$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: aQIDgf+JqgaT3EYOkFHxK3U+jUpdCrNblL8qs9Gk22M= Subject key identifier: 0A:53:6E:EE:BC:53:70:1E:60:02:B3:42:6D:63:3B:4C:C7:E1:61:41 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 60FE0B6A1F73EA1FC499B38C434C27CB76FFDBC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0713 Signing time: Sun 19 Oct 2025 09:53:56 +0000 Manifest this update: Sun 19 Oct 2025 09:48:56 +0000 Manifest next update: Mon 20 Oct 2025 13:52:56 +0000 Files and hashes: 1: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 2: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 3: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 4: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 5: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 6: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: ttpSXq/zK0mXqi61FECtjnBomElQethOUEmalI/2sbg=) 7: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 8: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 9: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 10: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 11: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:fe:0b:6a:1f:73:ea:1f:c4:99:b3:8c:43:4c:27:cb:76:ff:db:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 19 09:48:56 2025 GMT Not After : Oct 20 13:52:56 2025 GMT Subject: CN=0A536EEEBC53701E6002B3426D633B4CC7E16141 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c9:96:bc:11:c8:7e:b4:9b:f6:c9:52:76:69: 32:b7:e4:4e:d1:e7:3d:58:82:dd:76:04:3d:63:75: df:5e:a7:dc:a5:b5:2d:49:15:0d:0f:1a:88:26:c7: 24:92:c6:aa:21:cc:a4:e2:10:a5:07:a0:b7:5a:99: 09:4d:15:25:51:76:d5:f0:28:d1:02:68:ed:93:55: c7:6c:8c:87:5d:36:2c:23:25:c9:1b:d7:51:a6:60: f4:b5:f8:45:a9:de:40:f6:e4:af:bf:3e:35:fd:3d: 6a:47:f9:9f:58:15:12:70:dd:b1:d0:e1:a4:37:38: 6a:a2:e8:7e:99:92:ab:1c:9b:9d:d4:ad:53:81:49: 54:a8:a8:b9:81:e4:e3:75:95:bd:a1:d8:e7:3e:3d: 12:61:31:9b:4c:fe:68:14:2e:e1:8b:4c:f3:10:5c: 00:c3:68:81:83:31:f0:b7:13:20:e1:40:c9:cd:dc: 17:5b:b6:fc:d9:e7:cc:32:9f:c5:96:d8:20:05:db: de:c0:d2:62:22:46:48:33:a9:38:e9:39:e9:d2:db: 81:13:a9:67:33:8d:98:b9:b6:52:07:7a:f1:96:db: 18:9c:3b:d0:48:f6:6c:db:e5:f1:af:6b:c4:f7:4c: 7c:39:07:ea:4a:58:48:fd:76:28:92:a1:d0:65:c8: 23:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:53:6E:EE:BC:53:70:1E:60:02:B3:42:6D:63:3B:4C:C7:E1:61:41 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:5e:58:12:7e:ad:e0:48:aa:51:1a:8b:db:bd:6e:0f:17:3c: 0f:f8:50:0b:c4:b2:66:2c:59:27:42:b2:20:ee:6e:c4:be:14: 1f:cb:20:a8:b9:c5:b1:09:b8:fc:41:29:32:38:db:4a:4c:96: d3:67:76:07:50:47:0d:b7:ac:b6:63:f5:35:a4:ac:aa:d1:83: a4:e0:af:d9:ff:27:be:81:79:5a:b8:1a:f8:5c:ae:38:08:bd: c6:c1:18:5e:1e:fa:47:3d:8e:3f:39:fc:4d:ed:04:d0:9e:9e: 22:31:ea:ef:f1:2a:15:f2:3d:0b:a1:04:b4:5f:dc:e6:cb:d2: 13:e1:c0:2e:3a:5e:c2:80:c8:03:dd:df:93:fe:19:d5:f6:2c: fe:42:5e:2d:7d:e3:94:f4:00:1e:05:be:ca:46:8f:e2:22:34: 41:28:49:73:7d:25:16:59:ef:68:b8:23:3a:0d:7f:c5:b7:9e: 17:27:a9:9b:13:a7:a3:bb:22:93:36:7c:84:f9:a0:0c:f9:64: 20:0c:d2:95:1b:47:26:f3:2c:88:ab:0a:61:94:17:19:52:1b: b8:d0:94:53:cc:01:3b:a6:43:2d:9d:b4:4c:c6:63:b8:8a:42: da:51:b6:85:66:d1:aa:68:45:f2:66:2c:a0:8d:e7:97:75:5e: e0:94:ee:bf -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUYP4Lah9z6h/EmbOMQ0wny3b/28YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MTAxOTA5NDg1NloX DTI1MTAyMDEzNTI1NlowMzExMC8GA1UEAxMoMEE1MzZFRUVCQzUzNzAxRTYwMDJC MzQyNkQ2MzNCNENDN0UxNjE0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOLJlrwRyH60m/bJUnZpMrfkTtHnPViC3XYEPWN1316n3KW1LUkVDQ8aiCbH JJLGqiHMpOIQpQegt1qZCU0VJVF21fAo0QJo7ZNVx2yMh102LCMlyRvXUaZg9LX4 RaneQPbkr78+Nf09akf5n1gVEnDdsdDhpDc4aqLofpmSqxybndStU4FJVKiouYHk 43WVvaHY5z49EmExm0z+aBQu4YtM8xBcAMNogYMx8LcTIOFAyc3cF1u2/NnnzDKf xZbYIAXb3sDSYiJGSDOpOOk56dLbgROpZzONmLm2Ugd68ZbbGJw70Ej2bNvl8a9r xPdMfDkH6kpYSP12KJKh0GXII3cCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQKU27u vFNwHmACs0JtYztMx+FhQTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACteWBJ+reBIqlEai9u9bg8XPA/4UAvEsmYs WSdCsiDubsS+FB/LIKi5xbEJuPxBKTI420pMltNndgdQRw23rLZj9TWkrKrRg6Tg r9n/J76BeVq4GvhcrjgIvcbBGF4e+kc9jj85/E3tBNCeniIx6u/xKhXyPQuhBLRf 3ObL0hPhwC46XsKAyAPd35P+GdX2LP5CXi1945T0AB4FvspGj+IiNEEoSXN9JRZZ 72i4IzoNf8W3nhcnqZsTp6O7IpM2fIT5oAz5ZCAM0pUbRybzLIirCmGUFxlSG7jQ lFPMATumQy2dtEzGY7iKQtpRtoVm0apoRfJmLKCN55d1XuCU7r8= -----END CERTIFICATE-----Generated at Mon Oct 20 05:28:59 2025 by rpki-client