$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: 0wdv/BdspTBzrLYvVQMl0mDy1Nu1cwZXysfdi7YYzMc= Subject key identifier: EC:35:04:F8:4B:1B:39:5E:5B:A3:20:38:CB:E7:F8:9E:18:49:7C:D6 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B0D Signing time: Mon 02 Mar 2026 00:20:45 +0000 Manifest this update: Mon 02 Mar 2026 00:20:44 +0000 Manifest next update: Mon 09 Mar 2026 00:20:44 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: ce3WkBwNIlplXkYbITSJPg/HlIAm5WzN728BKfokalI=) 2: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY=) 3: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: MmkfuTiea4OXhwWHL5RZ2JeNN9FaFYJab76qYngRopA=) 4: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: tmeOPnJkhVaYRJZ57w5iTiK0MG+9N87IhpYtgD8uDCU=) 5: C782AE14615911F08635B771C4F9AE02.roa (hash: dOTATPgFwoXXrO6+XdUeAHgywBcNivkuKnP4p0jaAms=) 6: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: JO30ZxPLCtTUfA5AsJ77nTHHUt2AhsExZqYGMllHnMo=) 7: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: /DK141KAp12AxJrdkAPhG9zVWJnuRnBfXGch9ZOAKfo=) 8: B24920940C6911EC90B57338C4F9AE02.roa (hash: iLHHzKqdJv50SXw4wLaMPgxQ8GZnvIdKxGFIio7iiHk=) 9: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: bLFKunzBxBlSN0G1S5flqUYYQ45l44FQFYrFF57mKjk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2878 (0xb3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Mar 2 00:20:44 2026 GMT Not After : Mar 9 00:20:44 2026 GMT Subject: CN=69a4d7dd-e156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:89:7a:83:6e:57:ff:51:ca:89:88:d4:0d:92: 5c:74:63:27:25:e6:80:90:47:99:bc:38:38:38:96: 69:ca:33:26:00:77:98:f2:ee:69:a3:a5:31:46:18: e7:71:3d:ae:50:cd:87:3c:c6:7d:74:16:c9:cc:7a: 23:db:5f:60:0d:cc:a4:72:e6:f4:e5:80:2f:83:fd: 6e:c6:94:82:34:06:9f:8d:7b:c4:b8:58:56:7d:ba: e8:d4:7d:41:6b:39:20:f1:a2:8f:1f:69:cb:97:28: c1:cd:ef:44:7f:72:0d:45:b6:70:d7:bc:37:35:21: 21:59:b0:f0:25:09:72:db:30:e1:36:3e:97:3b:96: 30:f7:5e:56:14:e4:35:ee:33:b7:28:41:a7:4b:ca: 56:37:62:40:4e:6e:c6:80:a8:7f:71:16:96:c1:ae: a3:3f:99:bb:7c:79:c3:8b:82:2b:1a:33:0f:81:f4: 10:ca:b1:f6:a2:77:65:a5:ee:c3:56:e7:d2:65:cf: d4:a3:47:d7:6b:32:a5:8e:59:59:dd:9c:b1:6c:9b: 0b:44:73:a2:c6:4a:f4:2e:a2:62:d5:a0:93:07:7e: 0e:15:23:ff:b6:30:33:47:4b:8a:99:d4:84:50:73: 15:1e:3c:c3:1e:e0:12:be:cf:65:49:b4:17:03:f1: e6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:35:04:F8:4B:1B:39:5E:5B:A3:20:38:CB:E7:F8:9E:18:49:7C:D6 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:18:73:be:03:e6:72:ec:49:9a:1b:29:9d:35:fc:67:e9:8e: 94:58:cb:ef:e2:19:29:9c:1e:69:00:b7:aa:53:b3:e2:5e:62: 80:52:45:a8:ba:59:ef:de:62:1d:8f:c1:f8:41:d0:4e:45:76: c9:d7:b5:19:fa:e1:31:c0:29:2f:09:d5:97:44:89:7c:9b:a8: 11:84:f7:15:ab:d2:b5:f5:2f:9e:5d:7e:87:20:4a:4f:77:17: 15:88:ae:d6:f0:d0:51:b6:c0:71:37:53:d3:5b:e4:c1:2b:ae: bc:3b:d6:c8:00:68:91:93:c3:46:a6:ba:9a:83:85:76:3f:d3: 99:19:5a:a7:70:a5:ab:fa:d3:4a:5f:1d:77:3a:39:43:38:f8: 4e:a9:74:f4:d3:6d:72:ca:f4:9b:37:a0:0c:d3:ce:07:8a:8a: 33:66:7e:60:c6:fb:84:23:9a:93:95:99:67:b6:41:49:3e:e1: c6:5c:72:2f:35:80:8e:63:ac:2c:da:48:84:2a:01:5f:7a:58: 3d:42:a1:b4:ed:7a:9f:46:96:0b:eb:e3:b9:f9:9a:3c:33:37: 0b:7e:45:bd:0c:71:f3:be:af:49:fc:46:c3:62:b5:3f:5f:2a: 64:36:56:33:89:32:e0:9c:e2:68:a9:fb:22:5c:62:fa:ed:e3: a8:7c:b1:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwMzAyMDAyMDQ0WhcNMjYwMzA5MDAyMDQ0WjAYMRYwFAYD VQQDEw02OWE0ZDdkZC1lMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYl6g25X/1HKiYjUDZJcdGMnJeaAkEeZvDg4OJZpyjMmAHeY8u5po6UxRhjn cT2uUM2HPMZ9dBbJzHoj219gDcykcub05YAvg/1uxpSCNAafjXvEuFhWfbro1H1B azkg8aKPH2nLlyjBze9Ef3INRbZw17w3NSEhWbDwJQly2zDhNj6XO5Yw915WFOQ1 7jO3KEGnS8pWN2JATm7GgKh/cRaWwa6jP5m7fHnDi4IrGjMPgfQQyrH2ondlpe7D VufSZc/Uo0fXazKljllZ3ZyxbJsLRHOixkr0LqJi1aCTB34OFSP/tjAzR0uKmdSE UHMVHjzDHuASvs9lSbQXA/HmOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOw1BPhL GzleW6MgOMvn+J4YSXzWMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAhhzvgPmcuxJmhspnTX8Z+mOlFjL7+IZKZweaQC3qlOz4l5igFJFqLpZ795i HY/B+EHQTkV2yde1GfrhMcApLwnVl0SJfJuoEYT3FavStfUvnl1+hyBKT3cXFYiu 1vDQUbbAcTdT01vkwSuuvDvWyABokZPDRqa6moOFdj/TmRlap3Clq/rTSl8ddzo5 Qzj4Tql09NNtcsr0mzegDNPOB4qKM2Z+YMb7hCOak5WZZ7ZBST7hxlxyLzWAjmOs LNpIhCoBX3pYPUKhtO16n0aWC+vjufmaPDM3C35FvQxx876vSfxGw2K1P18qZDZW M4ky4JziaKn7Ilxi+u3jqHyxcA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:02:06 2026 by rpki-client