$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: 49c9lBvG5eVnuz1yIVmbTccDoPgBWfzGcN03wIr0fYM= Subject key identifier: D0:4E:8E:6C:81:6A:7D:FB:2F:EE:A7:6E:A0:BB:F8:FA:D8:9A:D2:73 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B34 Signing time: Tue 12 May 2026 19:21:58 +0000 Manifest this update: Tue 12 May 2026 19:21:58 +0000 Manifest next update: Tue 19 May 2026 19:21:58 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: JXBNX04hWyH8Q4Y5lR/O4yAtu9atkctLFpXsVeW7JF8=) 2: B24920940C6911EC90B57338C4F9AE02.roa (hash: BvEViq3TGdShOf2o0F2oIYa6vXku4o1jpVtmMA8vaTc=) 3: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: DkdU/sit6KEl/7goo/JItkVs9gPbSPhLgwioVJX99NA=) 4: C782AE14615911F08635B771C4F9AE02.roa (hash: iIrPkGOoXCcJm65/+MxDjrfNVS2l3AnmlhfuWABZ58M=) 5: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: mmhJOgJGH0p/EXPKugGpKlEEotFbKYBiFQkdKPR9puI=) 6: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: EJ0yALTK4BtZ12yVPRxK0huZzO9WF6oYQ/1FbxvX6i0=) 7: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: 9qbDEBiGv1lnc3TjdDbg+Lx2PzDD+usm+fulwQxlDi0=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6lVrS2lVBl+43cRAAzRseItd8EUIMOBsxWu2J7hhTds=) 9: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: nflam170M8N5saRHiFErdBMQ++nspgUlYcwSqJKpTRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2925 (0xb6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: May 12 19:21:58 2026 GMT Not After : May 19 19:21:58 2026 GMT Subject: CN=6a037dd6-b6d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:00:b4:14:4c:44:bd:14:28:7e:34:23:cc:37: f3:cd:79:2f:68:4b:07:18:e2:de:1c:b3:98:2d:6a: 94:4e:16:3c:4a:03:49:21:fe:aa:3d:a6:ae:b3:02: f0:36:fd:ed:32:05:a5:f8:29:a5:bf:3f:24:12:d5: 36:b5:fe:91:6d:bc:96:b3:e2:5c:4c:aa:39:f7:9d: 2b:64:9d:d3:e4:c5:12:00:a2:4d:4b:67:44:e6:cd: 1b:25:dc:23:89:26:82:97:59:c7:9e:b3:dc:ba:16: 61:d0:34:ec:9d:73:62:92:cc:fb:5b:cb:5a:89:df: 7a:cc:f4:66:6e:da:5c:99:50:47:14:2b:bc:1c:17: ce:e0:5e:f9:aa:e8:51:f8:b5:2d:c4:77:cd:0d:7a: 29:20:32:63:04:e5:dc:d2:fb:1a:e0:12:f5:61:86: 2f:22:e2:e0:e7:1b:54:de:ac:45:9c:76:40:95:b0: 62:2d:39:2a:e4:6d:3e:dd:91:62:23:cb:26:1d:f3: 48:9d:f7:34:e7:4d:67:26:fd:47:47:4f:ef:7f:1a: 7a:1c:c1:f7:54:31:93:98:df:00:47:e7:8a:45:4d: 78:a6:36:09:7b:a4:68:f3:6f:74:ee:44:58:c3:a7: b2:bd:1a:1d:c8:22:64:7e:fc:96:93:f2:36:bd:38: cf:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4E:8E:6C:81:6A:7D:FB:2F:EE:A7:6E:A0:BB:F8:FA:D8:9A:D2:73 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:68:44:e0:a8:d2:78:f8:19:a7:9c:42:7a:4a:8d:07:67:25: 04:ea:ae:dc:65:22:2d:60:88:cb:48:7c:5f:cb:b6:61:f3:ef: 2e:3d:15:3e:70:13:61:bc:93:e8:09:3a:32:84:b4:a9:ab:b6: e7:10:87:82:fe:dc:3f:f7:55:06:91:ec:8b:20:1e:2a:dc:06: d5:e4:09:e5:6d:3c:aa:37:68:b8:67:48:bf:86:eb:4a:fc:42: 76:b8:87:f9:79:41:ea:91:4a:21:ac:06:8b:7d:92:9a:50:01: 82:62:1b:d7:58:29:8d:37:75:f3:f2:25:5e:a7:4f:30:7b:d5: e7:f3:e7:8c:e4:13:73:d2:fa:bb:13:12:1a:e8:8b:fd:c9:12: c6:3b:e6:74:b9:b2:b2:4e:df:55:d2:0d:5d:94:fb:61:e7:bd: 96:39:95:df:e7:9b:e3:9a:22:60:5f:4b:33:8f:e5:03:55:65: 22:3b:c0:47:ce:5e:31:09:77:fa:89:0f:3b:62:3d:36:e4:91: 7e:79:fb:2a:f5:19:ca:ea:2b:a8:7a:07:b6:3a:27:09:37:11: 69:c6:26:a1:90:54:15:77:36:67:97:ba:07:10:49:a0:cb:13: 4f:85:c4:78:77:0c:7f:ec:41:84:73:35:54:8b:d7:c7:31:b0: 7d:79:45:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwNTEyMTkyMTU4WhcNMjYwNTE5MTkyMTU4WjAYMRYwFAYD VQQDEw02YTAzN2RkNi1iNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwC0FExEvRQofjQjzDfzzXkvaEsHGOLeHLOYLWqUThY8SgNJIf6qPaauswLw Nv3tMgWl+Cmlvz8kEtU2tf6RbbyWs+JcTKo5950rZJ3T5MUSAKJNS2dE5s0bJdwj iSaCl1nHnrPcuhZh0DTsnXNiksz7W8taid96zPRmbtpcmVBHFCu8HBfO4F75quhR +LUtxHfNDXopIDJjBOXc0vsa4BL1YYYvIuLg5xtU3qxFnHZAlbBiLTkq5G0+3ZFi I8smHfNInfc0501nJv1HR0/vfxp6HMH3VDGTmN8AR+eKRU14pjYJe6Ro82907kRY w6eyvRodyCJkfvyWk/I2vTjP/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNBOjmyB an37L+6nbqC7+PrYmtJzMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd2hE4KjSePgZp5xCekqNB2clBOqu3GUiLWCIy0h8X8u2YfPvLj0VPnATYbyT 6Ak6MoS0qau25xCHgv7cP/dVBpHsiyAeKtwG1eQJ5W08qjdouGdIv4brSvxCdriH +XlB6pFKIawGi32SmlABgmIb11gpjTd18/IlXqdPMHvV5/PnjOQTc9L6uxMSGuiL /ckSxjvmdLmysk7fVdINXZT7Yee9ljmV3+eb45oiYF9LM4/lA1VlIjvAR85eMQl3 +okPO2I9NuSRfnn7KvUZyuorqHoHtjonCTcRacYmoZBUFXc2Z5e6BxBJoMsTT4XE eHcMf+xBhHM1VIvXxzGwfXlFxA== -----END CERTIFICATE-----Generated at Wed May 13 11:19:19 2026 by rpki-client