$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: bSEG0QbiFX3Qv+qOnconVwnr828rh06214ImJA5L53Q= Subject key identifier: 1F:2C:57:07:D5:A2:0A:25:1C:56:07:24:B5:06:2C:B5:1B:28:59:0A Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B40 Signing time: Thu 04 Jun 2026 19:19:17 +0000 Manifest this update: Thu 04 Jun 2026 19:19:17 +0000 Manifest next update: Thu 11 Jun 2026 19:19:17 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 4klN6v47t11gCXT9P5M7iYHW37xhy5WuP8rA6qzND/s=) 2: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: mmhJOgJGH0p/EXPKugGpKlEEotFbKYBiFQkdKPR9puI=) 3: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: nflam170M8N5saRHiFErdBMQ++nspgUlYcwSqJKpTRk=) 4: C782AE14615911F08635B771C4F9AE02.roa (hash: iIrPkGOoXCcJm65/+MxDjrfNVS2l3AnmlhfuWABZ58M=) 5: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: 6lVrS2lVBl+43cRAAzRseItd8EUIMOBsxWu2J7hhTds=) 6: B24920940C6911EC90B57338C4F9AE02.roa (hash: BvEViq3TGdShOf2o0F2oIYa6vXku4o1jpVtmMA8vaTc=) 7: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: EJ0yALTK4BtZ12yVPRxK0huZzO9WF6oYQ/1FbxvX6i0=) 8: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: 9qbDEBiGv1lnc3TjdDbg+Lx2PzDD+usm+fulwQxlDi0=) 9: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: DkdU/sit6KEl/7goo/JItkVs9gPbSPhLgwioVJX99NA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 19:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Jun 4 19:19:17 2026 GMT Not After : Jun 11 19:19:17 2026 GMT Subject: CN=6a21cfb5-36c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:97:04:a9:56:64:ef:fd:4b:03:76:05:54:24: 4a:f4:49:d7:77:40:a1:7f:f3:68:84:cb:03:8b:20: 3b:fe:72:c2:9f:6c:95:b9:7e:57:3c:30:24:77:8a: 81:b8:1e:fc:cf:c9:97:71:18:f4:b9:49:e5:ba:73: b7:73:cf:f9:d9:b4:ea:22:96:5d:1f:92:45:ab:1b: c2:fb:2d:15:6b:f0:17:3e:70:a4:1f:64:9f:86:ba: df:ea:43:88:9c:3f:a3:9c:8a:1b:38:a8:39:8e:29: c4:ed:36:7a:31:30:16:24:6b:49:3b:57:74:28:3b: e5:c7:92:a0:c0:94:eb:cb:9b:32:8b:53:01:10:02: 99:d6:19:ed:46:34:53:da:57:5b:de:e6:6b:b5:14: bb:dc:e5:8f:8b:0c:15:e2:7b:58:c7:b7:50:98:f1: 17:5e:cc:48:f3:1d:91:e1:51:f2:8b:e0:06:45:ee: 3a:a9:30:ee:ac:73:cd:00:fa:09:a6:f8:c6:26:09: 22:be:61:89:ae:23:75:0f:17:4c:d4:ab:94:8d:28: 4a:90:4c:f3:a8:21:22:c0:ef:1d:74:71:50:31:ca: 58:b2:e3:29:07:4f:03:6b:51:cd:72:e9:cc:5a:37: 4d:95:d9:6a:9a:af:c1:e9:fd:b7:ff:2b:55:f3:76: a4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:2C:57:07:D5:A2:0A:25:1C:56:07:24:B5:06:2C:B5:1B:28:59:0A X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:57:07:49:ca:e6:04:d3:3a:db:9a:99:1b:45:84:98:57:92: 01:a3:0c:e6:4c:1a:6e:28:8f:20:d1:7b:f7:dc:e1:1e:02:6d: b8:4a:75:4a:61:af:cd:2f:15:43:52:0d:0c:38:c5:2a:2c:df: ad:c1:28:de:6e:b5:1a:85:c6:cc:3a:d8:a8:f3:12:c9:4a:ed: 1f:87:3f:e5:ed:59:98:d6:cd:a6:e9:6f:fd:d4:3d:b0:8b:e3: ac:a7:9a:3e:b0:2e:6e:9e:c5:88:d3:01:e6:9b:bf:1c:34:76: 51:0a:e7:d7:33:17:8a:50:f2:89:77:80:77:e5:3b:b5:7e:d4: 69:f9:23:23:ef:30:bf:a6:88:25:26:f7:df:11:22:30:c1:b6: a4:1f:be:10:80:9e:c1:fd:b6:37:7a:94:fa:c9:1e:36:02:69: c1:9e:fc:37:61:8d:e7:3d:f4:2b:fc:5f:3a:47:df:e3:ca:04: b0:de:24:aa:8c:9c:74:de:38:83:0d:69:13:d2:c8:dd:66:b6: f7:e0:cd:0b:6b:ba:25:5e:12:d8:68:81:88:8d:4d:6b:17:fb: b4:6e:94:53:08:db:40:fd:17:f1:4d:8f:6f:80:d6:b7:aa:d5: 99:12:a9:71:f3:b5:94:75:04:00:b7:13:f2:bb:57:5a:e3:b3: c1:7c:28:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwNjA0MTkxOTE3WhcNMjYwNjExMTkxOTE3WjAYMRYwFAYD VQQDEw02YTIxY2ZiNS0zNmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlZcEqVZk7/1LA3YFVCRK9EnXd0Chf/NohMsDiyA7/nLCn2yVuX5XPDAkd4qB uB78z8mXcRj0uUnlunO3c8/52bTqIpZdH5JFqxvC+y0Va/AXPnCkH2Sfhrrf6kOI nD+jnIobOKg5jinE7TZ6MTAWJGtJO1d0KDvlx5KgwJTry5syi1MBEAKZ1hntRjRT 2ldb3uZrtRS73OWPiwwV4ntYx7dQmPEXXsxI8x2R4VHyi+AGRe46qTDurHPNAPoJ pvjGJgkivmGJriN1DxdM1KuUjShKkEzzqCEiwO8ddHFQMcpYsuMpB08Da1HNcunM WjdNldlqmq/B6f23/ytV83ak8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB8sVwfV ogolHFYHJLUGLLUbKFkKMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH1cHScrmBNM625qZG0WEmFeSAaMM5kwabiiPINF799zhHgJtuEp1SmGvzS8V Q1INDDjFKizfrcEo3m61GoXGzDrYqPMSyUrtH4c/5e1ZmNbNpulv/dQ9sIvjrKea PrAubp7FiNMB5pu/HDR2UQrn1zMXilDyiXeAd+U7tX7UafkjI+8wv6aIJSb33xEi MMG2pB++EICewf22N3qU+skeNgJpwZ78N2GN5z30K/xfOkff48oEsN4kqoycdN44 gw1pE9LI3Wa29+DNC2u6JV4S2GiBiI1Naxf7tG6UUwjbQP0X8U2Pb4DWt6rVmRKp cfO1lHUEALcT8rtXWuOzwXwoYA== -----END CERTIFICATE-----Generated at Sat Jun 6 15:01:06 2026 by rpki-client