This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: MGsRVILkMb6wvF8DLu8vueya3Uh/9imgTFZghV8UL6k= Subject key identifier: 98:38:EE:94:1B:E8:EF:1A:3F:FA:6C:16:70:51:87:7C:9C:A4:CF:1B Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 20935A903E48490E03B0AA42AF3F4A3C6A1C7430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 075D Signing time: Fri 05 Dec 2025 16:24:37 +0000 Manifest this update: Fri 05 Dec 2025 16:19:37 +0000 Manifest next update: Sat 06 Dec 2025 19:16:37 +0000 Files and hashes: 1: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 2: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: /aF5areV7Gb7qpTrXyL/hpW79tc8NacGULSh1McGgzQ=) 3: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 4: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 5: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 6: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 7: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 8: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 9: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 10: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 11: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 19:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:93:5a:90:3e:48:49:0e:03:b0:aa:42:af:3f:4a:3c:6a:1c:74:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Dec 5 16:19:37 2025 GMT Not After : Dec 6 19:16:37 2025 GMT Subject: CN=9838EE941BE8EF1A3FFA6C167051877C9CA4CF1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:46:66:ca:92:18:71:b1:0a:80:bf:12:61:70: 0f:92:86:06:ad:d8:ed:d1:eb:45:39:3f:86:aa:45: a2:76:34:d0:cc:a3:cd:59:54:bb:17:09:00:38:e0: 3b:c6:68:0a:91:29:f1:28:c1:cc:4e:3b:23:d5:26: 17:2c:43:a8:71:13:11:ef:1c:e2:83:53:4c:d5:45: ec:82:b4:27:ec:fc:1f:f3:8c:fe:b5:10:d0:60:ad: 47:6b:f7:a7:42:db:e1:40:17:2a:77:53:19:35:0d: 0a:4d:0b:ea:c9:4b:f8:2f:3f:a3:1b:12:b7:40:69: 1e:52:80:b4:44:53:a8:b4:58:2e:05:4b:41:3f:51: 95:b4:28:fc:c5:ba:e6:96:c9:1d:66:1d:01:09:13: 0d:0a:84:9e:42:12:90:e7:46:a7:29:4a:c6:ca:7b: 78:86:56:b7:84:b7:68:18:0f:b3:e3:84:35:61:68: 2e:1b:dc:d3:c8:ca:ef:32:16:5e:11:a5:b1:ab:cb: c3:e4:73:10:a9:ab:2a:51:c9:7c:c0:0d:a9:60:3c: 6c:38:52:d8:f0:fe:60:79:69:e5:61:f2:a6:95:37: 40:73:60:3b:ca:20:f3:c7:3f:53:26:39:b2:44:c3: aa:9f:db:4a:1b:f7:09:86:f1:0e:20:08:82:78:80: 2e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:38:EE:94:1B:E8:EF:1A:3F:FA:6C:16:70:51:87:7C:9C:A4:CF:1B X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:f4:d2:e2:ee:cb:90:7f:3c:b0:a0:f2:5b:28:b7:bd:85:de: d0:62:d3:8d:e4:7b:8d:13:70:7c:97:1e:85:72:d8:8e:9c:5e: 50:13:d1:88:28:b4:35:7f:34:c6:f9:29:cd:02:b7:2f:9e:1f: 96:ad:73:77:b3:da:12:47:b0:ee:b4:1a:98:bc:31:91:82:b1: ab:7f:c0:ba:a0:29:28:aa:59:41:d9:14:68:6e:e5:b3:3c:74: 89:fc:92:1a:51:56:0a:09:11:e0:71:94:df:36:50:dc:b7:03: 77:4b:cd:4f:15:3c:a6:b8:0a:16:62:33:27:eb:0f:f6:bb:ec: 60:ab:64:f1:82:09:67:47:ec:c6:ca:b0:b1:79:62:26:43:b8: 59:e0:e7:d4:95:15:4f:2e:9d:53:2b:73:2e:b7:5d:0c:5a:cf: 9c:0f:97:b0:63:20:7b:71:0a:42:ec:f2:5f:22:90:ce:4b:9b: dc:51:10:09:8f:df:39:ef:4a:6f:07:5b:23:50:be:43:ea:5c: b0:90:01:1d:d3:7e:26:08:52:1f:f1:04:fe:9a:4c:6d:c9:33: 86:b9:4a:34:c2:1e:24:e8:69:2b:92:6d:6d:fd:66:07:cf:f9: d6:ed:e2:f5:6e:58:6a:a5:12:6a:e6:ff:d7:d0:c1:85:60:d1: a5:c4:de:34 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUIJNakD5ISQ4DsKpCrz9KPGocdDAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MTIwNTE2MTkzN1oX DTI1MTIwNjE5MTYzN1owMzExMC8GA1UEAxMoOTgzOEVFOTQxQkU4RUYxQTNGRkE2 QzE2NzA1MTg3N0M5Q0E0Q0YxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJJGZsqSGHGxCoC/EmFwD5KGBq3Y7dHrRTk/hqpFonY00MyjzVlUuxcJADjg O8ZoCpEp8SjBzE47I9UmFyxDqHETEe8c4oNTTNVF7IK0J+z8H/OM/rUQ0GCtR2v3 p0Lb4UAXKndTGTUNCk0L6slL+C8/oxsSt0BpHlKAtERTqLRYLgVLQT9RlbQo/MW6 5pbJHWYdAQkTDQqEnkISkOdGpylKxsp7eIZWt4S3aBgPs+OENWFoLhvc08jK7zIW XhGlsavLw+RzEKmrKlHJfMANqWA8bDhS2PD+YHlp5WHyppU3QHNgO8og88c/UyY5 skTDqp/bShv3CYbxDiAIgniALtsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSYOO6U G+jvGj/6bBZwUYd8nKTPGzAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGT00uLuy5B/PLCg8lsot72F3tBi043ke40T cHyXHoVy2I6cXlAT0YgotDV/NMb5Kc0Cty+eH5atc3ez2hJHsO60Gpi8MZGCsat/ wLqgKSiqWUHZFGhu5bM8dIn8khpRVgoJEeBxlN82UNy3A3dLzU8VPKa4ChZiMyfr D/a77GCrZPGCCWdH7MbKsLF5YiZDuFng59SVFU8unVMrcy63XQxaz5wPl7BjIHtx CkLs8l8ikM5Lm9xREAmP3znvSm8HWyNQvkPqXLCQAR3TfiYIUh/xBP6aTG3JM4a5 SjTCHiToaSuSbW39ZgfP+dbt4vVuWGqlEmrm/9fQwYVg0aXE3jQ= -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:43 2025 by rpki-client