$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: gjbFfyeNHGS6vM83cENwiHNJzydfziTnjvkRmg5bUWs= Subject key identifier: 6F:7A:3D:49:9B:38:66:F3:3F:C6:EF:79:BA:6B:63:B5:4F:0B:4B:F6 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B19 Signing time: Tue 24 Mar 2026 19:09:31 +0000 Manifest this update: Tue 24 Mar 2026 19:09:30 +0000 Manifest next update: Tue 31 Mar 2026 19:09:30 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 5QDfSARuXgEzQl7Td6wST8rCh5JFg6MvCcrRu9dCvBI=) 2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY=) 3: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: bLFKunzBxBlSN0G1S5flqUYYQ45l44FQFYrFF57mKjk=) 4: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: tmeOPnJkhVaYRJZ57w5iTiK0MG+9N87IhpYtgD8uDCU=) 5: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: MmkfuTiea4OXhwWHL5RZ2JeNN9FaFYJab76qYngRopA=) 6: C782AE14615911F08635B771C4F9AE02.roa (hash: dOTATPgFwoXXrO6+XdUeAHgywBcNivkuKnP4p0jaAms=) 7: B24920940C6911EC90B57338C4F9AE02.roa (hash: iLHHzKqdJv50SXw4wLaMPgxQ8GZnvIdKxGFIio7iiHk=) 8: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: /DK141KAp12AxJrdkAPhG9zVWJnuRnBfXGch9ZOAKfo=) 9: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: JO30ZxPLCtTUfA5AsJ77nTHHUt2AhsExZqYGMllHnMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2890 (0xb4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Mar 24 19:09:30 2026 GMT Not After : Mar 31 19:09:30 2026 GMT Subject: CN=69c2e16b-479e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:b4:2e:70:46:27:29:85:8a:be:c9:96:33: 30:bd:f0:05:31:37:f6:d7:26:ad:5f:11:e8:ce:d5: bc:94:bc:df:00:7a:56:9c:6d:fb:8d:04:bf:63:d0: 5c:e7:a8:1c:ce:7e:af:b0:e7:3f:d6:68:24:1c:17: 65:8e:80:06:e1:a0:6c:ba:cb:bd:17:12:29:68:9a: a7:b9:4e:c9:4a:dd:c0:06:60:2b:a3:e4:ab:f9:22: b6:c5:33:d7:dc:7e:92:31:ef:b1:db:32:cb:ec:f8: 03:1f:56:5a:50:58:56:15:2b:99:fd:e0:8e:ed:56: 6d:69:0b:38:f7:2a:f7:f2:e5:1d:ff:61:74:e4:cf: cb:34:2c:d3:e2:58:39:34:34:c0:e0:ce:0e:2e:ed: 4f:2d:34:c4:4a:ca:bf:1f:a6:75:49:c3:c3:bb:59: 62:63:8f:92:1d:20:b4:0c:3d:d3:35:85:4b:a2:35: 64:16:61:aa:33:d0:4b:6a:e7:82:c7:ac:2e:87:dd: de:ee:8d:db:c3:10:d3:0f:24:c3:15:87:a8:cd:1c: 35:57:b7:cb:f3:32:04:70:14:12:73:1d:08:8d:5b: c8:d4:1e:77:d7:4e:5c:3c:b6:ef:34:c7:70:23:0f: 7f:71:ea:c8:a8:ee:e1:83:dc:0d:a8:50:02:2a:65: 11:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:7A:3D:49:9B:38:66:F3:3F:C6:EF:79:BA:6B:63:B5:4F:0B:4B:F6 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:51:92:1d:9e:8d:1c:91:90:06:00:3e:72:ed:8e:b3:fc:00: c2:01:6a:6f:5c:17:40:72:cc:ac:ae:72:2c:de:82:a8:97:9c: 7d:d0:2e:4e:87:0c:50:27:f6:19:99:65:ae:64:07:aa:9b:12: 78:21:db:e9:f1:43:af:60:95:bb:57:a2:11:db:67:d5:73:e9: a5:91:b7:8a:0d:61:af:6f:e1:c8:01:58:23:b2:7a:27:7b:32: c9:1b:46:f2:46:4f:43:08:93:f4:1a:cc:95:9a:fc:a6:04:b0: c1:dc:75:80:7e:04:a6:59:27:94:11:0a:26:14:ec:3f:d4:e4: b4:06:6e:d4:43:61:77:0d:37:e1:1c:d6:ec:09:61:0f:fc:19: d2:a9:93:47:d0:c3:7b:25:b5:60:21:de:b9:6f:b8:b2:24:09: 3a:e1:e0:0d:d8:ec:d1:13:67:b5:78:90:9b:18:3b:45:da:26: 9c:67:5a:6d:25:6e:6f:8f:e4:02:54:cb:3a:18:3b:69:fd:f1: a5:29:6f:23:a6:c0:41:65:61:9e:f7:2b:b6:3b:ab:46:1c:15: 37:a2:bb:57:7f:e5:ca:6f:5c:51:13:35:12:12:8b:f4:a5:27: 29:7d:4e:d5:12:bf:e4:4c:a0:16:c2:90:7c:25:2b:40:95:11: 6e:28:2b:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwMzI0MTkwOTMwWhcNMjYwMzMxMTkwOTMwWjAYMRYwFAYD VQQDEw02OWMyZTE2Yi00NzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPW0LnBGJymFir7JljMwvfAFMTf21yatXxHoztW8lLzfAHpWnG37jQS/Y9Bc 56gczn6vsOc/1mgkHBdljoAG4aBsusu9FxIpaJqnuU7JSt3ABmAro+Sr+SK2xTPX 3H6SMe+x2zLL7PgDH1ZaUFhWFSuZ/eCO7VZtaQs49yr38uUd/2F05M/LNCzT4lg5 NDTA4M4OLu1PLTTESsq/H6Z1ScPDu1liY4+SHSC0DD3TNYVLojVkFmGqM9BLaueC x6wuh93e7o3bwxDTDyTDFYeozRw1V7fL8zIEcBQScx0IjVvI1B53105cPLbvNMdw Iw9/cerIqO7hg9wNqFACKmURMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG96PUmb OGbzP8bvebprY7VPC0v2MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXlGSHZ6NHJGQBgA+cu2Os/wAwgFqb1wXQHLMrK5yLN6CqJecfdAuTocMUCf2 GZllrmQHqpsSeCHb6fFDr2CVu1eiEdtn1XPppZG3ig1hr2/hyAFYI7J6J3syyRtG 8kZPQwiT9BrMlZr8pgSwwdx1gH4EplknlBEKJhTsP9TktAZu1ENhdw034RzW7Alh D/wZ0qmTR9DDeyW1YCHeuW+4siQJOuHgDdjs0RNntXiQmxg7RdomnGdabSVub4/k AlTLOhg7af3xpSlvI6bAQWVhnvcrtjurRhwVN6K7V3/lym9cURM1EhKL9KUnKX1O 1RK/5EygFsKQfCUrQJURbigrAA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:24 2026 by rpki-client