
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json)
Hash identifier: Nub7ZWfcZ2FT25pJg47d8xTJfZSXQoXDU/yzTyGWI/k=
Subject key identifier: 20:C6:B3:3F:D4:56:EF:66:69:45:46:43:32:D5:99:46:EA:0E:AB:6A
Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9
Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9
Certificate serial: 032C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
Manifest number: 0323
Signing time: Thu 19 Feb 2026 00:17:45 +0000
Manifest this update: Thu 19 Feb 2026 00:17:45 +0000
Manifest next update: Thu 26 Feb 2026 00:17:45 +0000
Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 3CsNt5YheN9xTB7/1JjYnwcYwtGH41x6PUZOAu6HFrE=)
2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl
rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 00:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 812 (0x32c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9
Validity
Not Before: Feb 19 00:17:45 2026 GMT
Not After : Feb 26 00:17:45 2026 GMT
Subject: CN=699656a9-f5fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a2:61:34:aa:c0:46:cc:41:e9:da:54:17:81:
75:4f:84:69:96:a3:db:7f:77:15:2e:59:fe:28:3a:
25:d5:2e:39:6e:05:3b:25:8b:ff:de:11:38:b7:0c:
b6:15:e5:63:7a:3c:2f:43:93:9e:8f:34:1f:38:97:
2c:34:5a:6d:78:b6:36:6d:fc:14:5a:00:61:d8:c7:
34:11:91:02:61:4e:e2:fd:22:76:9f:c3:fd:0c:aa:
93:e8:7f:08:b4:e3:dd:96:e3:9a:5f:e5:35:7e:56:
87:ed:41:bd:16:22:93:b3:8e:f6:dd:ef:74:4b:c8:
63:51:4d:df:d8:3b:85:72:00:f2:cb:58:0b:ae:64:
6c:60:21:59:6c:30:2b:07:1a:d0:e2:3c:55:63:25:
02:fe:1b:5f:4b:77:0d:8a:b4:45:b2:f5:4b:3b:c6:
10:72:65:c2:5d:20:2e:de:37:5f:ff:61:ef:fe:2b:
c3:0f:7d:d8:32:13:20:ec:ee:00:75:8b:45:16:7b:
43:08:e8:29:a3:b9:f5:0c:ff:5d:33:e7:41:13:9d:
4c:45:61:3c:23:7e:68:63:36:c5:d5:06:2a:43:e2:
6a:23:e1:85:86:14:b4:d7:6e:95:8e:40:ab:0e:b4:
d6:e0:59:ef:15:00:74:46:7e:6b:30:cb:83:a0:19:
90:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C6:B3:3F:D4:56:EF:66:69:45:46:43:32:D5:99:46:EA:0E:AB:6A
X509v3 Authority Key Identifier:
keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
4a:14:3c:63:65:a9:7f:27:67:fc:75:94:28:b6:be:8a:06:10:
23:b0:44:4f:88:e1:8c:6c:3b:95:2f:9c:02:15:90:2b:60:40:
c9:7b:62:d3:bd:cf:52:5d:81:b9:e4:fd:0f:ca:1a:a5:e3:72:
54:b1:52:86:b1:60:6c:71:fd:8d:95:cd:49:16:08:da:d7:44:
ec:3d:3b:c2:b6:b6:76:4d:44:21:e1:95:4f:b6:ac:fc:ed:2e:
1f:63:09:26:14:c4:50:d3:2c:56:fc:ae:58:f1:e5:cf:80:3e:
f3:3b:8a:c8:29:0d:5a:a6:75:7e:8f:a5:f6:9c:a9:68:25:44:
20:18:8e:b6:ae:c8:c7:0a:e6:0d:58:78:d7:f2:36:35:1e:ab:
21:f7:26:58:d2:a8:4b:1e:f6:a8:75:15:b6:e3:5d:cd:13:3d:
6b:cd:89:79:41:eb:26:b4:f4:d4:b7:34:f0:2e:07:7a:e3:c4:
cd:a1:af:bd:bd:25:a6:d4:70:d3:47:6b:8c:ce:b5:8e:5b:bc:
90:94:d1:e2:21:8e:cd:64:52:28:e9:d9:a3:e9:0d:7f:59:02:
9c:2e:5b:ae:b3:8b:b4:26:66:9d:c6:7a:1f:38:22:1a:fe:90:
b3:46:a3:c9:37:30:29:0e:3b:11:93:16:8a:1a:54:ce:2a:15:
ca:d3:a4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 18:16:33 2026 by rpki-client