$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft File: es5to1-2pKn2-ZcMGLyvWydIEZ8.mft (raw, json) Hash identifier: zUj7KwkRsiwOrfrk6X6MV9noAkyywf0X6xa2DuwpVpw= Subject key identifier: BD:72:16:91:87:44:B1:73:60:B1:11:CB:9E:76:41:C4:54:E2:C4:8D Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0B56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft Manifest number: 0B25 Signing time: Thu 16 Apr 2026 19:15:13 +0000 Manifest this update: Thu 16 Apr 2026 19:15:12 +0000 Manifest next update: Thu 23 Apr 2026 19:15:12 +0000 Files and hashes: 1: es5to1-2pKn2-ZcMGLyvWydIEZ8.crl (hash: 2B6ut2Xajjy7uwKVJNNEsGz3xPJ3y61fZsEh2kI5PDI=) 2: F90F9A403ACB11EC9FEBB367C4F9AE02.roa (hash: JO30ZxPLCtTUfA5AsJ77nTHHUt2AhsExZqYGMllHnMo=) 3: D4EFA44673CD11EA8BE69127C4F9AE02.roa (hash: /DK141KAp12AxJrdkAPhG9zVWJnuRnBfXGch9ZOAKfo=) 4: B24920940C6911EC90B57338C4F9AE02.roa (hash: iLHHzKqdJv50SXw4wLaMPgxQ8GZnvIdKxGFIio7iiHk=) 5: 46F5BC3206A211EEBDA4D34BC4F9AE02.roa (hash: bLFKunzBxBlSN0G1S5flqUYYQ45l44FQFYrFF57mKjk=) 6: 495324CA39CB11EBB2F08020C4F9AE02.roa (hash: v8qXvZshk9GhidXuxeSZNaqVlUmXV74fp77RwkOkRAY=) 7: C782AE14615911F08635B771C4F9AE02.roa (hash: dOTATPgFwoXXrO6+XdUeAHgywBcNivkuKnP4p0jaAms=) 8: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (hash: tmeOPnJkhVaYRJZ57w5iTiK0MG+9N87IhpYtgD8uDCU=) 9: D94C07CAF5B211EFBD3CA23FC4F9AE02.roa (hash: MmkfuTiea4OXhwWHL5RZ2JeNN9FaFYJab76qYngRopA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2902 (0xb56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 16 19:15:12 2026 GMT Not After : Apr 23 19:15:12 2026 GMT Subject: CN=69e13541-5b8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d1:20:da:ee:3e:41:b5:12:e5:52:de:89:06: 56:7e:63:f2:53:ea:80:30:3e:58:c6:d0:0c:21:bd: fe:aa:59:8c:fd:45:60:27:97:ee:d4:90:18:4f:69: 6d:96:de:fb:bc:11:35:e4:d7:26:f8:31:5a:9f:ee: aa:0c:fd:73:40:f2:1a:34:d3:a4:fa:59:59:4e:87: 02:1f:b1:ba:c6:b4:77:b7:82:56:e8:ac:3f:49:9d: ff:ff:39:22:3f:a6:6c:62:1f:cc:3c:d9:94:1c:27: 40:e4:b7:6e:1c:07:3a:9c:d2:e9:2e:7b:3d:ef:1a: 95:71:b4:97:f5:6e:a1:e4:64:68:11:3f:d6:09:98: ae:b0:95:55:3c:b8:d9:e0:dc:7b:60:7f:4b:91:57: 84:c1:b5:e3:1c:b0:f2:70:94:2a:7e:b3:87:ce:1e: 61:08:3c:3a:db:4f:13:b9:e0:6d:69:f4:77:3a:44: c3:52:b3:05:5a:13:1c:41:dd:e1:b0:e5:9b:ba:4a: 64:a8:f5:f1:71:e5:55:88:60:b6:2f:ce:0a:00:71: 6c:e4:f4:fd:9b:43:d2:9d:3c:ac:04:c6:90:9f:40: e8:b3:18:90:ae:79:99:2b:4b:05:9c:d3:a6:bf:6d: 9e:a9:b4:22:e6:ee:ed:57:bd:86:10:6a:98:55:84: 7a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:72:16:91:87:44:B1:73:60:B1:11:CB:9E:76:41:C4:54:E2:C4:8D X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:50:25:46:5e:a2:67:5b:aa:95:4d:18:70:9a:75:d3:19:d8: e7:ee:33:09:3f:23:1d:ac:d2:ac:63:86:6a:34:7f:21:b8:09: 6e:7d:2f:69:5e:1c:e3:8f:91:90:e0:2d:a9:eb:7e:f0:89:d0: 0e:65:c7:7f:bf:31:a2:6f:eb:d7:82:42:56:2c:ab:ef:0b:2a: 14:c6:d8:1c:91:db:1c:e6:23:af:fd:4a:0f:a1:37:20:fb:3e: 43:87:b4:f5:df:60:14:57:3b:86:a8:1f:8b:a4:5d:77:d8:53: af:d1:bd:48:50:db:25:1f:8e:c9:da:fd:33:d6:92:f7:6f:6a: 82:d2:4e:19:e5:8d:7f:0e:cd:5c:03:b5:bf:00:de:1a:b9:4e: e1:77:fb:fa:6d:34:8f:cc:80:29:1a:6a:1f:7d:2c:06:fd:fd: 6d:01:52:b4:4c:e9:44:ac:2a:7d:7b:ee:6c:b5:03:55:ba:5a: 22:18:23:62:c4:80:ee:b7:f0:38:5f:fa:26:61:fa:63:fc:31: 0b:5d:f3:c4:4f:50:55:58:85:4b:44:08:f5:16:3e:4d:df:4a: 84:6c:2c:6f:ca:4e:e4:2b:71:c5:34:14:5c:68:14:75:7b:b5: 7a:0d:80:0f:55:c4:55:a6:5f:45:d4:0a:49:5a:f6:6c:26:54: d1:62:3f:d2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjYwNDE2MTkxNTEyWhcNMjYwNDIzMTkxNTEyWjAYMRYwFAYD VQQDEw02OWUxMzU0MS01YjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztEg2u4+QbUS5VLeiQZWfmPyU+qAMD5YxtAMIb3+qlmM/UVgJ5fu1JAYT2lt lt77vBE15Ncm+DFan+6qDP1zQPIaNNOk+llZTocCH7G6xrR3t4JW6Kw/SZ3//zki P6ZsYh/MPNmUHCdA5LduHAc6nNLpLns97xqVcbSX9W6h5GRoET/WCZiusJVVPLjZ 4Nx7YH9LkVeEwbXjHLDycJQqfrOHzh5hCDw6208TueBtafR3OkTDUrMFWhMcQd3h sOWbukpkqPXxceVViGC2L84KAHFs5PT9m0PSnTysBMaQn0DosxiQrnmZK0sFnNOm v22eqbQi5u7tV72GEGqYVYR6lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL1yFpGH RLFzYLERy552QcRU4sSNMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC9BMDU5QUY4QTY0MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBL bjItWmNNR0x5dld5ZElFWjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABlAlRl6iZ1uqlU0YcJp10xnY5+4zCT8jHazSrGOGajR/IbgJbn0vaV4c44+R kOAtqet+8InQDmXHf78xom/r14JCViyr7wsqFMbYHJHbHOYjr/1KD6E3IPs+Q4e0 9d9gFFc7hqgfi6Rdd9hTr9G9SFDbJR+Oydr9M9aS929qgtJOGeWNfw7NXAO1vwDe GrlO4Xf7+m00j8yAKRpqH30sBv39bQFStEzpRKwqfXvubLUDVbpaIhgjYsSA7rfw OF/6JmH6Y/wxC13zxE9QVViFS0QI9RY+Td9KhGwsb8pO5CtxxTQUXGgUdXu1eg2A D1XEVaZfRdQKSVr2bCZU0WI/0g== -----END CERTIFICATE-----Generated at Fri Apr 17 18:27:57 2026 by rpki-client