$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: UzQFMhxeNDfCcFioU+AwKYU+STWpJbw5A1qqdafJGi4= Subject key identifier: 96:12:72:FD:A8:93:6B:70:4D:93:27:9F:8F:7D:11:7A:6C:F2:37:17 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: DD Signing time: Thu 19 Jun 2025 04:51:58 +0000 Manifest this update: Thu 19 Jun 2025 04:51:58 +0000 Manifest next update: Thu 26 Jun 2025 04:51:58 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: 3vWGY3lvpqq7SGgFokWhNmRoU8ilS/T4k/MgOQvXRWo=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Jun 19 04:51:58 2025 GMT Not After : Jun 26 04:51:58 2025 GMT Subject: CN=6853976e-2049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1c:a8:65:74:a3:03:a0:5a:6f:93:ba:d9:d8: e7:1d:f5:a9:e6:24:30:e6:0b:5e:16:f7:6a:53:71: e7:49:ec:69:c8:b2:cf:75:2c:59:67:38:98:81:8b: 08:8c:9b:f0:8a:ee:5e:e7:30:74:af:dd:dc:c6:47: 8b:86:b3:cb:d8:41:03:2e:aa:80:af:70:8f:81:72: b7:1b:db:0d:47:b3:fe:fb:53:61:e4:5d:ad:2c:f7: 7e:9b:89:79:dd:b4:6c:20:07:ad:16:92:c9:35:7d: 97:0c:11:bc:62:76:db:c0:e8:73:d7:6d:af:e6:5b: b1:a7:d6:3c:51:86:d3:88:25:77:e5:89:93:b2:ab: 4b:04:f6:b5:73:1b:13:d3:ab:fe:5a:3d:25:44:34: f8:5a:5e:8e:8f:1b:05:bb:d0:b6:5a:48:b1:5b:45: c2:7c:46:7f:bb:9b:42:33:35:6a:a9:67:d8:cc:86: e8:9a:78:6c:69:2c:88:cc:46:9a:04:a3:02:8d:98: 8f:4f:7f:63:ad:cd:28:82:74:25:9d:d9:01:2c:cb: a3:21:b3:cb:6c:d8:05:fe:19:3a:33:b3:7c:84:ce: 47:40:49:6d:1d:f6:39:70:5f:89:0a:2c:a9:d7:c1: e2:89:a2:cd:28:c4:9f:f4:8c:69:dd:de:e6:9a:61: d2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:12:72:FD:A8:93:6B:70:4D:93:27:9F:8F:7D:11:7A:6C:F2:37:17 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a8:32:58:77:ca:df:e7:da:3f:0d:cd:44:ce:a8:79:76:c2: 6c:3e:76:ca:f6:0f:e4:1f:69:7e:1b:8e:a6:1e:25:f0:3b:52: 9a:0e:64:07:19:aa:7c:6d:a4:3c:33:1e:2b:77:ab:d1:1e:c0: eb:89:5d:c6:44:d5:8d:75:3b:7a:dc:1b:2e:da:23:54:60:62: ce:1d:58:4a:69:4c:5d:24:fd:44:59:10:3c:f7:be:83:f2:b0: 8a:f3:06:74:00:8b:02:cf:f5:91:a7:99:43:7c:cf:95:84:f1: 4f:90:78:2f:c0:47:07:d6:3e:d3:d5:b9:60:ff:96:93:89:fd: 61:f1:bb:dd:4e:e5:75:89:73:ed:35:06:3a:e1:65:d6:90:6f: 0e:6e:57:84:7e:4e:b0:76:3a:1a:b5:af:0f:50:88:d0:0d:87: e7:29:18:00:89:33:12:1f:b8:aa:86:42:1f:f9:f6:a6:1c:9e: f6:e1:ea:b0:48:de:eb:d0:4a:8a:a9:7a:ce:65:e5:64:b6:9f: c8:ce:2d:0f:cc:12:3d:53:75:54:0c:f0:f4:a6:29:c1:88:82: 6e:9a:d8:98:dc:41:22:58:5e:cd:d3:a5:1e:96:b5:4b:bf:7c: 7a:36:88:bf:40:dc:91:b8:b6:3d:84:3f:99:de:af:ea:00:bd: 7a:76:64:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUwNjE5MDQ1MTU4WhcNMjUwNjI2MDQ1MTU4WjAYMRYwFAYD VQQDEw02ODUzOTc2ZS0yMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhyoZXSjA6Bab5O62djnHfWp5iQw5gteFvdqU3HnSexpyLLPdSxZZziYgYsI jJvwiu5e5zB0r93cxkeLhrPL2EEDLqqAr3CPgXK3G9sNR7P++1Nh5F2tLPd+m4l5 3bRsIAetFpLJNX2XDBG8YnbbwOhz122v5luxp9Y8UYbTiCV35YmTsqtLBPa1cxsT 06v+Wj0lRDT4Wl6OjxsFu9C2WkixW0XCfEZ/u5tCMzVqqWfYzIbomnhsaSyIzEaa BKMCjZiPT39jrc0ognQlndkBLMujIbPLbNgF/hk6M7N8hM5HQEltHfY5cF+JCiyp 18HiiaLNKMSf9Ixp3d7mmmHSHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYScv2o k2twTZMnn499EXps8jcXMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFqDJYd8rf59o/Dc1Ezqh5dsJsPnbK9g/kH2l+G46mHiXwO1KaDmQH Gap8baQ8Mx4rd6vRHsDriV3GRNWNdTt63Bsu2iNUYGLOHVhKaUxdJP1EWRA8976D 8rCK8wZ0AIsCz/WRp5lDfM+VhPFPkHgvwEcH1j7T1blg/5aTif1h8bvdTuV1iXPt NQY64WXWkG8ObleEfk6wdjoata8PUIjQDYfnKRgAiTMSH7iqhkIf+famHJ724eqw SN7r0EqKqXrOZeVktp/Izi0PzBI9U3VUDPD0pinBiIJumtiY3EEiWF7N06UelrVL v3x6Noi/QNyRuLY9hD+Z3q/qAL16dmQN -----END CERTIFICATE-----Generated at Sat Jun 21 04:37:15 2025 by rpki-client