Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
File:                     tU4IRltUXO7x4uEAl3XZG6QStj0.mft (raw, json)
Hash identifier:          +RV/Rl+IstuoUknB3IRy1won0XnOITLCplvJ76c8yfI=
Subject key identifier:   D9:72:AA:95:38:8E:0C:FB:10:07:CB:81:5C:7D:42:D2:A5:35:2E:BA
Authority key identifier: B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D
Certificate issuer:       /CN=A9172B46/serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D
Certificate serial:       4A
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
Manifest number:          46
Signing time:             Thu 19 Feb 2026 06:39:36 +0000
Manifest this update:     Thu 19 Feb 2026 06:39:36 +0000
Manifest next update:     Thu 26 Feb 2026 06:39:36 +0000
Files and hashes:         1: tU4IRltUXO7x4uEAl3XZG6QStj0.crl (hash: DO2XzO+7N8lC+HpSZPIXMjqXoAHK+MazSY3xIDgMvVA=)
                          2: 5493E832AF1511F09DB9CB78C4F9AE02.roa (hash: TkA4esTL9Exwr+47F2RMHuvhHZl+fNcFsQRPqVn17vg=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl
                          rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 26 Feb 2026 06:39:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 74 (0x4a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9172B46, serialNumber=B54E08465B545CEEF1E2E1009775D91BA412B63D
        Validity
            Not Before: Feb 19 06:39:36 2026 GMT
            Not After : Feb 26 06:39:36 2026 GMT
        Subject: CN=6996b028-3aa6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:a9:0e:ec:19:86:81:19:00:e0:fb:3c:0f:3f:
                    23:27:87:d3:f0:a7:68:62:d9:8f:31:8d:33:c2:1f:
                    98:db:96:08:70:73:7c:51:6c:a0:d2:89:2e:98:80:
                    ca:2e:ae:3b:f5:b1:8e:5a:39:0b:2a:1f:83:94:ad:
                    b3:79:13:5e:3a:fe:00:5e:e2:c9:a1:5d:bf:a1:55:
                    fa:00:75:cf:0a:b8:a0:90:68:f4:36:e9:a6:e4:4b:
                    fe:07:10:24:60:5b:bf:bc:20:9b:7e:0d:df:27:46:
                    a6:3c:90:be:23:39:82:05:ec:7e:86:2c:be:fe:3e:
                    45:8f:16:e0:ec:9a:16:07:5c:2c:75:83:5f:1d:50:
                    8e:a6:21:c1:70:c3:38:ad:39:05:89:81:8f:83:9a:
                    f5:4b:11:ba:23:ff:18:7d:5b:55:65:3d:40:68:b2:
                    7d:47:7f:15:96:9c:7d:dc:93:ac:b1:2b:53:ef:eb:
                    f6:ea:6b:53:e2:6e:ae:1f:f7:c0:95:93:30:06:c3:
                    48:a6:9e:98:08:13:f7:2f:82:e8:b9:4b:41:e6:84:
                    e0:c7:5e:6c:3d:84:e0:a9:5f:e9:62:cb:7d:e4:bd:
                    41:f9:4b:ff:80:35:23:32:89:cd:ec:66:70:81:38:
                    51:2e:70:00:c4:6c:f6:b4:fd:c8:44:d4:6a:e2:b9:
                    0b:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:72:AA:95:38:8E:0C:FB:10:07:CB:81:5C:7D:42:D2:A5:35:2E:BA
            X509v3 Authority Key Identifier:
                keyid:B5:4E:08:46:5B:54:5C:EE:F1:E2:E1:00:97:75:D9:1B:A4:12:B6:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tU4IRltUXO7x4uEAl3XZG6QStj0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B46/088701B8ABB411F0ABF20940C4F9AE02/tU4IRltUXO7x4uEAl3XZG6QStj0.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:ff:e3:6f:ea:e4:82:79:f5:2f:57:e8:e9:d8:e0:93:75:f2:
         20:91:4a:bf:8f:eb:b7:52:0e:21:35:52:e2:90:70:d3:d2:6a:
         a4:16:ca:e8:99:b4:b1:c6:bd:a9:f4:b0:2b:28:51:dc:0f:ce:
         85:2e:a6:f1:0e:92:41:d6:dd:35:31:27:07:95:e5:ba:62:ea:
         27:66:88:03:a9:e5:06:83:20:c9:b3:c8:0e:59:5c:d0:81:c8:
         a6:80:73:3e:98:9f:45:04:15:94:ac:46:7d:92:d0:af:2d:90:
         52:63:cd:9a:b2:bb:13:3b:1e:e9:69:ea:a4:b5:dd:25:64:cd:
         0b:5f:8f:b2:d4:3f:6b:ca:6f:72:a1:ea:e2:ed:c3:40:f7:fa:
         b4:a7:6e:fc:fc:8c:e1:c4:59:d3:bb:93:8a:fc:2f:8b:b3:79:
         60:ae:de:70:cd:9b:66:0c:23:3e:f7:02:6f:10:a8:e2:dc:74:
         17:59:0d:1e:60:a7:d6:1c:d9:24:78:70:06:3d:0c:87:7f:dc:
         1f:4c:bc:b8:4b:df:85:31:61:fb:50:72:41:1b:37:11:c0:8c:
         89:ff:ca:e6:4b:05:69:aa:07:f4:70:9a:c1:1a:81:15:b0:da:
         f3:34:67:29:5b:07:bb:22:43:27:64:cb:e5:f4:9a:35:3a:62:
         49:9d:85:c5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3
MkI0NjExMC8GA1UEBRMoQjU0RTA4NDY1QjU0NUNFRUYxRTJFMTAwOTc3NUQ5MUJB
NDEyQjYzRDAeFw0yNjAyMTkwNjM5MzZaFw0yNjAyMjYwNjM5MzZaMBgxFjAUBgNV
BAMMDTY5OTZiMDI4LTNhYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDCqQ7sGYaBGQDg+zwPPyMnh9Pwp2hi2Y8xjTPCH5jblghwc3xRbKDSiS6YgMou
rjv1sY5aOQsqH4OUrbN5E146/gBe4smhXb+hVfoAdc8KuKCQaPQ26abkS/4HECRg
W7+8IJt+Dd8nRqY8kL4jOYIF7H6GLL7+PkWPFuDsmhYHXCx1g18dUI6mIcFwwzit
OQWJgY+DmvVLEboj/xh9W1VlPUBosn1HfxWWnH3ck6yxK1Pv6/bqa1Pibq4f98CV
kzAGw0imnpgIE/cvgui5S0HmhODHXmw9hOCpX+liy33kvUH5S/+ANSMyic3sZnCB
OFEucADEbPa0/chE1GriuQuxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2XKqlTiO
DPsQB8uBXH1C0qU1LrowHwYDVR0jBBgwFoAUtU4IRltUXO7x4uEAl3XZG6QStj0w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQjQ2LzA4ODcwMUI4QUJC
NDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83eDR1RUFsM1haRzZRU3Rq
MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvdFU0SVJsdFVYTzd4NHVFQWwzWFpHNlFTdGowLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL
hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy
QjQ2LzA4ODcwMUI4QUJCNDExRjBBQkYyMDk0MEM0RjlBRTAyL3RVNElSbHRVWE83
eDR1RUFsM1haRzZRU3RqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h
cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA
MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL
BQADggEBADP/42/q5IJ59S9X6OnY4JN18iCRSr+P67dSDiE1UuKQcNPSaqQWyuiZ
tLHGvan0sCsoUdwPzoUupvEOkkHW3TUxJweV5bpi6idmiAOp5QaDIMmzyA5ZXNCB
yKaAcz6Yn0UEFZSsRn2S0K8tkFJjzZqyuxM7Hulp6qS13SVkzQtfj7LUP2vKb3Kh
6uLtw0D3+rSnbvz8jOHEWdO7k4r8L4uzeWCu3nDNm2YMIz73Am8QqOLcdBdZDR5g
p9Yc2SR4cAY9DId/3B9MvLhL34UxYftQckEbNxHAjIn/yuZLBWmqB/RwmsEagRWw
2vM0ZylbB7siQydky+X0mjU6YkmdhcU=
-----END CERTIFICATE-----
Generated at Thu Feb 19 18:16:10 2026 by rpki-client