$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: 0H7s/2eJEU4gS94hFAbCr0aHjMOZWWvtmw7aG0bKKEQ= Subject key identifier: CE:32:62:E2:AC:A7:7A:07:24:EE:9D:E4:4C:C8:52:64:81:3A:76:FF Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B10 Signing time: Fri 06 Mar 2026 19:06:58 +0000 Manifest this update: Fri 06 Mar 2026 19:06:57 +0000 Manifest next update: Fri 13 Mar 2026 19:06:57 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 3MLt0N2usjHO056wWLMmDvNWb56CkOPY3lPn6Nq5a98=) 2: B24920940C6911EC90B57338C4F9AE02.roa (hash: iLHHzKqdJv50SXw4wLaMPgxQ8GZnvIdKxGFIio7iiHk=) 3: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: MmkfuTiea4OXhwWHL5RZ2JeNN9FaFYJab76qYngRopA=) 4: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: JO30ZxPLCtTUfA5AsJ77nTHHUt2AhsExZqYGMllHnMo=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: dOTATPgFwoXXrO6+XdUeAHgywBcNivkuKnP4p0jaAms=) 6: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: /DK141KAp12AxJrdkAPhG9zVWJnuRnBfXGch9ZOAKfo=) 7: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: bLFKunzBxBlSN0G1S5flqUYYQ45l44FQFYrFF57mKjk=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: tmeOPnJkhVaYRJZ57w5iTiK0MG+9N87IhpYtgD8uDCU=) 9: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 19:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Mar 6 19:06:57 2026 GMT Not After : Mar 13 19:06:57 2026 GMT Subject: CN=69ab25d2-ccdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:7c:73:80:93:c0:36:97:87:98:41:dc:ff: d9:a0:17:49:a5:06:8d:45:98:7e:32:c6:e5:5e:88: 36:32:63:a2:ee:ef:71:f3:d1:79:9d:b3:fd:d7:d4: e2:f1:5e:47:48:3e:41:71:c6:81:cf:75:dd:46:d4: 30:44:57:1e:70:b4:fe:02:d7:00:42:17:20:05:c0: 05:c7:63:01:52:f7:8c:84:f1:a6:be:f1:25:33:a4: 5d:65:ae:42:ad:08:76:42:41:13:ac:03:65:2c:cc: 6b:8e:f0:77:a5:89:c6:04:7e:65:62:40:8f:d0:83: 57:b5:2f:17:5f:22:f9:f3:83:f1:49:14:20:bf:03: d5:9d:36:28:da:01:f1:24:c8:67:f1:75:b7:bf:4c: 5b:8f:6e:db:32:c3:98:c4:4f:06:3d:5f:cc:58:35: 52:14:90:87:83:4e:d9:d1:28:c7:28:89:df:52:f0: 0f:03:54:ec:9e:5c:5c:f1:fd:75:c7:8f:4e:64:63: 43:bb:40:c0:b4:dd:ae:81:e2:74:9d:e6:22:8d:6c: 5c:19:1e:6c:d3:74:5e:af:fe:57:0c:28:55:2b:15: af:67:37:cc:86:64:47:db:a9:cd:2b:4f:62:29:48: 17:0f:0a:eb:72:34:dd:7a:f1:51:be:69:b0:13:6e: fc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:32:62:E2:AC:A7:7A:07:24:EE:9D:E4:4C:C8:52:64:81:3A:76:FF X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:98:1d:4b:6f:8f:3c:4a:c1:54:26:38:db:de:c7:82:ba:17: 70:80:d9:84:18:8f:58:10:29:ec:03:8a:2a:35:c0:c7:b3:aa: f5:2a:8f:d4:dc:d4:87:fd:9f:89:fb:43:bc:67:fa:28:01:ad: 34:16:5d:9e:d1:09:75:82:b7:51:11:b2:01:57:c0:cd:b6:83: 9f:a4:70:98:d8:1e:6e:1e:d6:aa:37:ea:ea:70:7a:5d:71:28: 27:bd:b8:4f:a3:f7:27:9f:e7:b2:eb:87:a7:64:97:e2:84:a6: 2c:a0:be:a8:1d:67:70:c9:ea:8a:b7:0f:8c:23:9b:0c:53:73: 87:e6:c4:c3:7c:31:81:d0:b6:e9:84:a9:52:bb:fe:c9:a5:4d: 19:98:cb:69:37:50:26:77:b2:5f:9c:93:b4:f1:ad:64:b8:7e: 30:38:28:be:ed:4d:14:15:44:a3:68:5c:a5:6e:03:36:28:28: a0:96:ba:12:d3:92:76:51:bd:c0:2b:e7:d0:5c:21:08:0e:5e: ee:8b:ef:03:6c:90:be:27:ba:74:d6:e2:27:34:96:d5:67:30: 49:95:ed:e8:b2:98:30:20:a3:7f:ae:b5:1c:8b:f0:14:90:65: 2d:7d:c5:3d:2f:77:89:8d:83:54:37:12:bf:0b:17:a1:66:4f: 86:97:ae:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwMzA2MTkwNjU3WhcNMjYwMzEzMTkwNjU3WjAYMRYwFAYD VQQDEw02OWFiMjVkMi1jY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWR8c4CTwDaXh5hB3P/ZoBdJpQaNRZh+MsblXog2MmOi7u9x89F5nbP919Ti 8V5HSD5BccaBz3XdRtQwRFcecLT+AtcAQhcgBcAFx2MBUveMhPGmvvElM6RdZa5C rQh2QkETrANlLMxrjvB3pYnGBH5lYkCP0INXtS8XXyL584PxSRQgvwPVnTYo2gHx JMhn8XW3v0xbj27bMsOYxE8GPV/MWDVSFJCHg07Z0SjHKInfUvAPA1Tsnlxc8f11 x49OZGNDu0DAtN2ugeJ0neYijWxcGR5s03Rer/5XDChVKxWvZzfMhmRH26nNK09i KUgXDwrrcjTdevFRvmmwE278wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM4yYuKs p3oHJO6d5EzIUmSBOnb/MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAZgdS2+PPErBVCY4297HgroXcIDZhBiPWBAp7AOKKjXAx7Oq9SqP1NzUh/2f iftDvGf6KAGtNBZdntEJdYK3URGyAVfAzbaDn6RwmNgebh7Wqjfq6nB6XXEoJ724 T6P3J5/nsuuHp2SX4oSmLKC+qB1ncMnqircPjCObDFNzh+bEw3wxgdC26YSpUrv+ yaVNGZjLaTdQJneyX5yTtPGtZLh+MDgovu1NFBVEo2hcpW4DNigooJa6EtOSdlG9 wCvn0FwhCA5e7ovvA2yQvie6dNbiJzSW1WcwSZXt6LKYMCCjf661HIvwFJBlLX3F PS93iY2DVDcSvwsXoWZPhpeuaQ== -----END CERTIFICATE-----Generated at Sat Mar 7 17:50:32 2026 by rpki-client