$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: dd/3BpIScmykLuI8JxlYdaclurswS3PfO+KeeVL1n40= Subject key identifier: B6:D8:15:60:B9:86:95:1B:80:AD:88:72:A8:05:AC:FD:53:4D:45:C9 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 381CFA4C91F3D5D79AF995108D24397AE6F1FFF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: A3 Signing time: Thu 26 Mar 2026 06:06:31 +0000 Manifest this update: Thu 26 Mar 2026 06:01:31 +0000 Manifest next update: Fri 27 Mar 2026 09:12:31 +0000 Files and hashes: 1: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 2: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 4: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 5: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: ZXE9RTbNoa3kgILAIQmLv53TVRt+UEhepWeWP6F0TFw=) 6: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 7: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:1c:fa:4c:91:f3:d5:d7:9a:f9:95:10:8d:24:39:7a:e6:f1:ff:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Mar 26 06:01:31 2026 GMT Not After : Mar 27 09:12:31 2026 GMT Subject: CN=B6D81560B986951B80AD8872A805ACFD534D45C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ec:8b:5c:e8:ed:35:ff:cf:19:90:11:b9:73: f4:c4:ae:5b:d1:0f:6c:2d:cf:03:5b:08:df:61:e0: 68:1a:63:ac:ee:3d:8d:cf:59:29:4b:2e:a5:33:15: 2c:15:d7:f6:8c:60:d7:9a:5a:7c:45:22:1f:84:e1: 67:a2:04:03:8d:82:5e:66:9f:51:9a:df:48:e5:ba: b2:7d:35:65:1a:75:96:80:b5:4c:12:06:d3:1d:f5: b7:ae:7d:0e:6e:e7:3e:a4:49:4f:bc:f9:f9:9e:84: 85:e8:ae:d4:e3:3c:97:13:6e:ba:f6:a4:8c:c4:2e: a8:9b:e3:b2:85:85:c5:41:6f:b4:cc:33:fe:fa:3a: f2:5f:11:98:df:50:03:b3:90:fd:b8:99:be:c8:9e: 5d:ac:8c:3c:e1:05:ba:80:61:4d:1e:8e:d7:dc:80: de:ab:40:10:99:1a:fc:4e:ea:51:e5:0c:18:fe:29: ba:73:07:a2:07:20:67:12:66:ed:00:11:1f:1f:64: 19:6d:bb:75:48:29:5c:79:ca:45:4a:0a:28:5a:ef: 51:2a:1d:ce:cf:97:e1:e8:1f:1d:55:ce:c3:68:fc: ac:89:21:08:f4:50:46:ea:d3:d6:ba:36:69:9b:48: 37:c9:67:35:fe:9f:3d:c6:7a:f3:e3:89:c3:cc:71: 65:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D8:15:60:B9:86:95:1B:80:AD:88:72:A8:05:AC:FD:53:4D:45:C9 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:f9:dd:9b:7c:62:7b:2e:11:8e:1a:85:4c:28:d1:7a:69:7b: 3b:ba:bc:28:1b:24:99:7c:44:93:47:0b:ff:2b:7f:55:c8:72: d2:89:c5:b2:8a:88:e2:36:0a:ce:76:20:ef:14:b0:57:48:7b: 53:75:56:ad:85:eb:b6:5b:69:8a:5f:4a:f9:ec:4d:c5:c1:0d: 7e:7b:05:de:50:53:62:2c:86:a0:3d:ac:70:3e:10:e7:11:4f: 5e:2f:91:f4:76:30:93:0b:84:db:07:a9:3e:0d:cf:32:08:7e: d1:44:56:5a:14:45:9b:7e:8e:b6:df:db:56:9d:8e:08:99:b9: 70:a2:c3:3e:78:8b:d3:11:ff:b6:e1:4a:0a:36:af:fb:1d:2e: d6:23:d9:c2:8a:47:3b:c8:e1:54:5f:38:a4:47:d3:57:2e:ff: ee:31:45:e7:4a:36:e9:f5:b3:84:e3:e7:07:5b:43:c3:ea:93: 0b:89:cd:05:a1:92:c5:30:d8:27:dd:bf:2b:25:82:8d:41:53: 4d:bc:ef:54:46:a6:88:e9:ab:fb:a3:c2:0f:3e:51:b9:4d:fc: 5a:98:1b:1b:09:90:0d:62:06:b2:4a:ed:ff:3e:ae:9f:a5:bb: 9c:f9:29:a3:90:99:99:83:93:f1:31:dd:24:ce:d9:2f:ee:ac: a5:06:8a:59 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUOBz6TJHz1dea+ZUQjSQ5eubx//QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDMyNjA2MDEzMVoX DTI2MDMyNzA5MTIzMVowMzExMC8GA1UEAxMoQjZEODE1NjBCOTg2OTUxQjgwQUQ4 ODcyQTgwNUFDRkQ1MzRENDVDOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ7si1zo7TX/zxmQEblz9MSuW9EPbC3PA1sI32HgaBpjrO49jc9ZKUsupTMV LBXX9oxg15pafEUiH4ThZ6IEA42CXmafUZrfSOW6sn01ZRp1loC1TBIG0x31t659 Dm7nPqRJT7z5+Z6Eheiu1OM8lxNuuvakjMQuqJvjsoWFxUFvtMwz/vo68l8RmN9Q A7OQ/biZvsieXayMPOEFuoBhTR6O19yA3qtAEJka/E7qUeUMGP4punMHogcgZxJm 7QARHx9kGW27dUgpXHnKRUoKKFrvUSodzs+X4egfHVXOw2j8rIkhCPRQRurT1ro2 aZtIN8lnNf6fPcZ68+OJw8xxZWMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBS22BVg uYaVG4CtiHKoBaz9U01FyTAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADj53Zt8YnsuEY4ahUwo0Xppezu6vCgbJJl8 RJNHC/8rf1XIctKJxbKKiOI2Cs52IO8UsFdIe1N1Vq2F67ZbaYpfSvnsTcXBDX57 Bd5QU2IshqA9rHA+EOcRT14vkfR2MJMLhNsHqT4NzzIIftFEVloURZt+jrbf21ad jgiZuXCiwz54i9MR/7bhSgo2r/sdLtYj2cKKRzvI4VRfOKRH01cu/+4xRedKNun1 s4Tj5wdbQ8PqkwuJzQWhksUw2Cfdvyslgo1BU02871RGpojpq/ujwg8+UblN/FqY GxsJkA1iBrJK7f8+rp+lu5z5KaOQmZmDk/Ex3STO2S/urKUGilk= -----END CERTIFICATE-----Generated at Thu Mar 26 11:24:19 2026 by rpki-client