This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft File: KyraxZ7M9jhPxeNj8GfDueKemaE.mft (raw, json) Hash identifier: w1OJWFLJflvBXuzLJm1oXFiRVOfcoTp8ayl0vDqAUQA= Subject key identifier: B2:E6:92:CC:18:50:F0:AC:C8:80:AE:16:A3:7B:8A:24:61:CD:E6:5F Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft Manifest number: 013D Signing time: Tue 23 Dec 2025 03:25:44 +0000 Manifest this update: Tue 23 Dec 2025 03:25:44 +0000 Manifest next update: Tue 30 Dec 2025 03:25:44 +0000 Files and hashes: 1: KyraxZ7M9jhPxeNj8GfDueKemaE.crl (hash: RsVWSy+Wd6TwpIHc8wIRkVMhYjBjivmxnb3ukQ2fWho=) 2: 71B685ACF7E511EEBC67981CC4F9AE02.roa (hash: hnnfq71rK1ZIuAmUqIiiCmmEhX9P+SlsIzqCbG4sw9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Dec 23 03:25:44 2025 GMT Not After : Dec 30 03:25:44 2025 GMT Subject: CN=694a0bb8-80d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:65:93:91:2d:47:f4:0c:80:63:b8:18:9f:79: 48:0c:ba:f9:a5:ce:a3:42:9e:aa:11:c3:8c:6a:38: ca:b7:5c:16:e4:fd:b0:28:c3:83:a2:db:9a:05:5a: c1:9b:00:f6:17:55:9c:e6:f0:79:a3:e4:10:15:92: 43:ae:02:ae:6c:d0:34:53:18:8e:b9:13:de:19:ef: 5b:b4:69:62:64:23:07:d4:f3:32:e8:ec:6a:d2:a1: ed:fc:3f:21:fb:9a:8b:4d:d9:a1:57:d0:b3:27:f7: 7b:5d:bc:a9:e2:2e:e9:81:a2:b7:8f:53:9d:33:c4: b1:00:80:37:48:e2:ac:b5:ff:53:f3:1d:64:e5:54: f8:6f:c0:2b:dc:68:a9:49:be:53:d1:dc:35:58:23: d3:3d:28:50:94:b4:e2:ca:ab:3d:50:7f:9a:62:47: 69:62:b0:0d:2d:5d:e2:df:90:42:9a:23:34:b7:5a: d5:02:83:7a:66:42:4c:59:f3:e8:7e:d1:5c:69:a9: b7:ea:da:1f:5e:48:cd:78:14:75:07:7b:4b:8f:a3: e6:36:a5:99:9d:9b:5e:6b:b2:7c:d5:d9:7d:d9:e5: f8:a4:cc:eb:55:fd:52:40:f2:2d:95:b2:38:c5:9b: e7:98:b0:6d:6f:08:ce:3f:14:f2:6c:62:50:23:03: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E6:92:CC:18:50:F0:AC:C8:80:AE:16:A3:7B:8A:24:61:CD:E6:5F X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:06:03:f7:10:bf:cf:3f:73:71:fd:80:d8:a5:32:d6:8c:77: 19:5b:0e:1e:66:9c:f5:2b:94:8d:f9:84:cb:06:f3:e3:1b:23: d5:e0:a6:15:4c:67:b3:3f:e4:15:3b:6e:8c:03:b5:bd:4b:77: 8e:f2:90:bc:fc:f8:20:1f:1e:b1:1a:ab:92:1b:90:5d:d3:b9: b8:89:d4:9b:c0:f8:04:6c:61:55:ed:3f:8e:d2:8b:b7:ab:8f: be:80:99:a1:8f:d1:9b:61:f9:e2:ea:6e:2d:da:13:63:8f:c3: e3:a8:8d:9e:48:5d:58:60:79:6a:fc:3f:b5:1c:d8:27:9e:8c: 78:48:9d:d3:85:f4:a6:39:f6:b8:b4:dc:06:35:e9:20:27:0f: ef:2a:3d:de:20:9f:97:4e:53:8b:64:c9:b3:00:77:cb:73:75: 7d:a9:d8:1f:af:50:58:35:bc:5f:70:7d:d6:5c:7a:50:87:aa: ca:7d:7a:91:8c:03:38:88:c5:0c:d9:ac:e2:79:de:82:9a:53: 8b:ec:af:09:91:f5:ce:ea:47:6e:bc:e3:67:26:7d:f5:44:a3: 0b:75:74:d5:36:41:7a:d2:c0:de:f1:ee:fb:69:db:0a:77:35: 57:cc:f4:4d:d3:1b:81:8a:e6:a7:84:47:c8:9d:ce:18:34:f1: e2:a4:cf:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUxMjIzMDMyNTQ0WhcNMjUxMjMwMDMyNTQ0WjAYMRYwFAYD VQQDDA02OTRhMGJiOC04MGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWWTkS1H9AyAY7gYn3lIDLr5pc6jQp6qEcOMajjKt1wW5P2wKMODotuaBVrB mwD2F1Wc5vB5o+QQFZJDrgKubNA0UxiOuRPeGe9btGliZCMH1PMy6Oxq0qHt/D8h +5qLTdmhV9CzJ/d7Xbyp4i7pgaK3j1OdM8SxAIA3SOKstf9T8x1k5VT4b8Ar3Gip Sb5T0dw1WCPTPShQlLTiyqs9UH+aYkdpYrANLV3i35BCmiM0t1rVAoN6ZkJMWfPo ftFcaam36tofXkjNeBR1B3tLj6PmNqWZnZtea7J81dl92eX4pMzrVf1SQPItlbI4 xZvnmLBtbwjOPxTybGJQIwN5ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLmkswY UPCsyICuFqN7iiRhzeZfMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GRjk0RTcxMkY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlq aFB4ZU5qOEdmRHVlS2VtYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6BgP3EL/PP3Nx/YDYpTLWjHcZWw4eZpz1K5SN+YTLBvPjGyPV4KYV TGezP+QVO26MA7W9S3eO8pC8/PggHx6xGquSG5Bd07m4idSbwPgEbGFV7T+O0ou3 q4++gJmhj9GbYfni6m4t2hNjj8PjqI2eSF1YYHlq/D+1HNgnnox4SJ3ThfSmOfa4 tNwGNekgJw/vKj3eIJ+XTlOLZMmzAHfLc3V9qdgfr1BYNbxfcH3WXHpQh6rKfXqR jAM4iMUM2azied6CmlOL7K8JkfXO6kduvONnJn31RKMLdXTVNkF60sDe8e77adsK dzVXzPRN0xuBiuanhEfInc4YNPHipM/+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:45 2025 by rpki-client