$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: VPsIVAzs4adt74DxibVEzNPl8lHN2tfuIc9z8fy3ONs= Subject key identifier: 6C:AF:FA:05:F5:37:BD:18:6D:CF:28:A3:FB:C1:28:14:66:09:64:F8 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 1B8E78CD36D0C2BC78234D3624A4DFD24849D56A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0634 Signing time: Sat 10 May 2025 15:46:37 +0000 Manifest this update: Sat 10 May 2025 15:41:37 +0000 Manifest next update: Sun 11 May 2025 17:59:37 +0000 Files and hashes: 1: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 2: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 3: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: tPB9hfnPgY6wHYsE9k8H9eMs1HFGG/tZGtiFu8W+mpM=) 4: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) 5: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 6: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) 7: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) 8: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 9: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 10: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 11: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 17:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8e:78:cd:36:d0:c2:bc:78:23:4d:36:24:a4:df:d2:48:49:d5:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: May 10 15:41:37 2025 GMT Not After : May 11 17:59:37 2025 GMT Subject: CN=6CAFFA05F537BD186DCF28A3FBC12814660964F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:f3:53:31:57:99:32:87:59:c8:c8:a9:e1: 09:a0:a9:9d:3d:13:1b:ab:aa:74:2e:e4:10:53:67: 3d:e5:0b:d1:82:ee:c0:5c:f6:c6:93:fe:91:e0:85: 06:9c:13:0a:90:3e:fa:ea:df:1d:e8:b5:1c:24:27: a8:e6:5a:27:62:91:b3:8f:9c:39:f2:36:e9:89:92: 6c:1a:a0:24:1e:ad:04:67:51:7b:25:2a:ea:2e:af: 0c:4e:cc:71:71:e9:62:6d:29:2f:f1:89:12:57:eb: be:7b:a0:f0:0c:47:37:e0:2b:de:4d:76:67:a7:b6: 33:15:4a:8f:4b:fb:e5:62:38:78:89:b9:bc:a7:23: 7e:c0:2b:f0:3f:61:1e:65:48:df:dd:8b:4d:cd:cf: 15:2a:db:6f:f9:77:17:a7:5d:70:fe:2f:4e:5e:3b: 60:31:f7:9b:59:bb:16:42:67:2d:25:df:08:31:7c: 31:6f:0d:e0:ba:72:a8:f5:9d:21:56:f8:0f:7b:83: ef:6e:8d:9c:62:f8:c4:16:c2:d5:34:6f:d7:41:c7: 36:c0:d1:92:b5:ab:d4:ba:72:b1:19:1b:29:f3:f2: b1:40:b0:1e:46:a0:d8:97:9e:70:9b:c7:32:a8:39: ef:a2:b8:ff:90:64:76:b8:de:72:62:44:cf:00:48: 8a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AF:FA:05:F5:37:BD:18:6D:CF:28:A3:FB:C1:28:14:66:09:64:F8 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:c3:52:f8:75:8f:89:a3:52:12:5d:d9:fd:04:c3:83:1f:af: f8:f7:9d:2c:6e:9c:a2:5e:7f:06:25:6d:c0:15:2f:41:39:38: b5:79:94:54:f3:a5:dd:aa:22:f2:2f:e3:6c:82:d8:0a:41:df: 1c:cd:6b:a3:9b:63:d1:33:00:0b:b8:5b:ac:63:68:8d:5a:5a: 11:ae:57:df:65:d7:5d:94:1e:c1:c4:a9:47:4d:cf:e6:fc:8f: 22:f5:8e:0a:1c:e1:bc:85:60:a8:a2:21:28:75:72:d7:f2:4c: 83:fe:d9:20:a5:76:98:0e:79:e3:f4:ec:7b:9a:36:d7:00:c8: 56:71:7e:f8:34:b8:08:8e:0c:14:4a:af:41:eb:b1:4c:53:8d: eb:60:20:3d:11:93:c7:2a:3a:6b:ad:c7:06:ea:2d:f4:a7:59: 1f:f2:d4:8a:6e:0d:05:c8:b7:7d:20:47:34:dc:ac:ee:5f:2c: 7f:f1:e7:96:bc:a2:a6:a6:04:c2:83:e0:b6:67:9f:38:b5:6d: 74:7a:f0:82:fe:14:ce:ae:59:3f:00:4b:07:82:99:44:72:0f: 3e:83:85:2a:ef:c3:49:37:34:a3:f8:13:af:87:b4:3a:aa:07: b1:c8:b4:ec:b6:84:f0:98:00:a4:ef:19:ef:30:6a:12:cf:c0: 1b:b5:ca:ee -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUG454zTbQwrx4I002JKTf0khJ1WowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDUxMDE1NDEzN1oX DTI1MDUxMTE3NTkzN1owMzExMC8GA1UEAxMoNkNBRkZBMDVGNTM3QkQxODZEQ0Yy OEEzRkJDMTI4MTQ2NjA5NjRGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMf181MxV5kyh1nIyKnhCaCpnT0TG6uqdC7kEFNnPeUL0YLuwFz2xpP+keCF BpwTCpA++urfHei1HCQnqOZaJ2KRs4+cOfI26YmSbBqgJB6tBGdReyUq6i6vDE7M cXHpYm0pL/GJElfrvnug8AxHN+Ar3k12Z6e2MxVKj0v75WI4eIm5vKcjfsAr8D9h HmVI392LTc3PFSrbb/l3F6ddcP4vTl47YDH3m1m7FkJnLSXfCDF8MW8N4LpyqPWd IVb4D3uD726NnGL4xBbC1TRv10HHNsDRkrWr1LpysRkbKfPysUCwHkag2JeecJvH Mqg576K4/5BkdrjecmJEzwBIijcCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRsr/oF 9Te9GG3PKKP7wSgUZglk+DAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHbDUvh1j4mjUhJd2f0Ew4Mfr/j3nSxunKJe fwYlbcAVL0E5OLV5lFTzpd2qIvIv42yC2ApB3xzNa6ObY9EzAAu4W6xjaI1aWhGu V99l112UHsHEqUdNz+b8jyL1jgoc4byFYKiiISh1ctfyTIP+2SCldpgOeeP07Hua NtcAyFZxfvg0uAiODBRKr0HrsUxTjetgID0Rk8cqOmutxwbqLfSnWR/y1IpuDQXI t30gRzTcrO5fLH/x55a8oqamBMKD4LZnnzi1bXR68IL+FM6uWT8ASweCmURyDz6D hSrvw0k3NKP4E6+HtDqqB7HItOy2hPCYAKTvGe8wahLPwBu1yu4= -----END CERTIFICATE-----Generated at Sat May 10 19:27:42 2025 by rpki-client