$ rpki-client -vvf rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft File: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft (raw, json) Hash identifier: bSjz+gZOYukgfA8a93Exqq03UrIs8ePw3Rx8IwSKI4c= Subject key identifier: 57:ED:5B:EB:CF:86:A2:F3:EB:EC:E3:5F:D7:7B:A2:64:0B:F6:A5:69 Authority key identifier: 29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 Certificate issuer: /CN=A914F521/serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Certificate serial: 0E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft Manifest number: 0E25 Signing time: Wed 18 Feb 2026 17:31:49 +0000 Manifest this update: Wed 18 Feb 2026 17:31:48 +0000 Manifest next update: Wed 25 Feb 2026 17:31:48 +0000 Files and hashes: 1: KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl (hash: wjW8xAzMwS7M0EXAZTCP4UZmkSQwaklkYCPuh9TDQgk=) 2: 757320342E4011EEBC464879C4F9AE02.roa (hash: P37lIdcSAoW+RqsdCkFvhSnyXLO3TfyFSiBj1G2ZldU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F521, serialNumber=2976876753D65562A7CA85E3E9E8DF750797C948 Validity Not Before: Feb 18 17:31:48 2026 GMT Not After : Feb 25 17:31:48 2026 GMT Subject: CN=6995f785-b723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4d:18:0e:53:0b:b0:e4:6d:48:9e:92:73:c0: 45:c4:9f:37:ba:02:22:88:0e:36:a6:ba:85:0c:03: 57:e6:52:88:1a:ec:27:d0:f4:ca:77:c7:45:c3:0f: 5a:3e:c5:02:ed:03:a3:3b:e7:1d:58:d1:7c:87:b7: f9:88:cd:66:09:bb:88:2d:c9:ff:a9:e1:fd:d9:b2: 14:cb:19:2b:6c:5d:d8:86:33:fb:42:56:b0:66:53: 2e:78:4d:62:3f:88:94:02:bc:fc:61:2e:00:2b:fe: 4b:bf:3b:0f:b7:f6:b0:ce:9f:9a:06:9a:a7:3e:63: e7:a5:d1:23:19:4e:aa:5a:e0:c3:25:50:bb:54:cb: 10:72:02:47:78:60:42:72:7e:1c:a0:c9:78:ad:37: 13:ed:db:05:f9:08:f5:94:f2:ea:bd:c7:33:90:f4: a7:c7:4a:e7:b8:3c:42:f2:cc:b9:19:7f:87:57:ae: 69:eb:fb:f6:90:e3:00:d2:0e:57:b0:1c:8d:4b:72: 6d:d7:cc:cf:72:9e:54:d4:4e:f0:9b:ab:f1:ad:d1: 00:3d:33:4d:6c:0b:8a:37:61:3f:51:b1:b3:f1:5a: 42:c3:8d:2c:20:e4:80:9e:04:2f:f4:73:80:f0:f5: 88:e3:fc:ba:d8:3b:e0:50:96:2e:c9:04:a0:f6:54: 42:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:ED:5B:EB:CF:86:A2:F3:EB:EC:E3:5F:D7:7B:A2:64:0B:F6:A5:69 X509v3 Authority Key Identifier: keyid:29:76:87:67:53:D6:55:62:A7:CA:85:E3:E9:E8:DF:75:07:97:C9:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F521/21658820C67E11E9AF3BA765C4F9AE02/KXaHZ1PWVWKnyoXj6ejfdQeXyUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ae:50:6c:21:1c:53:95:67:61:eb:06:a8:3e:b2:01:24:64: bb:98:f6:b3:cf:9c:86:d9:ce:ed:58:40:c1:f8:50:27:48:0d: cb:89:71:c7:65:69:f2:7c:48:55:b4:81:cc:bc:01:1a:48:2c: 8a:84:a2:bb:62:69:2d:49:eb:83:62:c1:fe:f1:b9:86:35:48: e6:a8:a7:5b:f1:07:0e:33:d7:a9:e3:52:f1:46:28:e7:fc:59: c6:f9:7f:ed:5c:d1:94:75:69:3a:59:49:55:91:06:43:0c:18: 22:3e:37:57:ea:b0:14:85:3e:31:57:87:53:d7:68:99:f8:fc: 74:f3:2b:2e:cf:24:48:59:99:70:f0:5b:7c:2a:22:1c:bc:71: 8a:8a:bc:51:fa:2a:5b:e0:01:97:3e:9c:e7:c2:ec:36:7a:e2: 44:b8:8b:56:66:99:cf:ce:53:7d:41:17:08:fe:c0:33:af:ed: bc:95:bc:e7:e4:96:09:87:80:fb:9a:2e:a4:23:d7:84:cf:f0: b0:33:63:9f:fe:bb:42:70:6e:4c:f3:55:4a:98:4c:30:21:4d: 74:f7:83:f2:b6:bf:81:0a:97:5a:4b:a5:bf:da:97:2a:85:5d: 11:fd:9e:ea:d7:aa:bd:63:6a:c4:61:24:17:34:af:49:c2:db: bf:97:bd:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1MjExMTAvBgNVBAUTKDI5NzY4NzY3NTNENjU1NjJBN0NBODVFM0U5RThERjc1 MDc5N0M5NDgwHhcNMjYwMjE4MTczMTQ4WhcNMjYwMjI1MTczMTQ4WjAYMRYwFAYD VQQDDA02OTk1Zjc4NS1iNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2U0YDlMLsORtSJ6Sc8BFxJ83ugIiiA42prqFDANX5lKIGuwn0PTKd8dFww9a PsUC7QOjO+cdWNF8h7f5iM1mCbuILcn/qeH92bIUyxkrbF3YhjP7QlawZlMueE1i P4iUArz8YS4AK/5LvzsPt/awzp+aBpqnPmPnpdEjGU6qWuDDJVC7VMsQcgJHeGBC cn4coMl4rTcT7dsF+Qj1lPLqvcczkPSnx0rnuDxC8sy5GX+HV65p6/v2kOMA0g5X sByNS3Jt18zPcp5U1E7wm6vxrdEAPTNNbAuKN2E/UbGz8VpCw40sIOSAngQv9HOA 8PWI4/y62DvgUJYuyQSg9lRCNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFftW+vP hqLz6+zjX9d7omQL9qVpMB8GA1UdIwQYMBaAFCl2h2dT1lVip8qF4+no33UHl8lI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjUyMS8yMTY1ODgyMEM2 N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZXS255b1hqNmVqZmRRZVh5 VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYYUhaMVBXVldLbnlvWGo2ZWpmZFFlWHlVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjUyMS8yMTY1ODgyMEM2N0UxMUU5QUYzQkE3NjVDNEY5QUUwMi9LWGFIWjFQV1ZX S255b1hqNmVqZmRRZVh5VWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPrlBsIRxTlWdh6waoPrIBJGS7mPazz5yG2c7tWEDB+FAnSA3LiXHH ZWnyfEhVtIHMvAEaSCyKhKK7YmktSeuDYsH+8bmGNUjmqKdb8QcOM9ep41LxRijn /FnG+X/tXNGUdWk6WUlVkQZDDBgiPjdX6rAUhT4xV4dT12iZ+Px08ysuzyRIWZlw 8Ft8KiIcvHGKirxR+ipb4AGXPpznwuw2euJEuItWZpnPzlN9QRcI/sAzr+28lbzn 5JYJh4D7mi6kI9eEz/CwM2Of/rtCcG5M81VKmEwwIU1094Pytr+BCpdaS6W/2pcq hV0R/Z7q16q9Y2rEYSQXNK9Jwtu/l71I -----END CERTIFICATE-----Generated at Thu Feb 19 18:18:02 2026 by rpki-client