc9+MOyLx+lvhY8rwleLc+sqRUht9U65rHS0OwKuHp kzakNG/Wzgw2yX4Wd6oEH83ffyF4rvBC -----END CERTIFICATE-----Generated at Mon Jul 21 07:18:30 2025 by rpki-client