$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: gyhtKLOlEkGArmbjsxs9FBlRQcl/9TobPwwoScBlr/k= Subject key identifier: 77:95:DD:0A:40:71:9D:17:4D:F9:6F:79:96:94:A9:80:84:A2:DE:51 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 590359B0BE7FF49C72D3165267E0AF543C175901 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 07F1 Signing time: Wed 25 Mar 2026 12:56:13 +0000 Manifest this update: Wed 25 Mar 2026 12:51:13 +0000 Manifest next update: Thu 26 Mar 2026 13:41:13 +0000 Files and hashes: 1: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 2: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 3: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 4: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 5: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 6: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 7: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 8: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 9: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 10: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 11: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: Ipp8XfdP9tddn71M/Q3OCPYHJrOTYDGGGuQDE4RyBmk=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 13:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:03:59:b0:be:7f:f4:9c:72:d3:16:52:67:e0:af:54:3c:17:59:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Mar 25 12:51:13 2026 GMT Not After : Mar 26 13:41:13 2026 GMT Subject: CN=7795DD0A40719D174DF96F799694A98084A2DE51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cd:5e:33:9c:61:5d:3c:30:84:f6:c6:91:ed: 96:a9:6e:d4:11:25:4b:99:9b:fe:44:08:a2:3d:4b: 12:b8:f0:d7:a4:09:f6:4b:c6:5d:04:34:11:0a:86: 88:52:ef:77:b8:db:0a:4a:82:1a:69:73:23:e0:b0: 48:74:44:6d:f1:62:0b:4a:b3:0b:21:52:58:a1:a3: ed:d6:e1:5c:28:61:46:99:a4:54:fe:42:78:36:9c: 84:d4:ec:b8:43:b9:1a:80:ec:c4:db:69:fe:8f:50: 79:42:32:3e:ac:fe:2c:18:19:45:00:2d:36:65:04: 8a:19:03:b2:12:25:66:38:0a:f4:e4:f8:f2:65:e3: 17:77:4d:3c:1f:84:7d:c7:7d:74:d5:94:72:e6:5a: f6:ae:0c:cc:e8:4d:e3:0c:9b:cc:02:95:40:08:9d: 1b:ec:df:6d:2e:83:40:cb:42:0c:b2:4d:e8:0b:1c: c7:31:73:6e:e7:c2:d7:12:c7:d7:82:cd:61:0b:6e: b6:3e:92:5a:4c:07:c8:37:d5:db:47:9d:c6:16:b9: 1f:93:0e:a9:c1:b5:94:cf:4d:37:b6:fe:91:2e:e0: 31:74:04:ac:94:5c:6d:f2:92:76:f4:b9:05:94:b1: 55:d6:b6:f3:8e:86:fb:3e:92:30:f1:16:91:29:cb: 9e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:95:DD:0A:40:71:9D:17:4D:F9:6F:79:96:94:A9:80:84:A2:DE:51 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:80:49:b0:26:5b:f2:cf:f0:25:12:07:68:9f:ea:e4:30:dd: 97:08:26:b8:53:67:68:2d:1e:31:6b:b7:0d:92:f3:85:e2:ad: 19:18:70:37:2b:77:12:77:e1:ac:89:be:ce:fb:87:13:ea:9b: aa:2c:ed:07:73:95:41:52:07:d1:72:9e:a5:6f:50:84:8a:23: 23:64:a8:80:5b:b1:f0:8b:79:2d:9e:f3:2a:c7:10:1c:88:1b: 1a:22:a5:cc:c4:8f:a4:be:28:9b:50:34:81:38:11:49:f4:a4: 4c:d8:64:f8:d3:bc:37:36:53:5c:73:03:e2:0c:c0:40:5e:fc: f2:a0:03:47:e7:57:e9:de:82:5e:60:16:f8:76:73:67:f0:b5: e2:73:10:33:a4:b5:ac:1e:ea:86:ec:99:19:26:fe:9c:41:f3: e9:34:9f:93:74:3d:36:08:7d:22:70:00:c4:a0:c3:5c:97:a5: 96:4b:37:76:3e:89:d0:74:a5:16:e6:ca:e9:54:fc:84:00:ea: ee:4a:1e:a4:72:ff:e8:e3:8e:ab:b6:67:6e:7f:e6:25:20:c0: 74:d5:1e:9e:cc:82:9a:45:11:81:54:e5:94:f8:5f:2a:f3:e1: dc:e8:69:f8:57:cf:c2:1b:86:ef:12:c1:2e:99:9d:3c:f7:6f: 77:3d:75:59 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUWQNZsL5/9Jxy0xZSZ+CvVDwXWQEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDMyNTEyNTExM1oX DTI2MDMyNjEzNDExM1owMzExMC8GA1UEAxMoNzc5NUREMEE0MDcxOUQxNzRERjk2 Rjc5OTY5NEE5ODA4NEEyREU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7NXjOcYV08MIT2xpHtlqlu1BElS5mb/kQIoj1LErjw16QJ9kvGXQQ0EQqG iFLvd7jbCkqCGmlzI+CwSHREbfFiC0qzCyFSWKGj7dbhXChhRpmkVP5CeDachNTs uEO5GoDsxNtp/o9QeUIyPqz+LBgZRQAtNmUEihkDshIlZjgK9OT48mXjF3dNPB+E fcd9dNWUcuZa9q4MzOhN4wybzAKVQAidG+zfbS6DQMtCDLJN6AscxzFzbufC1xLH 14LNYQtutj6SWkwHyDfV20edxha5H5MOqcG1lM9NN7b+kS7gMXQErJRcbfKSdvS5 BZSxVda2846G+z6SMPEWkSnLnj0CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBR3ld0K QHGdF035b3mWlKmAhKLeUTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFGASbAmW/LP8CUSB2if6uQw3ZcIJrhTZ2gt HjFrtw2S84XirRkYcDcrdxJ34ayJvs77hxPqm6os7QdzlUFSB9FynqVvUISKIyNk qIBbsfCLeS2e8yrHEByIGxoipczEj6S+KJtQNIE4EUn0pEzYZPjTvDc2U1xzA+IM wEBe/PKgA0fnV+negl5gFvh2c2fwteJzEDOktawe6obsmRkm/pxB8+k0n5N0PTYI fSJwAMSgw1yXpZZLN3Y+idB0pRbmyulU/IQA6u5KHqRy/+jjjqu2Z25/5iUgwHTV Hp7MgppFEYFU5ZT4Xyrz4dzoafhXz8Ibhu8SwS6ZnTz3b3c9dVk= -----END CERTIFICATE-----Generated at Thu Mar 26 05:30:48 2026 by rpki-client