Manifest

$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
File:                     lFlKrsbtZqaAoVv-tc2leC1MLYg.mft (raw, json)
Hash identifier:          Ursuv19fdzHpmla/zpr+OF+atAlnOfkiBP/48+7lDnU=
Subject key identifier:   EC:80:AD:53:31:AF:D0:E6:4B:A2:34:FA:CB:A7:48:F6:8D:3D:7A:72
Authority key identifier: 94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88
Certificate issuer:       /CN=A91E2EF9/serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88
Certificate serial:       0128
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
Manifest number:          0120
Signing time:             Thu 19 Feb 2026 04:13:53 +0000
Manifest this update:     Thu 19 Feb 2026 04:13:53 +0000
Manifest next update:     Thu 26 Feb 2026 04:13:53 +0000
Files and hashes:         1: lFlKrsbtZqaAoVv-tc2leC1MLYg.crl (hash: QI/NKC7Ctucb/ivkEoiyKP1kxYkKy7qTxZ15rGEiInY=)
                          2: E7C7DBF8A0E411EF98A7340EC4F9AE02.roa (hash: 79VsC0tk/1wLHjzWqa6w+oI01WTgsbwStpO14mHmHe8=)
                          3: 5D3D752CDBEB11F0A1AC385A536F56BC.roa (hash: xPdwABGTjJ2GEqaqXmGquO4VtiMPpmIGc2xrOME/BtE=)
                          4: D926DBDA605211EF90C2C621C4F9AE02.roa (hash: ka/hb/wEqxzG+7uBZxa/tAl50+HbZgfedrhKNFCSJiY=)
Validation:               OK
Signature path:           rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl
                          rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 26 Feb 2026 04:13:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 296 (0x128)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91E2EF9, serialNumber=94594AAEC6ED66A680A15BFEB5CDA5782D4C2D88
        Validity
            Not Before: Feb 19 04:13:53 2026 GMT
            Not After : Feb 26 04:13:53 2026 GMT
        Subject: CN=69968e01-724c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:ef:30:0f:ad:fd:94:42:f9:5b:0b:4b:96:26:
                    82:21:28:d0:6a:f5:47:45:7c:9c:f6:1c:5d:39:12:
                    e8:4c:4d:96:2a:74:0a:1d:c6:2c:d0:27:5c:f2:0d:
                    ac:54:7a:33:12:96:a9:a5:24:b0:1c:2b:4a:cf:91:
                    3e:0c:26:ce:9f:1b:0a:d1:14:7b:3b:8e:a6:c0:38:
                    1b:26:aa:f3:5b:50:40:9c:16:a2:01:fa:0c:ef:96:
                    da:77:1a:c6:fa:60:05:7e:df:d4:8b:71:1c:f1:cd:
                    8d:0a:c1:fe:5d:ce:82:c1:22:36:06:9a:c0:d3:5e:
                    37:da:fc:7e:82:84:69:0c:cc:4d:fd:7e:86:3e:6d:
                    dc:e4:c9:92:93:44:3a:0b:43:aa:a8:75:7c:62:97:
                    f3:05:9f:54:56:0a:a8:d0:37:c4:8f:a4:31:ee:6a:
                    d1:67:ba:fb:d9:f5:38:ee:2a:7c:05:56:a3:60:fb:
                    c2:00:bc:e1:01:1c:1c:8d:a1:bd:44:60:36:96:98:
                    ea:4b:11:ea:05:33:cd:16:69:75:fb:1c:26:24:6c:
                    5e:9d:bf:6e:3c:3e:e3:f0:98:c3:53:03:54:3f:97:
                    c6:37:90:ce:fd:45:6e:2d:2c:37:3f:49:63:28:4c:
                    52:bc:8e:b3:7a:e7:04:31:98:0a:43:9b:ca:44:b4:
                    0b:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:80:AD:53:31:AF:D0:E6:4B:A2:34:FA:CB:A7:48:F6:8D:3D:7A:72
            X509v3 Authority Key Identifier:
                keyid:94:59:4A:AE:C6:ED:66:A6:80:A1:5B:FE:B5:CD:A5:78:2D:4C:2D:88

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFlKrsbtZqaAoVv-tc2leC1MLYg.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EF9/804D6BF0605211EFB286FD20C4F9AE02/lFlKrsbtZqaAoVv-tc2leC1MLYg.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:6e:59:d0:22:dd:e1:fb:34:1d:74:e0:5c:b2:e3:8a:d5:3d:
         42:bf:a9:58:06:bb:91:ea:df:3a:e2:f5:e8:97:e0:e3:18:4d:
         c3:49:39:ce:15:4c:90:8e:82:76:d1:95:76:67:c6:a6:83:a7:
         bf:bc:8c:1a:45:09:16:b2:c1:b5:41:75:0e:94:ab:fe:05:65:
         7f:8d:db:74:bc:0f:cf:44:79:a2:8a:8e:b0:45:0b:74:88:53:
         77:62:f8:49:f2:9d:d0:1c:5d:e9:d8:68:1f:8d:b0:24:36:0a:
         f6:9b:fa:39:c8:0a:df:f4:53:26:61:78:e5:f0:7a:d0:25:c8:
         20:ec:94:dd:06:22:7f:5e:c1:9c:b7:e0:5d:00:28:4a:99:14:
         8b:79:94:32:db:d5:64:e1:f4:3f:7d:d8:3e:59:1e:0a:ac:e8:
         ca:d1:77:3c:c7:c4:94:b5:75:26:3e:53:de:e3:ff:85:18:0e:
         fc:ba:53:c1:c1:b6:a3:8c:66:e1:af:98:62:1a:22:61:d6:cf:
         1c:3e:c9:24:bf:50:b1:ee:05:9e:1c:e2:f8:98:86:ff:73:d2:
         4b:96:9f:a4:40:c3:24:34:f2:c4:4e:20:8a:3b:ae:8d:18:cc:
         4d:fd:8a:bd:54:5e:5b:e8:f7:db:a3:61:cd:6e:00:ce:3a:6b:
         03:a6:c0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 19 18:16:49 2026 by rpki-client