
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft
File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json)
Hash identifier: qCaZdRKeqRwaXesdB+waLCT2qUk3UmeKk5hccNFQ6SY=
Subject key identifier: 62:12:43:58:35:8C:3E:9D:74:AD:0D:78:80:2C:93:5C:3A:07:E9:A2
Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1
Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1
Certificate serial: 01B0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft
Manifest number: 01A7
Signing time: Fri 17 Jul 2026 05:07:42 +0000
Manifest this update: Fri 17 Jul 2026 05:07:42 +0000
Manifest next update: Fri 24 Jul 2026 05:07:42 +0000
Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: o8bE0TodTxs154YELkoT7UK04+ri1ohRWTyFmVipIvM=)
2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: RaGY6FAZxGZDZsSuof8rmTq3skc2lNTAnKA5LtFgVgE=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl
rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 05:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1
Validity
Not Before: Jul 17 05:07:42 2026 GMT
Not After : Jul 24 05:07:42 2026 GMT
Subject: CN=6a59b89e-9198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:45:12:3f:e1:32:42:d0:17:dd:df:2a:71:dd:
f7:2e:bf:ca:1a:f9:5d:67:04:8a:86:e1:d4:38:09:
73:11:0a:dc:71:9b:32:46:ab:ad:98:00:70:bd:b6:
30:a3:4a:5d:e6:5e:a7:23:dd:5a:aa:85:1e:90:8d:
fc:b3:cc:c9:59:8c:0d:ab:41:95:6a:e7:04:c5:9f:
2a:f5:dd:ac:f1:78:76:e3:90:f6:bb:23:0c:00:e9:
fb:35:39:5f:9b:6e:fa:75:f3:cc:ad:f0:70:91:39:
52:01:62:a9:73:85:fd:68:17:80:da:35:f4:38:9f:
24:af:0d:b3:35:d3:15:39:f1:00:bd:fd:70:67:ac:
00:bc:9b:a2:74:5d:4d:86:14:cd:36:cc:2b:92:cc:
d5:c5:f6:5f:60:d4:e1:dc:2d:70:61:13:ce:e3:c5:
18:78:8c:a3:a6:c2:c9:b9:4f:16:2f:05:9f:a3:c0:
f3:54:9d:0f:9e:58:0a:b5:7d:d3:db:da:2d:74:57:
17:44:44:c7:a9:56:4a:d4:7a:cd:1e:e4:82:35:2f:
e1:51:37:5a:4d:65:d1:e3:9d:36:d6:6d:e5:65:44:
a9:ae:26:39:bc:c6:ea:f1:71:ed:0f:74:7c:26:e3:
15:ed:19:4f:09:13:7e:1b:93:70:30:25:f1:c4:1f:
d8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:12:43:58:35:8C:3E:9D:74:AD:0D:78:80:2C:93:5C:3A:07:E9:A2
X509v3 Authority Key Identifier:
keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
59:3e:18:17:3f:7c:e7:81:01:4a:4f:1d:39:58:ff:de:db:6e:
1c:d6:38:99:b9:f0:5f:19:d9:65:20:35:a3:bf:2b:e7:cb:b5:
f8:77:26:1d:04:13:f7:4c:f9:90:4c:ac:6f:a5:c3:95:f4:29:
52:f9:7f:b9:d6:5f:8c:5d:8e:dc:59:e3:0c:7d:03:84:bd:3a:
d1:7b:9d:49:bc:24:e3:f9:a4:51:8e:68:89:72:87:02:e8:bf:
f6:18:c1:be:f1:de:7a:6f:96:76:96:bb:39:35:9d:0b:49:52:
77:03:b8:97:33:ac:ac:09:09:19:c6:72:18:86:76:58:28:a7:
ea:41:d6:b9:7b:ff:25:7c:8f:13:2d:2f:b8:0c:4f:47:fc:91:
41:ac:04:71:7b:2e:d0:2c:99:bb:ea:21:44:b0:df:22:e7:9a:
88:de:ad:eb:8e:8a:9a:70:e6:cd:4e:f9:84:d8:cd:3e:d3:ff:
d6:75:9e:fc:f7:61:ce:cf:46:67:b9:aa:eb:1f:3c:72:51:ab:
8f:f4:40:3e:00:9e:e2:a6:a8:30:56:65:cc:eb:8b:39:b7:4f:
a2:6c:19:4a:f2:ee:f8:ec:70:f4:17:31:5f:89:db:1b:31:30:
1c:f6:d8:20:79:7a:80:a6:63:06:fb:1c:ba:a7:fa:1d:69:23:
bc:38:9f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 08:18:17 2026 by rpki-client