$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: 0p33onQRsI6kQmuJOpAqlKdyEm7/vLDuwqbgG7dcRcQ= Subject key identifier: 9A:F6:38:2A:E8:5C:8B:74:B9:33:0D:9A:4C:B6:46:A8:D3:FE:7E:E1 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 73 Signing time: Thu 21 Nov 2024 04:55:14 +0000 Manifest this update: Thu 21 Nov 2024 04:55:13 +0000 Manifest next update: Thu 28 Nov 2024 04:55:13 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: MUT1+YZgssMip02ro48KgAJQJ6hW2zZwKSObUhn9TrQ=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Nov 21 04:55:13 2024 GMT Not After : Nov 28 04:55:13 2024 GMT Subject: CN=673ebd31-943e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fb:07:93:34:20:39:ce:7b:7f:e7:71:3e:16: 97:1f:58:3c:a9:ae:d3:e6:f9:d5:72:e0:e9:44:56: a5:c4:25:69:a9:9d:9b:a4:e4:6e:4c:3f:42:52:e8: 88:73:7a:f6:19:97:0a:a8:f8:d3:70:20:58:7f:f8: e4:7c:2f:ec:c6:89:3f:78:51:9f:2c:32:71:57:98: 3a:bf:62:9c:e3:7f:b8:7c:09:90:75:8d:d8:fd:fa: ec:69:bd:e7:36:10:07:24:2d:e4:29:77:24:23:82: d3:f1:ed:5c:a2:54:08:0e:ce:0c:1e:a1:b8:d5:0e: c1:a8:be:3c:9d:1d:9e:12:36:46:85:dc:0b:b7:eb: 8f:9d:67:e3:c0:12:cf:0d:42:78:17:84:67:64:8d: 7d:d9:1f:a2:49:48:52:4d:90:91:ec:ed:e6:b3:8a: cc:c7:6e:d8:8c:8d:f2:98:7d:16:9e:83:05:86:f2: 24:6c:7d:b3:a5:74:4c:7c:76:80:99:2b:c2:8b:d9: 48:10:b7:66:37:92:d8:72:dc:2d:ec:3a:99:ad:54: c8:e9:06:76:b7:5c:25:92:c4:90:d7:62:66:63:fd: d1:8d:bb:0c:e7:28:d2:9c:2c:dd:ff:a7:d2:f7:fe: d0:67:ff:0b:4f:1e:82:74:c5:bf:8e:8d:c3:d9:b9: 14:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F6:38:2A:E8:5C:8B:74:B9:33:0D:9A:4C:B6:46:A8:D3:FE:7E:E1 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:e6:9d:b2:42:ed:71:66:53:e1:6d:cc:0d:3b:b5:49:da:25: 8b:3d:f4:7f:39:b7:f2:2c:8f:b9:e5:75:9c:eb:7d:61:ba:60: eb:a2:ec:ab:24:ed:2b:e5:57:a1:c1:cb:c4:d6:de:ad:92:2c: eb:8c:55:5a:36:a1:36:70:52:08:eb:b4:17:9d:2a:93:c8:40: 5c:18:94:78:bb:1c:61:4c:9d:a9:1f:23:74:12:dd:ec:ef:41: 0d:6f:d9:3c:87:b7:21:c3:ec:6d:06:7c:2d:0b:5b:1d:1f:11: 78:05:f9:99:5a:be:6a:c4:58:8f:a8:53:71:f5:d3:b7:f5:03: cf:e6:9a:06:1a:f5:39:1e:b6:34:9f:b5:f3:3a:48:3b:f1:ab: 82:de:3b:7d:99:dd:da:ea:0f:0d:35:bb:fc:cf:8d:28:55:f3: 9c:be:a9:e6:3a:01:c4:10:1e:f8:c7:12:56:a4:59:9a:fd:7a: e3:fd:06:f3:c7:62:c8:13:64:a8:ab:77:30:53:60:0f:94:37: c4:d0:99:de:ba:37:4c:ef:6d:15:1b:bd:34:2d:a6:9a:fc:db: a4:84:04:86:99:51:c4:af:af:86:36:71:b5:e2:a0:06:da:c6: 5a:3c:d5:e1:42:78:ed:77:e3:db:ea:61:41:13:08:21:3b:3f: f7:f3:5a:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ2OTExMC8GA1UEBRMoMkIyQURBQzU5RUNDRjYzODRGQzVFMzYzRjA2N0MzQjlF MjlFOTlBMTAeFw0yNDExMjEwNDU1MTNaFw0yNDExMjgwNDU1MTNaMBgxFjAUBgNV BAMTDTY3M2ViZDMxLTk0M2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCV+weTNCA5znt/53E+FpcfWDyprtPm+dVy4OlEVqXEJWmpnZuk5G5MP0JS6Ihz evYZlwqo+NNwIFh/+OR8L+zGiT94UZ8sMnFXmDq/Ypzjf7h8CZB1jdj9+uxpvec2 EAckLeQpdyQjgtPx7VyiVAgOzgweobjVDsGovjydHZ4SNkaF3Au364+dZ+PAEs8N QngXhGdkjX3ZH6JJSFJNkJHs7eaziszHbtiMjfKYfRaegwWG8iRsfbOldEx8doCZ K8KL2UgQt2Y3kthy3C3sOpmtVMjpBna3XCWSxJDXYmZj/dGNuwznKNKcLN3/p9L3 /tBn/wtPHoJ0xb+OjcPZuRT7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmvY4Kuhc i3S5Mw2aTLZGqNP+fuEwHwYDVR0jBBgwFoAUKyraxZ7M9jhPxeNj8GfDueKemaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDY5L0ZGOTRFNzEyRjdF MzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3lyYXhaN005amhQeGVOajhHZkR1ZUtlbWFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDY5L0ZGOTRFNzEyRjdFMzExRUVCOUExMjkxQUM0RjlBRTAyL0t5cmF4WjdNOWpo UHhlTmo4R2ZEdWVLZW1hRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjmnbJC7XFmU+FtzA07tUnaJYs99H85t/Isj7nldZzrfWG6YOui7Ksk 7SvlV6HBy8TW3q2SLOuMVVo2oTZwUgjrtBedKpPIQFwYlHi7HGFMnakfI3QS3ezv QQ1v2TyHtyHD7G0GfC0LWx0fEXgF+ZlavmrEWI+oU3H107f1A8/mmgYa9TketjSf tfM6SDvxq4LeO32Z3drqDw01u/zPjShV85y+qeY6AcQQHvjHElakWZr9euP9BvPH YsgTZKirdzBTYA+UN8TQmd66N0zvbRUbvTQtppr826SEBIaZUcSvr4Y2cbXioAba xlo81eFCeO1349vqYUETCCE7P/fzWg4= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:07 2024 by rpki-client on console-ams.rpki-client.org