$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: RLpMpFOaPoczHs1/L5Pq+JVQVtDShA3tXv+JiYAm4mY= Subject key identifier: E6:CA:BE:62:6C:60:F4:1D:9C:D9:E8:03:FF:77:D4:B9:01:97:23:93 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 1641D5F86945AE575D52E39EC481632DA4A57069 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0678 Signing time: Mon 30 Jun 2025 23:56:45 +0000 Manifest this update: Mon 30 Jun 2025 23:51:45 +0000 Manifest next update: Wed 02 Jul 2025 00:33:45 +0000 Files and hashes: 1: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 2: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 3: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) 4: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: f5oM2oNCrFJDRxWPRmfQ0N9BMjKmv2/Ww+8FSZgJi2Y=) 5: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 6: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 7: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) 8: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 9: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) 10: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 11: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:41:d5:f8:69:45:ae:57:5d:52:e3:9e:c4:81:63:2d:a4:a5:70:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Jun 30 23:51:45 2025 GMT Not After : Jul 2 00:33:45 2025 GMT Subject: CN=E6CABE626C60F41D9CD9E803FF77D4B901972393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c4:40:e1:7f:8e:b2:d0:46:4f:f6:e0:a6:51: 07:80:37:c5:cb:46:07:dc:2f:96:53:d2:33:82:90: 8a:bd:f9:a4:6e:84:17:47:9b:32:81:19:c6:59:81: cd:cb:01:37:e9:c0:2b:f8:7f:a4:0a:20:78:1d:78: 06:5c:71:c0:3b:c1:18:d3:9f:0d:39:7e:eb:63:8a: 38:c6:03:2d:ae:3e:83:e2:af:23:34:4f:fa:34:3f: 53:da:06:4e:47:53:ab:4d:d2:bc:30:14:ee:5d:4f: 63:19:86:ba:1a:94:f6:74:5d:c4:7c:13:16:a9:8e: fe:dd:b4:c3:6a:f0:43:82:35:e7:cc:ac:92:4a:c4: f0:ed:f7:93:69:0c:1a:a2:c2:9b:58:9f:75:30:f9: 16:45:33:46:82:34:23:02:c0:8f:72:6f:40:9a:6b: bd:c5:ca:7d:f6:bd:ad:76:ad:8e:02:94:43:60:32: 06:3d:85:7f:30:95:af:e7:cf:1f:67:7b:2e:71:43: 97:6e:c2:ea:83:a3:73:c3:41:17:cd:c1:eb:39:47: cf:83:b7:38:8a:61:14:7d:19:2f:09:ff:09:a7:28: 31:5c:65:72:70:7f:22:b3:6c:b2:ab:26:28:7e:c7: 6d:af:ff:d3:e1:a8:e0:f8:61:17:f3:35:09:aa:cc: 95:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CA:BE:62:6C:60:F4:1D:9C:D9:E8:03:FF:77:D4:B9:01:97:23:93 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:29:30:c2:35:dc:d9:10:45:e9:b7:0d:09:64:57:06:bc:c8: eb:e2:a8:f3:2a:f1:70:65:e9:78:6a:92:59:21:80:67:91:dc: a1:05:16:0f:f6:60:e8:92:b8:48:ac:6d:94:38:ca:95:bf:85: 10:e8:57:d0:96:23:31:2f:85:17:d7:70:2b:88:b8:be:d2:e3: 0f:6b:73:33:a8:35:a5:b4:f8:2a:06:c2:80:9f:db:db:cd:cf: 19:88:e7:9d:da:d2:bb:b7:fb:a7:23:78:53:c5:41:ed:3d:b8: 17:6d:95:b9:a2:92:cc:77:a9:ff:e1:e4:98:47:cd:7d:fc:e1: ae:23:ea:fb:3f:3b:15:bf:d7:87:6c:b7:5f:a5:5c:a4:32:d9: 84:5d:6e:e7:22:51:b8:52:bf:e8:a1:9a:25:0b:09:13:0a:5a: 4b:fb:98:0f:2b:bb:03:32:62:6d:bf:a6:ce:65:ea:bc:ab:af: 78:ad:9a:e1:54:b9:7c:92:50:74:9d:d9:e2:6e:0d:04:2d:1e: 78:f3:16:b0:50:a3:41:c0:8c:8f:dd:33:38:c4:3d:d9:51:36: 80:4b:fb:46:7d:7a:df:6a:33:e4:a1:39:5d:af:aa:46:2d:14: 9d:ee:68:04:0c:2f:72:ca:c7:26:4f:f2:cc:81:b8:2d:c8:2d: f8:69:e5:f3 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUFkHV+GlFrlddUuOexIFjLaSlcGkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDYzMDIzNTE0NVoX DTI1MDcwMjAwMzM0NVowMzExMC8GA1UEAxMoRTZDQUJFNjI2QzYwRjQxRDlDRDlF ODAzRkY3N0Q0QjkwMTk3MjM5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKDEQOF/jrLQRk/24KZRB4A3xctGB9wvllPSM4KQir35pG6EF0ebMoEZxlmB zcsBN+nAK/h/pAogeB14BlxxwDvBGNOfDTl+62OKOMYDLa4+g+KvIzRP+jQ/U9oG TkdTq03SvDAU7l1PYxmGuhqU9nRdxHwTFqmO/t20w2rwQ4I158yskkrE8O33k2kM GqLCm1ifdTD5FkUzRoI0IwLAj3JvQJprvcXKffa9rXatjgKUQ2AyBj2FfzCVr+fP H2d7LnFDl27C6oOjc8NBF83B6zlHz4O3OIphFH0ZLwn/CacoMVxlcnB/IrNssqsm KH7Hba//0+Go4PhhF/M1CarMlUcCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTmyr5i bGD0HZzZ6AP/d9S5AZcjkzAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGEpMMI13NkQRem3DQlkVwa8yOviqPMq8XBl 6XhqklkhgGeR3KEFFg/2YOiSuEisbZQ4ypW/hRDoV9CWIzEvhRfXcCuIuL7S4w9r czOoNaW0+CoGwoCf29vNzxmI553a0ru3+6cjeFPFQe09uBdtlbmiksx3qf/h5JhH zX384a4j6vs/OxW/14dst1+lXKQy2YRdbuciUbhSv+ihmiULCRMKWkv7mA8ruwMy Ym2/ps5l6ryrr3itmuFUuXySUHSd2eJuDQQtHnjzFrBQo0HAjI/dMzjEPdlRNoBL +0Z9et9qM+ShOV2vqkYtFJ3uaAQML3LKxyZP8syBuC3ILfhp5fM= -----END CERTIFICATE-----Generated at Tue Jul 1 04:02:19 2025 by rpki-client