$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: QpBx+3joqMs16W6RfITkBQNK7Bkc4x5ciS/TYfMpmqw= Subject key identifier: 60:32:13:A7:80:76:FD:7B:BF:21:74:4A:26:AB:EB:22:5E:79:4E:97 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: D3 Signing time: Sat 31 May 2025 05:13:14 +0000 Manifest this update: Sat 31 May 2025 05:13:14 +0000 Manifest next update: Sat 07 Jun 2025 05:13:14 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: VXfueGUoJaWWFZTmwH96JRtvdImh4LFvkYMUQxEGf3A=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: May 31 05:13:14 2025 GMT Not After : Jun 7 05:13:14 2025 GMT Subject: CN=683a8fea-058a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:db:2a:42:13:2c:38:19:df:0d:a3:c1:88: 9a:69:47:e3:57:ff:98:10:e8:5b:38:85:53:fa:ad: ce:74:c0:87:7b:12:9e:44:ce:a5:85:7d:cd:6e:8c: 7f:4a:6f:90:52:fa:21:65:62:c9:08:b5:48:9f:38: 27:f5:f4:39:c2:99:91:2c:8d:54:99:b5:6d:90:98: 06:07:2b:a2:08:b0:ef:92:86:0f:5c:46:bd:47:4b: 5b:20:78:f5:6b:8f:00:d0:00:71:ee:4a:ff:40:6a: 0b:27:6e:f5:3d:0a:4c:15:c6:da:a0:8e:03:60:25: fa:cf:e8:f6:31:c0:af:3b:af:f3:b7:91:8c:8e:94: 04:96:fb:25:cd:01:57:f9:df:82:ed:ce:1b:e3:b7: 16:7b:05:32:37:f7:17:b2:9d:53:4f:8d:06:5a:13: 34:d4:cb:c5:b5:1a:2a:e2:b0:37:ca:90:c7:d1:9a: fb:c5:46:7d:c9:bf:68:20:42:df:89:8a:77:3a:d4: f9:45:5e:be:c1:15:cd:df:08:97:11:ad:14:d2:8d: 83:c7:b5:26:97:52:bf:c1:86:d0:b6:5a:de:db:b5: 3f:f5:1c:44:52:a2:25:52:7b:61:59:d8:8e:59:2b: 09:7f:8c:d5:a1:1f:8a:8b:2e:70:0c:bf:71:55:c6: 70:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:32:13:A7:80:76:FD:7B:BF:21:74:4A:26:AB:EB:22:5E:79:4E:97 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c1:8a:e8:c8:2f:be:85:15:6e:08:f6:64:3d:e2:e9:79:a0: 88:f9:ef:93:e9:43:74:f4:9e:35:7c:6c:80:7f:21:22:44:b5: 55:b0:86:fa:eb:d6:a0:01:a4:8f:8e:d6:6b:53:4e:8f:f1:71: c7:3a:1d:25:eb:46:29:d6:45:38:fb:10:ad:80:64:48:12:c6: 5a:f6:10:90:ea:f0:8b:6f:02:6d:0d:0c:63:da:36:9c:a8:8a: 6e:5e:a3:f5:69:ee:ce:5f:2f:4f:a6:66:85:2c:e0:fc:96:3b: 6b:21:9d:e5:5c:4d:e5:69:55:e1:e1:26:b6:81:6a:fb:c9:ad: 52:9b:1b:3a:2f:4f:39:6c:32:11:4b:3d:7e:b5:0a:8f:1d:77: 81:41:7a:53:13:a7:87:5c:a9:f2:81:55:ab:8b:ea:f4:c7:46: 5c:16:05:6b:2b:10:14:04:20:13:15:8f:fc:83:ff:2a:98:e3: 49:5a:a4:16:ce:7d:2a:6d:cd:ab:68:f9:f1:e6:09:c0:9d:e0: 02:b7:fe:a3:4f:35:70:9b:a0:dc:86:62:4f:8a:0c:f0:8a:f2: 3c:53:f1:21:9d:a0:dc:8f:55:a1:70:eb:f0:69:fb:75:60:2e: 89:ee:e2:fe:97:34:6a:92:49:1b:ed:80:20:71:2e:dd:39:4e: 34:f6:01:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUwNTMxMDUxMzE0WhcNMjUwNjA3MDUxMzE0WjAYMRYwFAYD VQQDEw02ODNhOGZlYS0wNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNnbKkITLDgZ3w2jwYiaaUfjV/+YEOhbOIVT+q3OdMCHexKeRM6lhX3Nbox/ Sm+QUvohZWLJCLVInzgn9fQ5wpmRLI1UmbVtkJgGByuiCLDvkoYPXEa9R0tbIHj1 a48A0ABx7kr/QGoLJ271PQpMFcbaoI4DYCX6z+j2McCvO6/zt5GMjpQElvslzQFX +d+C7c4b47cWewUyN/cXsp1TT40GWhM01MvFtRoq4rA3ypDH0Zr7xUZ9yb9oIELf iYp3OtT5RV6+wRXN3wiXEa0U0o2Dx7Uml1K/wYbQtlre27U/9RxEUqIlUnthWdiO WSsJf4zVoR+Kiy5wDL9xVcZwoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAyE6eA dv17vyF0Siar6yJeeU6XMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApwYroyC++hRVuCPZkPeLpeaCI+e+T6UN09J41fGyAfyEiRLVVsIb6 69agAaSPjtZrU06P8XHHOh0l60Yp1kU4+xCtgGRIEsZa9hCQ6vCLbwJtDQxj2jac qIpuXqP1ae7OXy9PpmaFLOD8ljtrIZ3lXE3laVXh4Sa2gWr7ya1Smxs6L085bDIR Sz1+tQqPHXeBQXpTE6eHXKnygVWri+r0x0ZcFgVrKxAUBCATFY/8g/8qmONJWqQW zn0qbc2raPnx5gnAneACt/6jTzVwm6DchmJPigzwivI8U/EhnaDcj1WhcOvwaft1 YC6J7uL+lzRqkkkb7YAgcS7dOU409gE/ -----END CERTIFICATE-----Generated at Sat May 31 17:30:16 2025 by rpki-client