$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: 1DFt8GCDNvR07Hbftlr5B3XC58gxvk/y/Q863VLfMrc= Subject key identifier: 68:9D:AE:E2:88:FB:4C:51:12:E5:4D:54:70:24:C0:B5:F2:04:59:93 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 0174 Signing time: Sun 05 Apr 2026 04:09:03 +0000 Manifest this update: Sun 05 Apr 2026 04:09:02 +0000 Manifest next update: Sun 12 Apr 2026 04:09:02 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: 3lSNkCuHKZCPp/hMmC2X4uHHoJzLpDZXfAfbxw64s/M=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: RaGY6FAZxGZDZsSuof8rmTq3skc2lNTAnKA5LtFgVgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Apr 5 04:09:02 2026 GMT Not After : Apr 12 04:09:02 2026 GMT Subject: CN=69d1e05f-dde9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:65:97:d8:ee:a6:a2:16:05:d3:86:79:da:3c: de:8a:82:a6:a9:29:ff:51:b4:bb:47:a1:31:6b:cc: 59:df:74:ff:9a:26:62:29:da:7b:da:00:f9:22:e6: c9:f3:cd:1c:64:da:55:96:43:90:fd:14:dc:fb:5b: e9:d3:e8:c6:cc:62:ff:ca:44:6e:01:05:7d:92:4b: 88:37:1b:33:ec:02:b5:0b:ff:8a:9c:be:3b:07:87: a3:1c:9c:b9:95:61:6b:83:91:b1:4c:ff:06:9b:53: 90:f0:97:cc:d2:be:69:32:cb:27:bd:96:55:da:58: 50:64:ef:b1:08:4e:72:51:48:c1:96:e2:4f:75:58: 08:47:1d:18:cb:81:a7:67:51:7e:8a:12:a3:f3:ef: 42:50:cd:a0:c4:d0:f3:cc:55:4f:36:88:58:8d:99: 1f:28:52:fc:2e:2f:56:c5:05:0e:d0:46:61:ec:89: 71:c0:56:2f:95:26:93:4c:4b:c0:11:2b:e5:de:c1: ee:96:04:ce:c7:7a:04:dc:9b:ac:68:7a:d5:45:5d: 1b:78:f4:fd:71:15:85:15:8e:1a:e1:7e:81:aa:7c: ca:8d:c3:9a:f7:a4:a3:99:25:91:2c:4e:88:79:77: a0:c7:6d:f0:8c:b0:25:f9:3a:cc:11:1d:49:75:fa: dc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9D:AE:E2:88:FB:4C:51:12:E5:4D:54:70:24:C0:B5:F2:04:59:93 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8a:89:0a:c9:b3:2c:07:58:14:e1:b8:a5:97:bf:1b:a4:7c: 87:9f:eb:9b:35:6f:a2:fb:e3:78:df:f7:96:bc:42:52:ed:16: 7e:c9:65:59:b7:8a:d7:a7:3e:a4:2c:a4:a3:55:eb:fc:cf:e7: 24:e9:45:7b:26:90:73:bf:3e:a4:91:af:81:43:fa:d4:85:d6: d6:21:dc:0c:8f:6b:75:ed:8d:06:cf:96:cd:e7:51:ab:e3:75: f3:bc:cc:35:50:4b:84:11:8d:d0:5e:a2:28:e8:4f:5e:c1:63: bd:df:02:c6:32:2e:e7:8a:93:c7:c0:46:2c:38:52:92:83:a3: e6:eb:e5:d8:87:71:d8:9c:f2:92:95:20:e2:3c:d7:8a:c8:84: 38:7f:39:50:81:9c:c6:9a:58:28:f7:13:c7:3b:33:fc:e6:e4: d3:49:44:a1:2d:d8:99:76:a7:3c:5d:68:fb:ad:db:1b:28:63: 6a:f4:4b:9b:df:28:df:11:8d:48:60:65:d0:21:0a:1f:e2:6b: cd:2e:b6:f3:4f:c3:c8:21:89:c6:da:e4:40:b8:45:e9:98:78: 94:80:d1:c0:49:71:a0:0a:7c:b4:65:55:b8:05:15:1c:d1:fe: 1e:12:da:93:d1:bd:fd:6b:c2:8c:d9:ce:ba:24:95:22:fe:e6: b2:d6:a5:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjYwNDA1MDQwOTAyWhcNMjYwNDEyMDQwOTAyWjAYMRYwFAYD VQQDEw02OWQxZTA1Zi1kZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WWX2O6mohYF04Z52jzeioKmqSn/UbS7R6Exa8xZ33T/miZiKdp72gD5IubJ 880cZNpVlkOQ/RTc+1vp0+jGzGL/ykRuAQV9kkuINxsz7AK1C/+KnL47B4ejHJy5 lWFrg5GxTP8Gm1OQ8JfM0r5pMssnvZZV2lhQZO+xCE5yUUjBluJPdVgIRx0Yy4Gn Z1F+ihKj8+9CUM2gxNDzzFVPNohYjZkfKFL8Li9WxQUO0EZh7IlxwFYvlSaTTEvA ESvl3sHulgTOx3oE3JusaHrVRV0bePT9cRWFFY4a4X6BqnzKjcOa96SjmSWRLE6I eXegx23wjLAl+TrMER1JdfrcawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGidruKI +0xREuVNVHAkwLXyBFmTMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG4qJCsmzLAdYFOG4pZe/G6R8h5/rmzVvovvjeN/3lrxCUu0WfsllWbeK16c+ pCyko1Xr/M/nJOlFeyaQc78+pJGvgUP61IXW1iHcDI9rde2NBs+WzedRq+N187zM NVBLhBGN0F6iKOhPXsFjvd8CxjIu54qTx8BGLDhSkoOj5uvl2Idx2JzykpUg4jzX isiEOH85UIGcxppYKPcTxzsz/Obk00lEoS3YmXanPF1o+63bGyhjavRLm98o3xGN SGBl0CEKH+JrzS6280/DyCGJxtrkQLhF6Zh4lIDRwElxoAp8tGVVuAUVHNH+HhLa k9G9/WvCjNnOuiSVIv7mstalHQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:07 2026 by rpki-client