$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: r+j6Q3k53a04n8pl+jW0ut18YWoDLEkek9hz8whf/Ic= Subject key identifier: A3:9E:0C:4A:A7:E6:CD:38:56:AC:66:75:78:7A:56:61:CA:61:2C:77 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: C2 Signing time: Fri 25 Apr 2025 04:51:40 +0000 Manifest this update: Fri 25 Apr 2025 04:51:40 +0000 Manifest next update: Fri 02 May 2025 04:51:40 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: 5kuPV3krpPPrp/l2/1o35HE5UZI+3dnYNfgUiGJ5Uj8=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: xS6KKVico6q7YAydoXRQP98J8XdPbnXHA9bQvEcQ3gg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Apr 25 04:51:40 2025 GMT Not After : May 2 04:51:40 2025 GMT Subject: CN=680b14dc-93a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:12:6b:a1:31:2a:db:73:8e:7f:24:7b:aa: 4d:16:8b:01:7f:09:78:be:08:13:67:eb:b7:b6:40: 41:35:02:bc:9d:68:85:6d:67:4a:18:e0:85:2f:e3: dd:45:a2:5a:22:53:44:ce:b3:58:ed:0b:f1:14:4c: 4a:22:b6:88:00:f9:d2:5b:f0:69:56:bf:ea:f8:d9: ab:31:a5:ae:1e:a9:56:0c:25:55:cd:16:f7:de:53: 00:ed:96:97:6a:7a:5e:70:a6:04:e0:a8:70:52:95: 67:ea:98:89:ea:a8:0f:47:7e:3e:8c:f3:8c:85:6a: a5:b4:0f:3f:ce:d3:13:d4:04:52:e2:d3:f6:dd:4c: d4:c3:12:85:d2:a0:d1:22:25:5d:47:c9:b3:cd:c7: 2c:ab:fe:7f:05:6b:77:83:9c:22:22:ad:67:93:88: fd:97:6c:1f:65:12:0b:2e:0a:06:6a:58:c1:04:9b: ce:1a:0d:fc:55:aa:d9:4d:fb:95:eb:25:37:ac:53: 54:51:16:40:e3:13:2f:90:4a:e5:ab:ed:fa:2c:ec: 74:6f:bc:a3:a5:ce:32:14:fa:01:ba:5e:6f:95:cf: f9:b0:a6:6d:45:5c:e1:9b:07:20:b7:a4:80:94:cd: ef:ee:7d:1b:1a:3f:b2:ea:6c:c2:b1:b8:4c:8b:45: b7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9E:0C:4A:A7:E6:CD:38:56:AC:66:75:78:7A:56:61:CA:61:2C:77 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:26:67:4a:f9:90:3f:c8:16:a1:6b:2d:d7:3c:48:16:13:27: c8:63:d0:c9:c1:79:33:53:7b:03:08:18:dc:79:c3:54:2b:07: 80:e1:f9:42:98:cb:2e:dd:d2:ba:91:49:7b:17:2d:db:bf:0e: 0d:ad:da:7c:bc:e7:e0:18:72:87:00:9e:7e:c1:e1:8a:03:cf: 5d:8c:e6:db:8b:c1:ab:b8:9d:fd:66:26:53:67:a5:75:de:9b: 1d:4b:64:c7:ff:33:92:35:5c:ba:a7:a4:74:6b:4f:ea:91:3e: f4:f2:e8:f2:4e:da:4e:f0:c2:1b:5b:64:53:73:17:14:74:62: 0e:68:d8:58:ec:93:fa:33:e6:bb:7c:d3:a5:99:19:96:3d:fc: 99:39:70:27:0f:04:e4:2f:33:3d:8a:74:b2:22:fb:a9:af:74: 23:8b:a8:24:bf:b8:5a:1f:35:8d:34:cf:36:02:bd:91:42:35: 38:02:ef:e9:e9:22:ff:07:42:d7:2c:e9:79:36:d7:5a:ed:62: c4:78:d4:75:3f:7c:8a:61:6f:77:03:d5:58:6e:10:6f:4d:52: c9:2c:9f:d2:96:b0:38:13:c8:15:54:65:0c:5c:34:d5:ff:cd: 33:aa:63:b1:8a:c0:1c:cc:ab:7a:99:fb:82:60:cb:17:66:30: f4:e7:d6:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUwNDI1MDQ1MTQwWhcNMjUwNTAyMDQ1MTQwWjAYMRYwFAYD VQQDEw02ODBiMTRkYy05M2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSESa6ExKttzjn8ke6pNFosBfwl4vggTZ+u3tkBBNQK8nWiFbWdKGOCFL+Pd RaJaIlNEzrNY7QvxFExKIraIAPnSW/BpVr/q+NmrMaWuHqlWDCVVzRb33lMA7ZaX anpecKYE4KhwUpVn6piJ6qgPR34+jPOMhWqltA8/ztMT1ARS4tP23UzUwxKF0qDR IiVdR8mzzccsq/5/BWt3g5wiIq1nk4j9l2wfZRILLgoGaljBBJvOGg38VarZTfuV 6yU3rFNUURZA4xMvkErlq+36LOx0b7yjpc4yFPoBul5vlc/5sKZtRVzhmwcgt6SA lM3v7n0bGj+y6mzCsbhMi0W3RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOeDEqn 5s04VqxmdXh6VmHKYSx3MB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJmdK+ZA/yBahay3XPEgWEyfIY9DJwXkzU3sDCBjcecNUKweA4flC mMsu3dK6kUl7Fy3bvw4Nrdp8vOfgGHKHAJ5+weGKA89djObbi8GruJ39ZiZTZ6V1 3psdS2TH/zOSNVy6p6R0a0/qkT708ujyTtpO8MIbW2RTcxcUdGIOaNhY7JP6M+a7 fNOlmRmWPfyZOXAnDwTkLzM9inSyIvupr3Qji6gkv7haHzWNNM82Ar2RQjU4Au/p 6SL/B0LXLOl5Ntda7WLEeNR1P3yKYW93A9VYbhBvTVLJLJ/SlrA4E8gVVGUMXDTV /80zqmOxisAczKt6mfuCYMsXZjD059Z7 -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:19 2025 by rpki-client