$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: vIq43H/w4hcJ/x8t7DRL46giYr7OdJQiGqMKJKxzvw0= Subject key identifier: 01:8B:31:D1:06:BF:FC:D9:D0:DE:BB:99:F1:1E:A4:0A:B1:31:20:0F Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 017A Signing time: Fri 17 Apr 2026 04:20:26 +0000 Manifest this update: Fri 17 Apr 2026 04:20:25 +0000 Manifest next update: Fri 24 Apr 2026 04:20:25 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: cdwD7ThpK+eu/4ye++KIQgDigyTIbS1pjeAD+FzREFQ=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: RaGY6FAZxGZDZsSuof8rmTq3skc2lNTAnKA5LtFgVgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Apr 17 04:20:25 2026 GMT Not After : Apr 24 04:20:25 2026 GMT Subject: CN=69e1b50a-dd76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:68:bf:75:c8:f7:51:f3:94:00:c9:66:81:47: 8d:e0:dc:02:c7:59:c8:f0:37:8a:9e:09:6e:a9:87: 52:12:cf:71:91:ee:d0:17:91:76:ae:1d:a1:a4:41: 54:01:8d:81:ff:bc:09:cc:c5:2b:9b:19:1e:4f:9a: f8:37:b6:94:b1:42:bf:f7:1d:bd:25:83:3e:be:bc: e2:a8:d8:72:86:e9:29:fd:20:c4:f8:81:78:90:44: 0b:06:51:5b:19:c0:c9:1d:62:45:f9:ad:f0:aa:53: 45:4c:38:c2:ee:aa:52:f6:a8:56:85:84:6d:07:64: da:9a:1f:1d:ff:e9:ee:2a:ac:e3:5a:7a:8a:5b:62: 6b:42:6f:2c:a1:24:0f:f5:76:2a:22:13:71:22:6e: d2:38:f6:05:70:d2:8a:be:67:ad:c0:2c:f8:dc:90: d1:ef:e5:a4:46:7e:ef:cc:2e:62:d2:4b:84:26:2c: e9:fc:2f:52:77:7e:07:ac:2a:1e:de:41:c9:f6:9a: 58:b8:6e:ab:de:78:6b:b8:e0:f8:38:f4:20:1d:77: 0a:d5:47:a0:90:20:19:b7:0a:5b:68:36:a6:00:68: fa:4b:2a:60:61:4b:97:89:04:bf:27:39:79:66:b3: 5c:96:87:cd:88:c6:b3:c4:a7:84:bf:f7:cf:fb:15: c1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8B:31:D1:06:BF:FC:D9:D0:DE:BB:99:F1:1E:A4:0A:B1:31:20:0F X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6a:5d:c5:b6:64:ea:74:ec:6e:95:2e:06:2e:76:06:27:c2: 3e:2c:9f:1a:93:f2:26:2b:8d:e8:de:43:84:0b:b9:75:15:de: 9a:fa:9a:60:e8:e3:07:a4:c5:db:5e:3b:8d:50:04:84:23:79: a0:e1:e3:cc:11:99:d8:b6:86:3c:4a:5e:1b:79:f1:10:78:da: 83:56:64:92:d9:d0:39:d9:2f:1d:d3:3b:25:97:00:d2:5b:85: 04:6b:66:2d:97:28:70:89:fb:40:9d:23:7f:91:4a:c7:4c:42: 6a:89:f9:e5:77:85:29:42:83:f1:8e:74:31:b3:be:a0:50:cc: df:03:db:37:cf:72:0a:a5:f1:ba:b6:58:94:2f:85:c4:5a:f4: ea:b2:a1:c6:46:b7:db:86:5e:e6:81:16:e0:ed:98:11:0b:3b: b5:bb:c4:15:54:6d:17:68:0d:80:c2:aa:e4:f7:d1:e3:ee:79: 78:52:45:01:6c:6b:73:e3:7e:b8:14:cc:35:7b:57:cc:85:40: 40:42:fd:5f:44:4e:39:5e:24:87:a4:f0:18:d5:70:f6:b8:f8: 31:cc:44:df:2e:54:8c:92:f8:cb:6b:9c:87:e2:15:0d:9e:2e: 4e:6c:eb:f7:57:2a:f2:23:87:94:06:00:b6:a0:b8:e5:da:a6: f8:26:69:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjYwNDE3MDQyMDI1WhcNMjYwNDI0MDQyMDI1WjAYMRYwFAYD VQQDEw02OWUxYjUwYS1kZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWi/dcj3UfOUAMlmgUeN4NwCx1nI8DeKngluqYdSEs9xke7QF5F2rh2hpEFU AY2B/7wJzMUrmxkeT5r4N7aUsUK/9x29JYM+vrziqNhyhukp/SDE+IF4kEQLBlFb GcDJHWJF+a3wqlNFTDjC7qpS9qhWhYRtB2Tamh8d/+nuKqzjWnqKW2JrQm8soSQP 9XYqIhNxIm7SOPYFcNKKvmetwCz43JDR7+WkRn7vzC5i0kuEJizp/C9Sd34HrCoe 3kHJ9ppYuG6r3nhruOD4OPQgHXcK1UegkCAZtwpbaDamAGj6SypgYUuXiQS/Jzl5 ZrNclofNiMazxKeEv/fP+xXBBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAGLMdEG v/zZ0N67mfEepAqxMSAPMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUGpdxbZk6nTsbpUuBi52BifCPiyfGpPyJiuN6N5DhAu5dRXemvqaYOjjB6TF 2147jVAEhCN5oOHjzBGZ2LaGPEpeG3nxEHjag1ZkktnQOdkvHdM7JZcA0luFBGtm LZcocIn7QJ0jf5FKx0xCaon55XeFKUKD8Y50MbO+oFDM3wPbN89yCqXxurZYlC+F xFr06rKhxka324Ze5oEW4O2YEQs7tbvEFVRtF2gNgMKq5PfR4+55eFJFAWxrc+N+ uBTMNXtXzIVAQEL9X0ROOV4kh6TwGNVw9rj4McxE3y5UjJL4y2uch+IVDZ4uTmzr 91cq8iOHlAYAtqC45dqm+CZptA== -----END CERTIFICATE-----Generated at Fri Apr 17 12:23:02 2026 by rpki-client