$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: fZR4BYQT7S0+k8NTsX/sq7XLz9inobWyXzdoFXBOHO0= Subject key identifier: AD:63:D2:7C:0C:F5:42:D0:51:9A:84:F0:10:45:C2:C6:32:33:E5:C2 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 018B Signing time: Thu 21 May 2026 04:28:35 +0000 Manifest this update: Thu 21 May 2026 04:28:34 +0000 Manifest next update: Thu 28 May 2026 04:28:34 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: Z3vIMtQjpY0nCSXkTdwsVx47GcSJc00jHaHO1svaJ+M=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: RaGY6FAZxGZDZsSuof8rmTq3skc2lNTAnKA5LtFgVgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: May 21 04:28:34 2026 GMT Not After : May 28 04:28:34 2026 GMT Subject: CN=6a0e89f3-84d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:b1:94:f2:6e:1f:76:57:39:cf:e7:59:01: 8a:00:3d:2c:6f:9a:f8:2e:a0:37:b6:0d:17:d0:3c: 16:ce:6b:f4:4e:3e:1f:cc:eb:6b:66:38:a7:a9:1a: c0:ce:60:27:4b:03:a8:81:bd:42:82:cb:ab:70:e6: d5:c1:d9:e1:90:7d:a2:e6:b7:fd:3a:8d:a2:ed:37: 3f:61:10:3e:4a:62:cd:3f:58:62:03:a3:1d:ff:8e: 85:bd:18:da:25:ac:10:ef:49:b1:e1:f3:4d:b5:a4: 8d:c0:90:f9:88:2e:ad:b1:ff:7a:66:c6:a4:e3:1f: 21:86:57:c4:f6:eb:7f:e8:6e:4b:66:e7:6b:5c:b0: 80:b7:a2:54:90:09:14:1e:07:e2:b9:71:26:4d:dd: 2b:a2:66:19:4a:e5:19:c4:5b:42:fe:71:fd:69:a1: 9f:c7:8e:b7:63:de:78:a4:48:c8:28:67:a9:83:97: 6d:a0:a6:4b:96:af:8b:5f:74:61:fc:89:c8:da:95: b7:05:1f:e8:5d:ca:39:ed:d7:85:79:53:42:11:e9: a8:68:97:fd:39:32:98:70:7f:d6:ef:c3:f2:a9:d8: f8:20:a8:bd:15:7e:2c:a1:53:f0:0e:2c:0c:d5:a6: 43:47:f1:ec:89:a6:48:64:1e:73:6e:92:fd:95:e3: 1d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:63:D2:7C:0C:F5:42:D0:51:9A:84:F0:10:45:C2:C6:32:33:E5:C2 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2b:8d:fa:6c:40:6c:10:b4:d7:a6:71:93:75:e6:89:2e:5b: d8:d5:7d:79:6a:c9:e6:51:26:15:8d:b4:a2:ca:9f:79:02:fd: a2:ef:8f:30:08:2c:fd:58:33:0c:bb:e7:20:cb:4e:81:6f:fc: 2c:f0:fc:e3:ae:c1:b4:5a:43:b8:07:f1:e7:a4:f2:44:fe:72: f9:db:24:a3:68:fc:26:cf:85:b1:7c:01:a5:a7:42:6f:ad:0b: 91:a8:2b:a9:06:da:2c:9f:13:98:bb:53:da:5e:1c:7e:e6:db: 7a:ac:c8:ce:e0:0b:00:f1:6a:e4:b6:c0:03:7a:6d:bb:52:ef: 7b:b7:ed:12:ea:19:46:90:0d:b9:eb:f5:01:83:85:28:cc:09: a4:0e:a6:bd:1d:ba:e5:b8:4a:63:90:67:e8:90:41:ec:f4:b2: 0e:bb:cb:03:76:03:a9:6a:00:e0:ef:56:05:88:9d:24:5a:fd: 4b:0a:5b:10:8e:56:8a:dc:de:3b:17:e1:32:11:c0:35:44:bb: bf:cf:95:9e:e3:0c:51:8a:9d:96:1c:7a:c5:e8:9e:ad:2e:d5: 81:a1:70:a0:08:7f:80:e8:55:2c:6b:ea:a7:9f:d3:81:30:bd: e8:40:de:c7:d7:06:c3:46:d9:65:9f:f8:0d:55:ee:a3:79:45: 3c:85:8b:e1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjYwNTIxMDQyODM0WhcNMjYwNTI4MDQyODM0WjAYMRYwFAYD VQQDEw02YTBlODlmMy04NGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoaxlPJuH3ZXOc/nWQGKAD0sb5r4LqA3tg0X0DwWzmv0Tj4fzOtrZjinqRrA zmAnSwOogb1CgsurcObVwdnhkH2i5rf9Oo2i7Tc/YRA+SmLNP1hiA6Md/46FvRja JawQ70mx4fNNtaSNwJD5iC6tsf96Zsak4x8hhlfE9ut/6G5LZudrXLCAt6JUkAkU HgfiuXEmTd0romYZSuUZxFtC/nH9aaGfx463Y954pEjIKGepg5dtoKZLlq+LX3Rh /InI2pW3BR/oXco57deFeVNCEemoaJf9OTKYcH/W78Pyqdj4IKi9FX4soVPwDiwM 1aZDR/HsiaZIZB5zbpL9leMdIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK1j0nwM 9ULQUZqE8BBFwsYyM+XCMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGCuN+mxAbBC016Zxk3XmiS5b2NV9eWrJ5lEmFY20osqfeQL9ou+PMAgs/Vgz DLvnIMtOgW/8LPD8467BtFpDuAfx56TyRP5y+dsko2j8Js+FsXwBpadCb60Lkagr qQbaLJ8TmLtT2l4cfubbeqzIzuALAPFq5LbAA3ptu1Lve7ftEuoZRpANuev1AYOF KMwJpA6mvR265bhKY5Bn6JBB7PSyDrvLA3YDqWoA4O9WBYidJFr9SwpbEI5Witze OxfhMhHANUS7v8+VnuMMUYqdlhx6xeierS7VgaFwoAh/gOhVLGvqp5/TgTC96EDe x9cGw0bZZZ/4DVXuo3lFPIWL4Q== -----END CERTIFICATE-----Generated at Thu May 21 09:39:19 2026 by rpki-client