This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: eG+QwV0xJfTDt+S66GpLsX9N2EQLYeHwhpFzrpLmebY= Subject key identifier: D6:EB:DF:69:36:D2:5F:C2:63:68:9F:A6:82:28:22:81:6E:DD:2E:22 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 5CEEC3D32800E446D2F68D2FA0CCC298FB64A1FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 52 Signing time: Sat 24 Jan 2026 23:50:56 +0000 Manifest this update: Sat 24 Jan 2026 23:45:56 +0000 Manifest next update: Mon 26 Jan 2026 01:56:56 +0000 Files and hashes: 1: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: /+QuEFbqwA6OFGaHNoyq6XrtNj5OmeJMSoeDq2XWWRc=) 2: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 3: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 4: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 5: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 6: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 7: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 01:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ee:c3:d3:28:00:e4:46:d2:f6:8d:2f:a0:cc:c2:98:fb:64:a1:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Jan 24 23:45:56 2026 GMT Not After : Jan 26 01:56:56 2026 GMT Subject: CN=D6EBDF6936D25FC263689FA6822822816EDD2E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d9:d9:00:0f:9b:f8:b3:fc:93:38:95:a1:3c: 29:3b:8c:bc:41:cc:93:d2:68:b1:25:7a:b5:d9:40: 00:45:58:ac:26:6e:07:04:7a:4f:4e:8e:00:ce:40: 96:f5:66:3a:6d:06:b4:ad:17:2a:6a:6d:ab:57:84: cc:a3:ef:fa:d4:9f:5f:23:67:d0:21:9e:b7:92:41: 53:f6:33:26:db:dc:ae:b6:7b:09:6e:13:eb:0c:cc: 64:c0:25:5c:91:5d:de:3c:41:23:41:84:65:e2:a8: bd:db:0b:1b:4e:f5:71:7d:6f:7a:cd:e0:66:a3:22: 49:53:69:c9:cb:ac:0c:59:ef:40:58:f0:30:b8:48: ae:82:e7:df:7f:d7:c2:0e:ea:ef:fa:3d:6a:61:32: 43:34:34:56:48:df:6d:24:2d:1c:c6:23:fa:92:dc: c0:ee:5f:a9:ae:1b:85:bf:ab:d8:fc:3c:a3:95:b8: 88:a3:7b:ba:69:8e:27:8e:f1:b9:91:d4:bc:ec:f7: 33:d8:f1:53:6f:8c:e9:3a:97:28:04:a2:e0:05:b3: 02:fe:4e:fe:b1:52:7d:a7:d9:01:ae:9a:f2:69:3b: 5d:75:a4:cf:4c:06:b4:08:01:4c:91:2e:f6:33:84: 1d:9e:5e:fd:1b:46:9d:66:ea:af:fd:ae:68:9d:52: 17:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EB:DF:69:36:D2:5F:C2:63:68:9F:A6:82:28:22:81:6E:DD:2E:22 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:2f:5d:71:cc:30:85:27:b2:21:cf:b1:c3:0d:db:ae:10:66: 39:2d:c9:66:4b:6b:8b:a9:c3:06:d5:be:66:5c:d5:18:73:1d: 11:21:fc:77:0f:32:52:39:84:0e:07:13:5d:f9:b0:95:88:0e: 0e:5d:9d:16:82:e2:a8:cd:8e:ee:93:8d:c4:bf:0f:66:f2:f0: 00:87:97:78:b3:9d:dc:50:e3:33:ee:56:2c:c7:54:df:07:7e: ad:dc:0f:ce:17:a2:0a:a9:4d:90:f7:4b:7b:fa:1b:c6:0e:60: 64:36:cf:4c:d6:94:8c:68:49:81:cc:44:4f:7d:22:98:cf:b9: f2:3f:5a:ce:72:e0:16:2f:2d:aa:00:9d:4e:b2:ad:e7:df:8e: df:54:fc:76:d4:7b:1a:9a:f4:f2:4c:0a:b6:67:6b:12:2e:d7: fc:f3:5b:00:6a:6e:e4:53:c4:25:17:46:d0:59:b1:08:fa:fb: 19:bd:93:6a:b9:3b:88:82:c1:11:38:a4:8a:ee:39:81:da:60: 89:4f:2c:ec:44:ed:7b:aa:db:19:02:04:ee:51:a8:fe:b2:e6: 33:d3:7d:30:d4:78:e5:de:1f:07:f5:10:aa:b2:df:4a:eb:b5: 2c:62:02:1d:4d:64:c6:7a:fc:f5:1f:7a:82:32:90:05:2d:b4: 2e:10:87:8f -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUXO7D0ygA5EbS9o0voMzCmPtkofwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDEyNDIzNDU1NloX DTI2MDEyNjAxNTY1NlowMzExMC8GA1UEAxMoRDZFQkRGNjkzNkQyNUZDMjYzNjg5 RkE2ODIyODIyODE2RUREMkUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTZ2QAPm/iz/JM4laE8KTuMvEHMk9JosSV6tdlAAEVYrCZuBwR6T06OAM5A lvVmOm0GtK0XKmptq1eEzKPv+tSfXyNn0CGet5JBU/YzJtvcrrZ7CW4T6wzMZMAl XJFd3jxBI0GEZeKovdsLG071cX1ves3gZqMiSVNpycusDFnvQFjwMLhIroLn33/X wg7q7/o9amEyQzQ0VkjfbSQtHMYj+pLcwO5fqa4bhb+r2Pw8o5W4iKN7ummOJ47x uZHUvOz3M9jxU2+M6TqXKASi4AWzAv5O/rFSfafZAa6a8mk7XXWkz0wGtAgBTJEu 9jOEHZ5e/RtGnWbqr/2uaJ1SF70CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTW699p NtJfwmNon6aCKCKBbt0uIjAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABQvXXHMMIUnsiHPscMN264QZjktyWZLa4up wwbVvmZc1RhzHREh/HcPMlI5hA4HE135sJWIDg5dnRaC4qjNju6TjcS/D2by8ACH l3izndxQ4zPuVizHVN8Hfq3cD84XogqpTZD3S3v6G8YOYGQ2z0zWlIxoSYHMRE99 IpjPufI/Ws5y4BYvLaoAnU6yreffjt9U/HbUexqa9PJMCrZnaxIu1/zzWwBqbuRT xCUXRtBZsQj6+xm9k2q5O4iCwRE4pIruOYHaYIlPLOxE7Xuq2xkCBO5RqP6y5jPT fTDUeOXeHwf1EKqy30rrtSxiAh1NZMZ6/PUfeoIykAUttC4Qh48= -----END CERTIFICATE-----Generated at Sun Jan 25 02:50:03 2026 by rpki-client