$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: aEvvs/y6GJjQJ0NGzwa2rxP3O28/dU+AlVnLph1Y5PA= Subject key identifier: D2:67:7F:2B:BB:94:F1:57:CE:74:D9:7A:07:9B:17:21:7A:AF:3C:7F Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B27 Signing time: Mon 20 Apr 2026 19:15:47 +0000 Manifest this update: Mon 20 Apr 2026 19:15:47 +0000 Manifest next update: Mon 27 Apr 2026 19:15:47 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: HvI2zc9lAy/ydLSlbSQsUPPRtINgTHdYudhh+eFIwR4=) 2: B24920940C6911EC90B57338C4F9AE02.roa (hash: iLHHzKqdJv50SXw4wLaMPgxQ8GZnvIdKxGFIio7iiHk=) 3: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: bLFKunzBxBlSN0G1S5flqUYYQ45l44FQFYrFF57mKjk=) 4: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: tmeOPnJkhVaYRJZ57w5iTiK0MG+9N87IhpYtgD8uDCU=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: dOTATPgFwoXXrO6+XdUeAHgywBcNivkuKnP4p0jaAms=) 6: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY=) 7: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: /DK141KAp12AxJrdkAPhG9zVWJnuRnBfXGch9ZOAKfo=) 8: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: MmkfuTiea4OXhwWHL5RZ2JeNN9FaFYJab76qYngRopA=) 9: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: JO30ZxPLCtTUfA5AsJ77nTHHUt2AhsExZqYGMllHnMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 19:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 20 19:15:47 2026 GMT Not After : Apr 27 19:15:47 2026 GMT Subject: CN=69e67b63-ca66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b1:66:5f:93:e6:5d:f5:36:39:34:e3:81:b5: eb:3e:7d:87:e0:c4:68:62:bd:31:b4:74:90:eb:c8: a1:41:e8:fd:cb:f7:48:e9:bd:e8:96:02:9c:9e:a7: a5:42:6b:9c:9e:41:f8:44:1e:af:ed:79:a6:64:5f: c7:72:87:8b:14:fb:95:b9:9b:75:70:73:86:59:90: 88:8a:ee:0d:23:3e:02:97:08:df:18:1a:a4:8f:59: 4f:6c:06:6b:e6:72:53:61:b9:32:b9:1c:76:1b:97: 7a:e1:55:29:6a:7a:41:46:4e:af:6b:51:80:b4:bd: eb:86:ad:df:8f:e9:e4:a8:b5:5d:f3:e2:eb:10:03: 37:4b:22:f1:04:25:0e:fd:81:d6:ff:85:93:04:e4: 55:c5:24:0f:51:ce:55:64:41:2f:71:e8:9e:53:fb: 39:1a:a4:b9:0d:12:03:ff:d2:90:69:68:1f:b9:c9: 65:d6:69:4b:3a:19:2b:1c:4f:5d:8a:a0:b6:50:6f: 48:ac:73:f6:51:61:44:a1:58:2a:b0:0e:47:3c:c2: 2a:7c:ac:69:29:60:b7:d4:25:f7:c3:24:67:10:ec: 51:16:8d:96:08:bb:58:4a:bc:21:73:c5:ce:ec:9e: cf:cc:c4:3d:2f:b5:c7:cc:a4:d8:57:06:ff:3b:0f: 34:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:67:7F:2B:BB:94:F1:57:CE:74:D9:7A:07:9B:17:21:7A:AF:3C:7F X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:8e:a9:63:ae:fb:9e:7f:bf:de:eb:bd:1b:eb:70:43:99:cb: a9:2f:ff:29:ff:26:cc:c6:6d:e7:46:89:25:c2:35:4c:0b:00: 68:21:9e:e8:1d:5e:4b:b2:0c:f0:51:57:25:0b:19:0d:54:d7: 4b:d8:c5:83:fc:28:16:48:e3:40:5c:bb:97:8c:85:fb:08:c3: 00:d5:f1:13:42:78:6d:ff:7e:3d:97:d3:55:65:1f:60:cc:b7: d8:7d:cc:1f:c1:e0:89:fa:4d:77:89:47:45:1f:1c:c4:81:61: 25:e5:be:7f:af:67:45:6c:84:94:94:e7:01:c3:a7:01:8f:ad: 59:1e:4a:fe:83:d8:be:4b:04:80:58:3c:15:31:9d:cc:21:98: ae:f0:58:5d:b2:6a:7e:05:9a:f5:ea:f1:c7:c5:11:ab:04:6e: 9f:25:9d:e4:4e:7d:49:4c:37:bc:b0:6b:b9:8f:a5:02:82:8f: c0:09:30:0a:ed:e8:4d:2d:59:47:4b:22:73:26:9e:fc:d7:ea: 1e:1d:a2:88:bf:38:4d:fd:9f:67:c3:98:74:46:a1:c8:ad:09: f1:23:d3:94:01:63:7d:fd:f6:1c:8e:84:87:3a:54:fb:67:ca: f9:2d:8d:07:aa:da:85:94:e8:59:15:87:71:0b:c8:07:e0:4e: f5:31:2c:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwNDIwMTkxNTQ3WhcNMjYwNDI3MTkxNTQ3WjAYMRYwFAYD VQQDEw02OWU2N2I2My1jYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LFmX5PmXfU2OTTjgbXrPn2H4MRoYr0xtHSQ68ihQej9y/dI6b3olgKcnqel QmucnkH4RB6v7XmmZF/HcoeLFPuVuZt1cHOGWZCIiu4NIz4ClwjfGBqkj1lPbAZr 5nJTYbkyuRx2G5d64VUpanpBRk6va1GAtL3rhq3fj+nkqLVd8+LrEAM3SyLxBCUO /YHW/4WTBORVxSQPUc5VZEEvceieU/s5GqS5DRID/9KQaWgfucll1mlLOhkrHE9d iqC2UG9IrHP2UWFEoVgqsA5HPMIqfKxpKWC31CX3wyRnEOxRFo2WCLtYSrwhc8XO 7J7PzMQ9L7XHzKTYVwb/Ow80TQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNJnfyu7 lPFXznTZegebFyF6rzx/MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK46pY677nn+/3uu9G+twQ5nLqS//Kf8mzMZt50aJJcI1TAsAaCGe6B1eS7IM 8FFXJQsZDVTXS9jFg/woFkjjQFy7l4yF+wjDANXxE0J4bf9+PZfTVWUfYMy32H3M H8HgifpNd4lHRR8cxIFhJeW+f69nRWyElJTnAcOnAY+tWR5K/oPYvksEgFg8FTGd zCGYrvBYXbJqfgWa9erxx8URqwRunyWd5E59SUw3vLBruY+lAoKPwAkwCu3oTS1Z R0sicyae/NfqHh2iiL84Tf2fZ8OYdEahyK0J8SPTlAFjff32HI6EhzpU+2fK+S2N B6rahZToWRWHcQvIB+BO9TEssg== -----END CERTIFICATE-----Generated at Wed Apr 22 01:44:50 2026 by rpki-client