$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: dK1VufrTFGYK/LCVTZL5V5ruQWw7qZujQF96syeR74w= Subject key identifier: 87:70:EB:40:D1:CB:2C:A4:8B:96:B2:27:5A:13:FC:A8:EC:06:4F:8B Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 17BB758A03E174FEACBFD26FFA73667C0757AA40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 06C5 Signing time: Sat 23 Aug 2025 19:05:28 +0000 Manifest this update: Sat 23 Aug 2025 19:00:28 +0000 Manifest next update: Sun 24 Aug 2025 20:19:28 +0000 Files and hashes: 1: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 2: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 3: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 4: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 5: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 6: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 7: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: MqdCXu0znvZhzhFUI/DcRagsE3dWp02PbWGuZC+C/fs=) 8: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 9: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 10: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 11: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 20:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:bb:75:8a:03:e1:74:fe:ac:bf:d2:6f:fa:73:66:7c:07:57:aa:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 23 19:00:28 2025 GMT Not After : Aug 24 20:19:28 2025 GMT Subject: CN=8770EB40D1CB2CA48B96B2275A13FCA8EC064F8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:83:8e:11:56:f7:ac:0a:59:11:c5:b6:dd:e0: e7:83:7c:07:6c:3c:f0:c2:65:c1:96:bb:4b:fa:80: 3f:64:fc:6a:31:94:86:7e:f6:a3:94:63:23:f9:bb: 22:9c:1b:c7:75:2b:68:a9:d4:7e:ab:01:ba:4b:a2: 86:66:aa:95:23:bd:02:53:8b:36:cb:c0:2c:8d:92: b6:7f:5c:62:1d:ad:e0:e3:f8:36:ba:2a:d0:c7:5c: 3d:6c:49:72:28:a1:b7:5c:4a:3a:0a:d1:95:38:f2: c2:c0:e5:62:0d:6f:b7:81:fc:76:b7:58:04:02:73: 58:f5:3d:6e:28:20:e8:35:be:39:c6:26:6a:aa:59: d6:51:12:59:fe:e7:f5:22:3b:3e:88:9d:2f:a3:6e: 15:38:dc:cf:f9:7a:2a:cc:b3:7d:42:5a:60:be:db: b6:eb:69:23:ba:8b:08:ed:bf:57:da:b7:0c:87:1b: 81:55:7d:7a:03:01:58:94:6a:78:a9:19:cc:fe:6f: 92:c7:1f:76:7e:77:ca:14:26:c6:03:01:63:26:d2: 2c:46:8f:24:c6:60:e8:b0:5b:5d:95:3e:19:99:75: f9:7d:61:a0:55:ad:55:aa:80:78:8c:48:f3:0b:0c: 63:95:98:8d:9c:0a:bc:88:71:71:85:e6:fc:45:8b: 41:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:70:EB:40:D1:CB:2C:A4:8B:96:B2:27:5A:13:FC:A8:EC:06:4F:8B X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:58:8f:3b:b7:c5:61:0f:e2:99:d9:f3:15:6a:14:52:6a:f1: fa:ed:e5:d5:74:67:bf:fa:d0:b1:be:44:24:8a:ed:70:30:8c: 3f:1e:bb:20:05:ae:8a:da:25:c5:e4:0d:aa:fe:ab:1e:8e:67: 1c:3b:5b:94:84:e9:cc:2a:ec:1c:87:9b:a6:a5:96:1d:52:71: 17:3b:e0:eb:96:48:9c:3a:00:dc:b3:13:8d:47:7f:a5:81:90: cd:7f:89:1a:fc:5f:49:25:95:39:52:3b:7b:8f:37:6f:3f:b7: 92:03:b9:80:5b:9c:8d:e2:5d:bb:21:cb:8f:6f:8f:d8:46:b0: ee:f2:6d:af:64:c0:19:c2:24:99:e3:f6:7a:5d:02:af:ea:56: ca:fa:a8:f4:3d:c5:91:ac:73:a6:f7:03:30:56:bb:6e:fc:7d: 89:a6:db:d0:23:62:64:98:85:70:64:df:27:ba:14:30:61:80: 32:b9:fe:a2:af:9b:df:1d:84:3f:c9:4d:35:7e:73:9d:26:b3: 4b:8d:41:dc:c8:e8:d6:61:d5:8b:59:f4:77:64:a8:76:ca:61: dc:37:d5:56:c7:71:39:45:08:72:91:c7:5a:7b:be:55:7c:2c: 20:17:d4:4f:a6:49:ce:44:67:2d:1c:0d:8e:b0:17:f9:1d:7d: 83:be:a5:7b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUF7t1igPhdP6sv9Jv+nNmfAdXqkAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgyMzE5MDAyOFoX DTI1MDgyNDIwMTkyOFowMzExMC8GA1UEAxMoODc3MEVCNDBEMUNCMkNBNDhCOTZC MjI3NUExM0ZDQThFQzA2NEY4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCDjhFW96wKWRHFtt3g54N8B2w88MJlwZa7S/qAP2T8ajGUhn72o5RjI/m7 Ipwbx3UraKnUfqsBukuihmaqlSO9AlOLNsvALI2Stn9cYh2t4OP4Nroq0MdcPWxJ ciiht1xKOgrRlTjywsDlYg1vt4H8drdYBAJzWPU9bigg6DW+OcYmaqpZ1lESWf7n 9SI7PoidL6NuFTjcz/l6KsyzfUJaYL7btutpI7qLCO2/V9q3DIcbgVV9egMBWJRq eKkZzP5vkscfdn53yhQmxgMBYybSLEaPJMZg6LBbXZU+GZl1+X1hoFWtVaqAeIxI 8wsMY5WYjZwKvIhxcYXm/EWLQQkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSHcOtA 0csspIuWsidaE/yo7AZPizAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIhYjzu3xWEP4pnZ8xVqFFJq8frt5dV0Z7/6 0LG+RCSK7XAwjD8euyAFroraJcXkDar+qx6OZxw7W5SE6cwq7ByHm6allh1ScRc7 4OuWSJw6ANyzE41Hf6WBkM1/iRr8X0kllTlSO3uPN28/t5IDuYBbnI3iXbshy49v j9hGsO7yba9kwBnCJJnj9npdAq/qVsr6qPQ9xZGsc6b3AzBWu278fYmm29AjYmSY hXBk3ye6FDBhgDK5/qKvm98dhD/JTTV+c50ms0uNQdzI6NZh1YtZ9HdkqHbKYdw3 1VbHcTlFCHKRx1p7vlV8LCAX1E+mSc5EZy0cDY6wF/kdfYO+pXs= -----END CERTIFICATE-----Generated at Sat Aug 23 23:31:28 2025 by rpki-client