$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: 9D3ywcG2sk4SeTfNF1wxXyZCJ5xqhHvbOxmcqQQCQ+8= Subject key identifier: FE:AF:C8:E5:D0:80:66:72:48:C1:3F:BF:A3:9E:12:CD:09:10:23:E9 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 12 Signing time: Fri 17 May 2024 08:55:57 +0000 Manifest this update: Fri 17 May 2024 08:55:56 +0000 Manifest next update: Fri 24 May 2024 08:55:56 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: 66ccFvam/37v9oDPfnVYTbyPxh1LAYM9UXcAC0dvVMo=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: VihRbPLIGZqGX0qfK1yEpOzCfTVGqCSfC9SONYF7SpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: May 17 08:55:56 2024 GMT Not After : May 24 08:55:56 2024 GMT Subject: CN=66471b9c-d4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:17:57:18:e6:c6:8c:ef:21:68:f4:9a:b9: a4:1d:65:4d:1f:a4:f4:31:3f:96:83:1c:ed:ae:a5: 21:ce:84:57:0e:9e:e6:46:00:65:d8:35:dd:53:8c: 22:04:36:f6:cb:65:dc:3a:86:29:da:2e:12:be:96: c5:b7:43:bf:ed:19:32:57:34:a8:2f:79:d6:f9:7e: 7e:68:bc:17:e1:18:c6:b1:08:a4:63:b7:29:f8:62: 48:06:1c:76:b3:e4:86:0a:d0:db:f9:f1:c7:0b:f3: 86:27:c7:e9:bd:8a:2b:ba:9e:df:05:38:ab:fa:a9: 50:e3:61:a7:a7:0b:2e:81:5f:53:55:22:76:66:93: f8:01:92:27:6a:ce:57:41:7d:04:92:9c:8b:d0:af: e7:fb:7f:17:d7:b4:0d:6b:5c:ae:1f:cb:ff:4e:af: ae:e7:8e:10:d9:45:07:95:99:6a:fc:e3:45:4c:26: 14:73:08:7b:38:6a:e4:46:93:d1:a6:09:48:c5:c0: 5c:04:60:f2:7c:52:de:91:74:3d:92:82:38:eb:d9: 35:7b:53:44:3c:7f:db:51:a1:63:8a:32:37:86:59: 05:59:9a:c7:df:f8:c1:aa:fc:c0:fb:c5:5d:12:67: b5:91:af:3f:48:e1:c5:a9:8e:67:37:92:6e:51:eb: 85:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AF:C8:E5:D0:80:66:72:48:C1:3F:BF:A3:9E:12:CD:09:10:23:E9 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:81:84:99:3f:1d:a2:aa:76:f5:97:73:ed:69:38:01:30:46: cc:91:a5:43:10:9a:f5:80:f0:ab:98:8e:bb:e6:93:93:a3:79: ea:5f:4d:d0:f2:32:b2:b1:08:5a:86:82:2c:01:f1:f8:e8:40: b4:c7:af:60:ef:28:f1:d4:07:ad:ad:e0:8c:45:6b:39:92:1d: 51:b0:2b:8c:13:26:9f:8e:07:6c:27:41:27:09:d3:58:71:66: 2d:89:9a:61:67:b0:be:fa:d4:4a:e3:90:e8:ea:fc:3b:8d:35: d7:7a:5f:f7:a3:81:ec:d7:39:d8:5a:ca:ef:d2:63:d6:82:8a: 49:b4:a2:d6:3c:34:71:db:d1:96:3f:ef:25:22:e1:6d:4d:03: 56:69:1d:2d:40:ae:1b:09:31:71:ec:b3:a6:1e:ea:08:af:bd: 56:44:b9:99:cb:cd:28:aa:6b:fc:89:5e:aa:7f:36:33:ea:ce: fb:b3:54:45:2b:71:b5:8e:97:23:14:12:93:f7:05:ad:03:25: 7c:d1:e9:e2:9b:15:6a:cd:12:e8:8f:b3:b4:88:38:58:8e:a9: b1:df:ec:91:5d:22:93:ac:d6:76:fc:0b:a4:72:6e:4a:45:a0: dc:6f:dd:13:d4:86:99:63:b6:b5:98:29:ed:7e:7c:11:9b:58: be:e9:2e:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ2OTExMC8GA1UEBRMoMkIyQURBQzU5RUNDRjYzODRGQzVFMzYzRjA2N0MzQjlF MjlFOTlBMTAeFw0yNDA1MTcwODU1NTZaFw0yNDA1MjQwODU1NTZaMBgxFjAUBgNV BAMTDTY2NDcxYjljLWQ0YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMshdXGObGjO8haPSauaQdZU0fpPQxP5aDHO2upSHOhFcOnuZGAGXYNd1TjCIE NvbLZdw6hinaLhK+lsW3Q7/tGTJXNKgvedb5fn5ovBfhGMaxCKRjtyn4YkgGHHaz 5IYK0Nv58ccL84Ynx+m9iiu6nt8FOKv6qVDjYaenCy6BX1NVInZmk/gBkidqzldB fQSSnIvQr+f7fxfXtA1rXK4fy/9Or67njhDZRQeVmWr840VMJhRzCHs4auRGk9Gm CUjFwFwEYPJ8Ut6RdD2Sgjjr2TV7U0Q8f9tRoWOKMjeGWQVZmsff+MGq/MD7xV0S Z7WRrz9I4cWpjmc3km5R64XrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/q/I5dCA ZnJIwT+/o54SzQkQI+kwHwYDVR0jBBgwFoAUKyraxZ7M9jhPxeNj8GfDueKemaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0ZGOTRFNzEyRjdF MzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3lyYXhaN005amhQeGVOajhHZkR1ZUtlbWFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDY5L0ZGOTRFNzEyRjdFMzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpo UHhlTmo4R2ZEdWVLZW1hRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG6BhJk/HaKqdvWXc+1pOAEwRsyRpUMQmvWA8KuYjrvmk5OjeepfTdDy MrKxCFqGgiwB8fjoQLTHr2DvKPHUB62t4IxFazmSHVGwK4wTJp+OB2wnQScJ01hx Zi2JmmFnsL761ErjkOjq/DuNNdd6X/ejgezXOdhayu/SY9aCikm0otY8NHHb0ZY/ 7yUi4W1NA1ZpHS1ArhsJMXHss6Ye6givvVZEuZnLzSiqa/yJXqp/NjPqzvuzVEUr cbWOlyMUEpP3Ba0DJXzR6eKbFWrNEuiPs7SIOFiOqbHf7JFdIpOs1nb8C6RybkpF oNxv3RPUhpljtrWYKe1+fBGbWL7pLkk= -----END CERTIFICATE-----Generated at Fri May 17 10:10:51 2024 by rpki-client on console-fra.rpki-client.org