$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: pQ1NdDq1Os2Cc/dnSa8igEF9yL/q6SmRQyG+zS3org4= Subject key identifier: 71:EF:2A:95:6E:0F:95:C2:3C:F8:F9:37:C9:14:50:E1:1C:AC:19:FE Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BFA Signing time: Wed 18 Feb 2026 18:28:26 +0000 Manifest this update: Wed 18 Feb 2026 18:28:26 +0000 Manifest next update: Wed 25 Feb 2026 18:28:26 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: lgEkrTafODRh+mZJuairxBQA/7CDr8vVmtiDJv8XoKE=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Feb 18 18:28:26 2026 GMT Not After : Feb 25 18:28:26 2026 GMT Subject: CN=699604ca-cb81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:fb:2f:41:92:5b:a1:f1:f9:94:87:33:45: 85:8a:d0:9a:42:82:f9:58:29:d5:f2:81:3f:f1:46: 48:08:45:07:56:6f:9c:5f:11:fa:7e:64:df:af:d8: b5:ae:90:91:e9:48:d3:31:2b:36:6a:a4:0e:b6:e0: a0:14:0f:72:63:72:1b:e4:07:76:b1:ba:62:ff:5e: 42:bb:5f:43:56:af:48:76:9e:36:83:fd:37:24:b8: 56:56:62:bc:8c:47:34:46:44:ab:33:02:23:97:c5: b8:6b:ca:65:92:27:ca:56:3c:a7:3e:d7:6d:55:e1: 80:56:30:5a:15:56:a2:be:00:9e:2e:e7:56:39:2b: 58:b3:44:3a:3e:ff:d8:af:35:21:59:1e:07:e1:43: 2a:dd:94:4e:fb:8e:11:ed:74:bf:23:a3:c0:11:15: ba:e8:fc:65:e5:bf:a8:02:a5:e6:1d:d9:92:62:e0: 22:62:37:f8:a0:0a:c1:fe:cc:ca:9c:24:bd:34:52: 97:32:78:b6:e1:10:ec:8f:e3:f0:f4:7b:0d:aa:e9: ed:38:80:8a:3b:50:96:1e:c8:01:84:8f:3e:4c:a0: 01:3c:a6:a3:2b:c0:8c:fa:7c:cb:bf:8e:9a:78:45: 19:67:8c:b3:69:52:4c:57:7f:cc:e1:b4:bf:00:3a: 92:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EF:2A:95:6E:0F:95:C2:3C:F8:F9:37:C9:14:50:E1:1C:AC:19:FE X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:1f:45:30:2b:0d:f3:9f:3b:7e:e5:5a:bd:fa:06:cb:3d:9a: 29:c2:38:34:72:1e:d5:0b:2a:bb:a8:5e:11:ef:64:b4:b3:80: 35:80:9d:4d:50:47:19:38:6f:16:4a:85:cf:fd:1a:04:67:0c: 92:ff:17:e7:65:e8:ef:0e:92:09:55:dc:5c:65:c7:de:ba:94: 0e:9b:43:c8:a1:50:2c:35:7e:e4:c7:f3:fc:1b:6a:9f:ae:e5: 84:ca:45:0a:c3:ce:c9:c4:fb:f7:18:6b:fb:6d:15:7f:dc:15: 25:b8:67:69:a1:0d:a5:55:f7:28:92:3e:e1:80:ea:b0:7b:22: af:8a:41:a7:05:e1:83:f8:5f:8e:97:c3:ed:d7:3b:50:19:88: ec:eb:97:b6:97:f9:02:e8:75:8b:a2:0c:9b:17:c4:9c:9d:91: 7a:48:ef:ac:60:88:db:1b:f6:c3:d8:5e:47:8a:c6:c4:93:56: 6a:44:13:8c:bb:df:b3:b0:66:aa:81:48:5e:55:0e:b3:43:ee: 86:1f:f6:82:a8:a9:b3:3c:33:02:18:62:bd:72:c8:e5:5a:57: 87:8a:fb:b5:c3:ee:fb:7e:8b:c7:a4:f4:54:d2:4f:3f:06:a2: d3:9f:53:c5:6f:ea:ab:98:65:a4:a1:fc:11:6e:06:94:1a:fb: b9:de:16:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjYwMjE4MTgyODI2WhcNMjYwMjI1MTgyODI2WjAYMRYwFAYD VQQDDA02OTk2MDRjYS1jYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Jv7L0GSW6Hx+ZSHM0WFitCaQoL5WCnV8oE/8UZICEUHVm+cXxH6fmTfr9i1 rpCR6UjTMSs2aqQOtuCgFA9yY3Ib5Ad2sbpi/15Cu19DVq9Idp42g/03JLhWVmK8 jEc0RkSrMwIjl8W4a8plkifKVjynPtdtVeGAVjBaFVaivgCeLudWOStYs0Q6Pv/Y rzUhWR4H4UMq3ZRO+44R7XS/I6PAERW66Pxl5b+oAqXmHdmSYuAiYjf4oArB/szK nCS9NFKXMni24RDsj+Pw9HsNquntOICKO1CWHsgBhI8+TKABPKajK8CM+nzLv46a eEUZZ4yzaVJMV3/M4bS/ADqSTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHvKpVu D5XCPPj5N8kUUOEcrBn+MB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1H0UwKw3znzt+5Vq9+gbLPZopwjg0ch7VCyq7qF4R72S0s4A1gJ1N UEcZOG8WSoXP/RoEZwyS/xfnZejvDpIJVdxcZcfeupQOm0PIoVAsNX7kx/P8G2qf ruWEykUKw87JxPv3GGv7bRV/3BUluGdpoQ2lVfcokj7hgOqweyKvikGnBeGD+F+O l8Pt1ztQGYjs65e2l/kC6HWLogybF8ScnZF6SO+sYIjbG/bD2F5HisbEk1ZqRBOM u9+zsGaqgUheVQ6zQ+6GH/aCqKmzPDMCGGK9csjlWleHivu1w+77fovHpPRU0k8/ BqLTn1PFb+qrmGWkofwRbgaUGvu53hYs -----END CERTIFICATE-----Generated at Thu Feb 19 21:27:53 2026 by rpki-client