$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: 815oQZdGjKhfJ4DCgUVwCd0W+ijQJEqsYGj5TMHqrN8= Subject key identifier: 5C:5A:00:BB:BB:2E:0D:62:C7:42:1C:49:E1:AF:37:4C:65:3C:91:AB Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: F7 Signing time: Sat 09 Aug 2025 05:36:36 +0000 Manifest this update: Sat 09 Aug 2025 05:36:35 +0000 Manifest next update: Sat 16 Aug 2025 05:36:35 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: /drSyEfoBxIrFPPH3W3XnfQqZZLUNnqP++2QI3O8vQQ=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Aug 9 05:36:35 2025 GMT Not After : Aug 16 05:36:35 2025 GMT Subject: CN=6896de64-ef50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:c5:dd:48:85:54:6f:b2:06:76:bc:eb:59: de:bf:13:cd:95:97:84:56:c4:ce:e6:56:b1:d9:5c: 9f:a7:b5:3f:40:24:0f:a8:0a:5e:c9:f1:f7:c1:12: 05:37:0a:c0:21:0c:a0:77:7a:df:ce:65:bf:9b:4d: 20:4f:e8:98:9a:1d:3c:18:ac:6a:a9:fb:ec:8b:fb: c3:4c:58:3e:bd:84:d4:27:d6:34:70:b8:34:20:41: ad:76:64:bf:44:6b:18:4f:10:8c:e8:33:0f:df:5a: ab:69:86:15:dd:90:08:5f:5d:73:c3:b1:a3:4a:75: 3f:11:57:14:d6:10:93:cb:48:c4:03:e5:fb:32:be: f7:6e:5c:1a:0d:7e:13:39:d7:7e:f6:e2:00:18:87: 57:66:bc:2a:eb:cc:10:22:0f:6f:36:93:ba:a9:ad: a2:e9:af:8c:11:d5:06:f7:a6:ab:43:72:c0:22:02: e7:d4:d7:5d:16:12:90:e8:fe:a6:de:8c:c8:b8:90: 86:1e:16:d4:47:d4:38:dd:49:32:25:7d:0e:c9:94: ff:9d:69:ed:88:b5:8c:04:ff:30:85:7c:fc:80:bf: ff:89:c9:bb:d4:67:a1:0b:0c:79:60:60:0b:7d:cc: f4:f8:23:03:74:ca:3c:8a:de:2a:b7:a2:18:58:c1: 59:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:5A:00:BB:BB:2E:0D:62:C7:42:1C:49:E1:AF:37:4C:65:3C:91:AB X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:dd:68:6f:b1:f7:78:86:54:3f:9b:74:c6:28:be:6f:5c:00: ba:fe:eb:01:35:8a:83:41:b0:08:17:8d:7d:31:6b:ac:38:c6: 35:4d:dd:29:4c:28:66:e7:da:d4:c5:d9:50:1f:25:f8:a2:65: 0f:60:5e:6c:bd:e6:32:20:45:2f:90:a0:f5:80:51:c8:b9:32: 1a:e7:31:4e:ee:ba:b1:b5:31:1f:6e:5b:8b:aa:1e:19:16:32: 12:d9:5d:ae:54:c4:80:4b:7a:78:fe:05:d7:ad:52:05:3c:0c: 8b:24:5f:3c:32:b0:a1:de:2b:37:c2:ed:aa:9a:e4:ae:41:51: a2:70:d9:52:39:64:7f:db:ac:61:b5:9d:6b:d6:7b:5d:1c:4d: c7:86:b3:b8:6b:5e:21:b2:10:18:a6:a5:2f:9f:94:2f:80:12: 93:7e:e3:9f:15:bf:8c:4e:ba:f6:0c:85:a3:1b:70:4d:a5:42: 43:41:91:65:92:cb:b4:2a:e1:83:cb:14:f3:c8:c8:82:30:d4: 94:e4:3c:ad:2a:8d:e3:c4:26:13:ca:cf:2e:55:f7:63:82:6b: 39:3a:39:e6:ca:65:9b:d5:ec:85:14:0f:64:38:89:26:8e:0e: 13:7a:a1:c7:f6:0a:2f:f8:89:87:29:32:b0:ae:29:a3:6d:8e: 03:73:ef:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUwODA5MDUzNjM1WhcNMjUwODE2MDUzNjM1WjAYMRYwFAYD VQQDEw02ODk2ZGU2NC1lZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2PF3UiFVG+yBna861nevxPNlZeEVsTO5lax2Vyfp7U/QCQPqApeyfH3wRIF NwrAIQygd3rfzmW/m00gT+iYmh08GKxqqfvsi/vDTFg+vYTUJ9Y0cLg0IEGtdmS/ RGsYTxCM6DMP31qraYYV3ZAIX11zw7GjSnU/EVcU1hCTy0jEA+X7Mr73blwaDX4T Odd+9uIAGIdXZrwq68wQIg9vNpO6qa2i6a+MEdUG96arQ3LAIgLn1NddFhKQ6P6m 3ozIuJCGHhbUR9Q43UkyJX0OyZT/nWntiLWMBP8whXz8gL//icm71GehCwx5YGAL fcz0+CMDdMo8it4qt6IYWMFZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxaALu7 Lg1ix0IcSeGvN0xlPJGrMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt3Whvsfd4hlQ/m3TGKL5vXAC6/usBNYqDQbAIF419MWusOMY1Td0p TChm59rUxdlQHyX4omUPYF5sveYyIEUvkKD1gFHIuTIa5zFO7rqxtTEfbluLqh4Z FjIS2V2uVMSAS3p4/gXXrVIFPAyLJF88MrCh3is3wu2qmuSuQVGicNlSOWR/26xh tZ1r1ntdHE3HhrO4a14hshAYpqUvn5QvgBKTfuOfFb+MTrr2DIWjG3BNpUJDQZFl ksu0KuGDyxTzyMiCMNSU5DytKo3jxCYTys8uVfdjgms5OjnmymWb1eyFFA9kOIkm jg4TeqHH9gov+ImHKTKwrimjbY4Dc+8f -----END CERTIFICATE-----Generated at Sun Aug 10 04:53:00 2025 by rpki-client