$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: JwKosTbl0C67uxo9mCdfKROPm6qfoqbrrv1N9pqRNI8= Subject key identifier: 44:A9:EB:A9:D9:A4:03:07:C5:1D:8F:C7:70:FD:11:A3:82:F7:1B:03 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 010E Signing time: Thu 19 Feb 2026 04:26:06 +0000 Manifest this update: Thu 19 Feb 2026 04:26:05 +0000 Manifest next update: Thu 26 Feb 2026 04:26:05 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: iHalCs+0KpZ3IzwBLQxBqL8lNVCYOqqBVssm7K1KvMU=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 04:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Feb 19 04:26:05 2026 GMT Not After : Feb 26 04:26:05 2026 GMT Subject: CN=699690de-dc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d4:3b:df:2e:04:6e:58:5d:92:81:a8:59:5b: 88:86:87:5a:28:ef:db:b3:33:08:93:90:60:d3:ac: 3f:81:eb:50:53:5f:c7:cd:4d:78:b4:99:cd:4a:99: 23:05:03:ee:86:1f:b5:ef:83:77:84:6e:2a:be:fd: ec:bc:b4:55:dd:14:ec:c4:cc:0b:15:01:4c:16:2c: ca:cc:ce:3f:86:0d:56:b9:90:60:03:c5:a2:ac:5f: 36:3e:9f:38:64:9d:31:fb:35:1f:6f:d4:83:c4:50: aa:eb:b4:35:5b:01:90:f6:0d:79:d1:1e:32:67:7e: ad:ba:a8:ab:4f:6f:aa:86:9f:a6:90:12:fc:1f:de: 8c:c6:6a:e8:57:38:93:16:87:15:bf:ff:e9:c1:95: 0d:27:88:62:63:63:15:ab:88:1f:ef:e1:bc:3c:9d: fa:65:86:74:89:0d:6a:f1:44:90:45:3f:be:ae:f1: 79:04:42:10:84:52:85:95:8f:24:d1:95:7d:18:72: 0e:da:b0:95:aa:a7:11:5b:9d:65:03:fc:f5:3c:37: 26:ec:a9:e2:a8:72:1d:12:6e:51:f8:86:5e:bf:91: 2c:27:0e:76:4c:d4:8e:c4:e1:2f:3a:1a:ee:c1:c5: 68:cf:9c:cd:05:b2:14:f9:86:2e:cd:52:a6:53:ec: 6e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A9:EB:A9:D9:A4:03:07:C5:1D:8F:C7:70:FD:11:A3:82:F7:1B:03 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:86:6e:08:f8:6f:3a:9b:10:ae:ac:35:a5:a0:e8:e3:3d:a9: 93:29:d8:a8:52:a4:5b:65:af:8f:5f:88:a0:b9:d8:99:43:0b: 60:77:ac:ae:a4:20:08:68:0b:61:17:28:75:76:80:f2:ba:00: aa:3f:7b:6b:4e:1f:0c:fd:f6:b2:c4:ca:7c:81:47:33:4e:f7: 2f:1d:9b:ac:12:77:56:3c:24:d4:bf:a3:da:83:94:22:48:a4: 4d:ee:4c:21:5a:20:32:6d:d4:0c:8c:f6:41:1f:dc:ea:2f:b1: 9a:d5:98:fa:40:16:d1:5e:9d:43:5e:41:ce:56:9e:f9:21:32: 9f:5a:c8:c9:21:9f:03:8b:b2:f3:c0:c5:96:49:24:b9:f0:36: 0d:33:f8:29:e7:28:c9:0f:3e:2d:0d:91:2d:a2:21:b5:92:ee: a7:f8:7e:f0:d9:d2:e1:da:62:26:b6:b1:53:6d:6b:76:81:29: 59:21:cc:b9:79:d7:23:99:78:a6:b5:ca:17:91:9d:c7:66:de: f1:cd:d5:fd:5a:af:ba:f6:13:2a:d4:cb:ff:bd:68:61:f5:2c: c4:6a:a1:40:ab:15:bc:72:10:89:f6:8f:8b:b4:7a:9d:a0:ae: bd:d5:7c:da:cf:44:7f:a2:66:4b:48:fd:30:83:0d:33:cb:19: 19:c5:a7:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwMjE5MDQyNjA1WhcNMjYwMjI2MDQyNjA1WjAYMRYwFAYD VQQDDA02OTk2OTBkZS1kYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNQ73y4EblhdkoGoWVuIhodaKO/bszMIk5Bg06w/getQU1/HzU14tJnNSpkj BQPuhh+174N3hG4qvv3svLRV3RTsxMwLFQFMFizKzM4/hg1WuZBgA8WirF82Pp84 ZJ0x+zUfb9SDxFCq67Q1WwGQ9g150R4yZ36tuqirT2+qhp+mkBL8H96MxmroVziT FocVv//pwZUNJ4hiY2MVq4gf7+G8PJ36ZYZ0iQ1q8USQRT++rvF5BEIQhFKFlY8k 0ZV9GHIO2rCVqqcRW51lA/z1PDcm7KniqHIdEm5R+IZev5EsJw52TNSOxOEvOhru wcVoz5zNBbIU+YYuzVKmU+xuLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESp66nZ pAMHxR2Px3D9EaOC9xsDMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyhm4I+G86mxCurDWloOjjPamTKdioUqRbZa+PX4igudiZQwtgd6yu pCAIaAthFyh1doDyugCqP3trTh8M/fayxMp8gUczTvcvHZusEndWPCTUv6Pag5Qi SKRN7kwhWiAybdQMjPZBH9zqL7Ga1Zj6QBbRXp1DXkHOVp75ITKfWsjJIZ8Di7Lz wMWWSSS58DYNM/gp5yjJDz4tDZEtoiG1ku6n+H7w2dLh2mImtrFTbWt2gSlZIcy5 edcjmXimtcoXkZ3HZt7xzdX9Wq+69hMq1Mv/vWhh9SzEaqFAqxW8chCJ9o+LtHqd oK691Xzaz0R/omZLSP0wgw0zyxkZxadM -----END CERTIFICATE-----Generated at Thu Feb 19 18:48:26 2026 by rpki-client