
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
File: lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json)
Hash identifier: Ursuv19fdzHpmla/zpr+OF+atAlnOfkiBP/48+7lDnU=
Subject key identifier: EC:80:AD:53:31:AF:D0:E6:4B:A2:34:FA:CB:A7:48:F6:8D:3D:7A:72
Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88
Certificate issuer: /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88
Certificate serial: 0128
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
Manifest number: 0120
Signing time: Thu 19 Feb 2026 04:13:53 +0000
Manifest this update: Thu 19 Feb 2026 04:13:53 +0000
Manifest next update: Thu 26 Feb 2026 04:13:53 +0000
Files and hashes: 1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: QI/NKC7Ctucb/ivkEoiyKP1kxYkKy7qTxZ15rGEiInY=)
2: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 79VsC0tk/1wLHjzWqa6w+oI01WTgsbwStpO14mHmHe8=)
3: 5D3D752CDBEB11F0A1AC385A536F56BC.roa (hash: xPdwABGTjJ2GEqaqXmGquO4VtiMPpmIGc2xrOME/BtE=)
4: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: ka/hb/wEqxzG+7uBZxa/tAl50+HbZgfedrhKNFCSJiY=)
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl
rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Feb 2026 04:13:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 296 (0x128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88
Validity
Not Before: Feb 19 04:13:53 2026 GMT
Not After : Feb 26 04:13:53 2026 GMT
Subject: CN=69968e01-724c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:30:0f:ad:fd:94:42:f9:5b:0b:4b:96:26:
82:21:28:d0:6a:f5:47:45:7c:9c:f6:1c:5d:39:12:
e8:4c:4d:96:2a:74:0a:1d:c6:2c:d0:27:5c:f2:0d:
ac:54:7a:33:12:96:a9:a5:24:b0:1c:2b:4a:cf:91:
3e:0c:26:ce:9f:1b:0a:d1:14:7b:3b:8e:a6:c0:38:
1b:26:aa:f3:5b:50:40:9c:16:a2:01:fa:0c:ef:96:
da:77:1a:c6:fa:60:05:7e:df:d4:8b:71:1c:f1:cd:
8d:0a:c1:fe:5d:ce:82:c1:22:36:06:9a:c0:d3:5e:
37:da:fc:7e:82:84:69:0c:cc:4d:fd:7e:86:3e:6d:
dc:e4:c9:92:93:44:3a:0b:43:aa:a8:75:7c:62:97:
f3:05:9f:54:56:0a:a8:d0:37:c4:8f:a4:31:ee:6a:
d1:67:ba:fb:d9:f5:38:ee:2a:7c:05:56:a3:60:fb:
c2:00:bc:e1:01:1c:1c:8d:a1:bd:44:60:36:96:98:
ea:4b:11:ea:05:33:cd:16:69:75:fb:1c:26:24:6c:
5e:9d:bf:6e:3c:3e:e3:f0:98:c3:53:03:54:3f:97:
c6:37:90:ce:fd:45:6e:2d:2c:37:3f:49:63:28:4c:
52:bc:8e:b3:7a:e7:04:31:98:0a:43:9b:ca:44:b4:
0b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:80:AD:53:31:AF:D0:E6:4B:A2:34:FA:CB:A7:48:F6:8D:3D:7A:72
X509v3 Authority Key Identifier:
keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
60:6e:59:d0:22:dd:e1:fb:34:1d:74:e0:5c:b2:e3:8a:d5:3d:
42:bf:a9:58:06:bb:91:ea:df:3a:e2:f5:e8:97:e0:e3:18:4d:
c3:49:39:ce:15:4c:90:8e:82:76:d1:95:76:67:c6:a6:83:a7:
bf:bc:8c:1a:45:09:16:b2:c1:b5:41:75:0e:94:ab:fe:05:65:
7f:8d:db:74:bc:0f:cf:44:79:a2:8a:8e:b0:45:0b:74:88:53:
77:62:f8:49:f2:9d:d0:1c:5d:e9:d8:68:1f:8d:b0:24:36:0a:
f6:9b:fa:39:c8:0a:df:f4:53:26:61:78:e5:f0:7a:d0:25:c8:
20:ec:94:dd:06:22:7f:5e:c1:9c:b7:e0:5d:00:28:4a:99:14:
8b:79:94:32:db:d5:64:e1:f4:3f:7d:d8:3e:59:1e:0a:ac:e8:
ca:d1:77:3c:c7:c4:94:b5:75:26:3e:53:de:e3:ff:85:18:0e:
fc:ba:53:c1:c1:b6:a3:8c:66:e1:af:98:62:1a:22:61:d6:cf:
1c:3e:c9:24:bf:50:b1:ee:05:9e:1c:e2:f8:98:86:ff:73:d2:
4b:96:9f:a4:40:c3:24:34:f2:c4:4e:20:8a:3b:ae:8d:18:cc:
4d:fd:8a:bd:54:5e:5b:e8:f7:db:a3:61:cd:6e:00:ce:3a:6b:
03:a6:c0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 18:16:49 2026 by rpki-client