$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: hItJappX0pKUzXBFH1GP7Su7R+CecVuVmrvtDxx29LU= Subject key identifier: E6:73:E1:1C:08:50:5B:09:FA:06:2E:95:22:52:EF:1D:FE:E2:FE:E7 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 38D9386EE79F7DF009CF5CF51C1E226F94CF1D37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0849 Signing time: Tue 12 May 2026 06:56:33 +0000 Manifest this update: Tue 12 May 2026 06:51:33 +0000 Manifest next update: Wed 13 May 2026 07:25:33 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 2: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 3: 34352e3131372e3130302e302f32322d3234203d3e2033323538.roa (hash: KWTsLxWIFcXKjNjL6LfQgdvsCq/JmPqGWhOtCfjvM28=) 4: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 5: 3130332e35372e3136342e302f32322d3234203d3e2033323538.roa (hash: UqIC9u7BB9Id3IMbYgH9FX+luoFs+hXH+2V/k9wpOTU=) 6: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 7: 34352e3131372e3130302e302f32322d3234203d3e2038383838.roa (hash: voPiakdEWPirMq/WncFYq7Upw23ZrCEb5LKsM3/mXvw=) 8: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 9: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 10: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 11: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 12: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 13: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: qvH830dl6tHTRjTERTA7LDZqHz868BryLwHcDMvtyOM=) 14: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d9:38:6e:e7:9f:7d:f0:09:cf:5c:f5:1c:1e:22:6f:94:cf:1d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: May 12 06:51:33 2026 GMT Not After : May 13 07:25:33 2026 GMT Subject: CN=E673E11C08505B09FA062E952252EF1DFEE2FEE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:f4:f5:6f:54:c7:6a:d2:f3:1f:e1:80:b7: 91:cb:d7:58:d6:2a:bb:53:20:e5:e8:43:b1:8d:d2: 35:1d:33:e5:29:d7:af:61:1b:92:94:25:88:6f:31: ee:98:35:1a:d6:32:be:48:19:8f:2d:c9:58:71:b2: 7c:84:fb:6f:16:49:db:df:fc:27:3b:b6:22:fe:6f: 9c:03:92:ba:e0:2b:80:13:ea:c0:c9:11:ee:8e:f6: 7c:36:08:8c:80:dc:2a:58:6e:a9:c3:2f:02:26:a2: 39:1a:dc:99:d0:65:5f:d3:39:7f:c8:d2:24:e0:26: 8f:ba:48:1a:ff:be:2e:f0:7b:45:d3:c4:40:d5:f4: 1d:fb:7b:7b:89:45:f4:4f:62:47:a1:46:e1:a9:86: 21:c5:b1:05:4b:6c:bd:9b:94:80:48:65:cf:37:e1: d3:5f:0d:87:ae:dd:5a:a3:9a:5f:c9:9f:39:ac:db: da:93:3b:ac:25:4d:12:c9:83:3a:c9:d1:08:8d:39: d7:e6:8e:92:2f:5c:da:41:cc:d1:b1:89:a0:23:65: 3e:b5:e3:f9:8b:38:6d:e2:35:05:c9:72:f7:c0:94: c6:7b:3f:9a:e9:ee:67:6a:fb:1a:20:48:d4:43:d6: c1:a5:2b:1d:31:5f:12:4e:6d:6c:ed:4f:d9:63:51: cd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:73:E1:1C:08:50:5B:09:FA:06:2E:95:22:52:EF:1D:FE:E2:FE:E7 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:9f:ec:30:c6:0b:e5:0d:c1:5f:34:41:f3:56:b4:a8:10:6c: 76:a9:aa:33:91:0d:76:c8:1d:08:20:36:aa:7c:7b:ac:e4:2c: be:10:22:a0:a1:9e:7c:b7:a4:38:a3:4e:05:79:1e:12:12:2d: 4d:6d:8c:f2:cf:dc:67:5e:f2:7c:13:53:93:8a:3d:29:8a:42: f0:4a:6e:58:48:46:81:26:3a:12:6e:4f:09:0d:ca:f5:48:27: 2e:0f:39:3a:28:6a:c6:c5:34:b7:00:82:f3:dc:84:22:92:f4: c4:5d:df:47:37:99:21:52:ff:3b:c5:75:84:6e:28:f9:a1:12: 3e:8b:f9:ed:14:b3:6f:d7:0a:4b:46:79:bc:60:26:db:11:49: 51:78:eb:6e:0e:bd:ea:75:8a:bb:2e:53:1a:4f:1c:7e:41:05: df:78:73:63:f2:b0:6f:27:5e:c8:6c:51:72:6a:fc:e2:30:ac: 09:59:70:07:0f:08:dd:57:bd:47:a5:f4:9e:37:67:c7:1e:34: 2e:b8:da:20:7f:94:a9:8f:7a:50:15:b4:b6:3d:7a:ec:9e:15: 5b:0b:5e:9d:a4:8f:04:03:01:e2:9b:d5:27:74:fb:76:57:e9: 49:57:b8:ec:94:9c:df:6f:ef:3d:06:bd:77:93:d3:fa:5f:b1: 6b:ff:7e:41 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUONk4buefffAJz1z1HB4ib5TPHTcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDUxMjA2NTEzM1oX DTI2MDUxMzA3MjUzM1owMzExMC8GA1UEAxMoRTY3M0UxMUMwODUwNUIwOUZBMDYy RTk1MjI1MkVGMURGRUUyRkVFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4F9PVvVMdq0vMf4YC3kcvXWNYqu1Mg5ehDsY3SNR0z5SnXr2EbkpQliG8x 7pg1GtYyvkgZjy3JWHGyfIT7bxZJ29/8Jzu2Iv5vnAOSuuArgBPqwMkR7o72fDYI jIDcKlhuqcMvAiaiORrcmdBlX9M5f8jSJOAmj7pIGv++LvB7RdPEQNX0Hft7e4lF 9E9iR6FG4amGIcWxBUtsvZuUgEhlzzfh018Nh67dWqOaX8mfOazb2pM7rCVNEsmD OsnRCI051+aOki9c2kHM0bGJoCNlPrXj+Ys4beI1Bcly98CUxns/munuZ2r7GiBI 1EPWwaUrHTFfEk5tbO1P2WNRzZkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTmc+Ec CFBbCfoGLpUiUu8d/uL+5zAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEuf7DDGC+UNwV80QfNWtKgQbHapqjORDXbI HQggNqp8e6zkLL4QIqChnny3pDijTgV5HhISLU1tjPLP3Gde8nwTU5OKPSmKQvBK blhIRoEmOhJuTwkNyvVIJy4POTooasbFNLcAgvPchCKS9MRd30c3mSFS/zvFdYRu KPmhEj6L+e0Us2/XCktGebxgJtsRSVF4624Ovep1irsuUxpPHH5BBd94c2PysG8n XshsUXJq/OIwrAlZcAcPCN1XvUel9J43Z8ceNC642iB/lKmPelAVtLY9euyeFVsL Xp2kjwQDAeKb1Sd0+3ZX6UlXuOyUnN9v7z0GvXeT0/pfsWv/fkE= -----END CERTIFICATE-----Generated at Tue May 12 23:09:50 2026 by rpki-client