$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: ouPD4FfI5b2+T987JcW58GJip62EH+c/bR05KRT1G0Y= Subject key identifier: 4B:B7:48:46:37:28:39:99:97:41:FD:9A:24:4F:91:67:3F:F1:DD:FD Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 0124 Signing time: Mon 03 Nov 2025 04:41:24 +0000 Manifest this update: Mon 03 Nov 2025 04:41:23 +0000 Manifest next update: Mon 10 Nov 2025 04:41:23 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: A5CkQmjk2UwI4FlvLBu+N96gSLNdCvmk65vRZlOX6cQ=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: hnnfq71rK1ZIuAmUqIiiCmmEhX9P+SlsIzqCbG4sw9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:41:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Nov 3 04:41:23 2025 GMT Not After : Nov 10 04:41:23 2025 GMT Subject: CN=69083274-13e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:92:bb:04:fe:9e:53:f9:af:b2:49:27:f5: 1a:5c:a3:54:5b:0f:5c:ac:b6:c2:b0:30:81:47:04: 6c:46:f4:b8:a4:e6:94:28:41:27:7f:75:68:68:34: e5:c5:98:cc:bc:d3:f6:4f:74:d9:ca:96:94:b9:ad: 89:d2:ba:cc:96:5b:6c:b8:bd:b6:f2:3a:8a:fc:b9: b7:29:0f:7a:fe:13:7d:9d:c5:36:e6:d9:36:46:e1: 47:4f:15:aa:8c:af:72:77:a4:c7:de:af:c9:ac:b4: db:42:a9:43:ba:ac:4a:8f:30:17:19:49:12:ff:13: 91:32:aa:8b:92:47:dd:2e:58:de:15:9d:96:e2:f5: ba:23:73:72:25:76:ce:76:dc:ee:b1:8a:13:f0:fa: 75:fa:84:34:5a:f9:12:38:60:2b:c0:38:64:26:af: ec:e4:40:e9:07:ca:1a:6a:2d:29:20:52:9a:e9:8a: ba:81:c0:12:c1:65:3a:fe:ef:3f:06:83:bf:90:b8: b7:fc:b1:72:ec:a9:f1:26:96:c3:5f:bd:be:e0:41: f9:e7:a6:37:75:31:3c:fe:12:05:70:99:05:79:ee: 1c:04:4a:ca:5e:dc:a9:8a:c3:2f:51:65:6e:b1:aa: 2b:a7:a4:da:8f:8b:a0:f9:08:f5:b1:91:24:71:07: cd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B7:48:46:37:28:39:99:97:41:FD:9A:24:4F:91:67:3F:F1:DD:FD X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:77:05:99:f2:ab:bc:60:3d:53:7a:13:f4:19:9a:f1:18:d5: dc:4f:bb:03:36:81:fc:96:99:cd:73:89:10:e0:91:26:f6:c1: aa:38:71:cb:d6:5c:d1:61:16:c4:03:0e:1f:ca:1c:fa:06:88: 2c:e7:15:c3:82:d7:49:80:38:eb:a8:85:a3:2b:3d:4b:6a:4d: f9:83:7d:80:70:29:c8:a9:75:a3:7c:0d:b1:55:d6:30:9a:af: 1e:85:16:bf:b4:d3:16:3c:9e:15:c2:21:74:c7:ec:2a:14:5b: 74:5f:e7:bc:bf:28:29:49:14:41:8b:69:c3:75:1c:43:2a:ff: 2a:de:0c:69:3d:91:07:93:bb:e8:04:c2:27:08:4c:42:d5:ae: d3:b0:6d:f0:7f:7b:14:06:73:45:73:c3:87:86:12:41:71:aa: 61:f2:fd:64:20:8c:d5:5e:e5:6c:61:cb:0f:dc:d0:c0:b8:75: 52:bf:f6:c0:88:de:5f:ed:50:6c:05:aa:26:bb:2b:36:e4:2d: de:42:e3:2f:43:7a:72:9b:f8:2f:2a:bf:98:ec:52:9b:83:64: 14:15:87:b7:a4:14:17:41:58:05:05:91:23:17:99:4e:20:5d: 57:f7:18:22:99:bb:30:73:b0:1d:fb:24:37:92:6c:4d:ff:e2: 6d:6f:df:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUxMTAzMDQ0MTIzWhcNMjUxMTEwMDQ0MTIzWjAYMRYwFAYD VQQDEw02OTA4MzI3NC0xM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs42SuwT+nlP5r7JJJ/UaXKNUWw9crLbCsDCBRwRsRvS4pOaUKEEnf3VoaDTl xZjMvNP2T3TZypaUua2J0rrMlltsuL228jqK/Lm3KQ96/hN9ncU25tk2RuFHTxWq jK9yd6TH3q/JrLTbQqlDuqxKjzAXGUkS/xORMqqLkkfdLljeFZ2W4vW6I3NyJXbO dtzusYoT8Pp1+oQ0WvkSOGArwDhkJq/s5EDpB8oaai0pIFKa6Yq6gcASwWU6/u8/ BoO/kLi3/LFy7KnxJpbDX72+4EH556Y3dTE8/hIFcJkFee4cBErKXtypisMvUWVu saorp6Taj4ug+Qj1sZEkcQfN6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEu3SEY3 KDmZl0H9miRPkWc/8d39MB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjdwWZ8qu8YD1TehP0GZrxGNXcT7sDNoH8lpnNc4kQ4JEm9sGqOHHL 1lzRYRbEAw4fyhz6Bogs5xXDgtdJgDjrqIWjKz1Lak35g32AcCnIqXWjfA2xVdYw mq8ehRa/tNMWPJ4VwiF0x+wqFFt0X+e8vygpSRRBi2nDdRxDKv8q3gxpPZEHk7vo BMInCExC1a7TsG3wf3sUBnNFc8OHhhJBcaph8v1kIIzVXuVsYcsP3NDAuHVSv/bA iN5f7VBsBaomuys25C3eQuMvQ3pym/gvKr+Y7FKbg2QUFYe3pBQXQVgFBZEjF5lO IF1X9xgimbswc7Ad+yQ3kmxN/+Jtb9/3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:40 2025 by rpki-client