Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
File:                     Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json)
Hash identifier:          Nub7ZWfcZ2FT25pJg47d8xTJfZSXQoXDU/yzTyGWI/k=
Subject key identifier:   20:C6:B3:3F:D4:56:EF:66:69:45:46:43:32:D5:99:46:EA:0E:AB:6A
Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9
Certificate issuer:       /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9
Certificate serial:       032C
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
Manifest number:          0323
Signing time:             Thu 19 Feb 2026 00:17:45 +0000
Manifest this update:     Thu 19 Feb 2026 00:17:45 +0000
Manifest next update:     Thu 26 Feb 2026 00:17:45 +0000
Files and hashes:         1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 3CsNt5YheN9xTB7/1JjYnwcYwtGH41x6PUZOAu6HFrE=)
                          2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl
                          rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 26 Feb 2026 00:17:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 812 (0x32c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9
        Validity
            Not Before: Feb 19 00:17:45 2026 GMT
            Not After : Feb 26 00:17:45 2026 GMT
        Subject: CN=699656a9-f5fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:a2:61:34:aa:c0:46:cc:41:e9:da:54:17:81:
                    75:4f:84:69:96:a3:db:7f:77:15:2e:59:fe:28:3a:
                    25:d5:2e:39:6e:05:3b:25:8b:ff:de:11:38:b7:0c:
                    b6:15:e5:63:7a:3c:2f:43:93:9e:8f:34:1f:38:97:
                    2c:34:5a:6d:78:b6:36:6d:fc:14:5a:00:61:d8:c7:
                    34:11:91:02:61:4e:e2:fd:22:76:9f:c3:fd:0c:aa:
                    93:e8:7f:08:b4:e3:dd:96:e3:9a:5f:e5:35:7e:56:
                    87:ed:41:bd:16:22:93:b3:8e:f6:dd:ef:74:4b:c8:
                    63:51:4d:df:d8:3b:85:72:00:f2:cb:58:0b:ae:64:
                    6c:60:21:59:6c:30:2b:07:1a:d0:e2:3c:55:63:25:
                    02:fe:1b:5f:4b:77:0d:8a:b4:45:b2:f5:4b:3b:c6:
                    10:72:65:c2:5d:20:2e:de:37:5f:ff:61:ef:fe:2b:
                    c3:0f:7d:d8:32:13:20:ec:ee:00:75:8b:45:16:7b:
                    43:08:e8:29:a3:b9:f5:0c:ff:5d:33:e7:41:13:9d:
                    4c:45:61:3c:23:7e:68:63:36:c5:d5:06:2a:43:e2:
                    6a:23:e1:85:86:14:b4:d7:6e:95:8e:40:ab:0e:b4:
                    d6:e0:59:ef:15:00:74:46:7e:6b:30:cb:83:a0:19:
                    90:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:C6:B3:3F:D4:56:EF:66:69:45:46:43:32:D5:99:46:EA:0E:AB:6A
            X509v3 Authority Key Identifier:
                keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:14:3c:63:65:a9:7f:27:67:fc:75:94:28:b6:be:8a:06:10:
         23:b0:44:4f:88:e1:8c:6c:3b:95:2f:9c:02:15:90:2b:60:40:
         c9:7b:62:d3:bd:cf:52:5d:81:b9:e4:fd:0f:ca:1a:a5:e3:72:
         54:b1:52:86:b1:60:6c:71:fd:8d:95:cd:49:16:08:da:d7:44:
         ec:3d:3b:c2:b6:b6:76:4d:44:21:e1:95:4f:b6:ac:fc:ed:2e:
         1f:63:09:26:14:c4:50:d3:2c:56:fc:ae:58:f1:e5:cf:80:3e:
         f3:3b:8a:c8:29:0d:5a:a6:75:7e:8f:a5:f6:9c:a9:68:25:44:
         20:18:8e:b6:ae:c8:c7:0a:e6:0d:58:78:d7:f2:36:35:1e:ab:
         21:f7:26:58:d2:a8:4b:1e:f6:a8:75:15:b6:e3:5d:cd:13:3d:
         6b:cd:89:79:41:eb:26:b4:f4:d4:b7:34:f0:2e:07:7a:e3:c4:
         cd:a1:af:bd:bd:25:a6:d4:70:d3:47:6b:8c:ce:b5:8e:5b:bc:
         90:94:d1:e2:21:8e:cd:64:52:28:e9:d9:a3:e9:0d:7f:59:02:
         9c:2e:5b:ae:b3:8b:b4:26:66:9d:c6:7a:1f:38:22:1a:fe:90:
         b3:46:a3:c9:37:30:29:0e:3b:11:93:16:8a:1a:54:ce:2a:15:
         ca:d3:a4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 18:16:33 2026 by rpki-client