This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: 2BLiOnXPAD2kcjp334Em/BCXVLVMmDXcLRuZ+6p8/e4= Subject key identifier: 85:8F:DD:6C:23:48:F9:B7:A2:D2:B2:03:8C:E0:DF:D1:C4:25:41:EC Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 49C15B50C8CD13E443C923E91FD125C4A78950D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 0F Signing time: Fri 05 Dec 2025 19:59:37 +0000 Manifest this update: Fri 05 Dec 2025 19:54:37 +0000 Manifest next update: Sat 06 Dec 2025 22:40:37 +0000 Files and hashes: 1: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 2: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 4: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 5: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 6: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: eAtO/1tFsuaW3mrc1wIqOcWSSi3mCGrYAQkcGsi8FxU=) 7: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 22:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:c1:5b:50:c8:cd:13:e4:43:c9:23:e9:1f:d1:25:c4:a7:89:50:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Dec 5 19:54:37 2025 GMT Not After : Dec 6 22:40:37 2025 GMT Subject: CN=858FDD6C2348F9B7A2D2B2038CE0DFD1C42541EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:3b:63:cf:6c:d1:e3:9d:b2:4a:2f:61:da: 6d:8a:cf:88:66:79:99:ae:1e:9b:9b:b9:71:24:54: 96:8d:81:4e:c1:a6:42:bf:15:16:0a:29:c6:2c:84: 7e:af:dc:4e:c3:e9:ba:73:3d:6c:76:0e:27:a0:53: eb:4c:15:6d:77:4c:0e:17:22:ce:c4:22:37:c1:1f: f0:80:ac:1b:e0:ea:64:9b:28:68:e0:ce:d9:10:c3: 61:b0:f0:c6:fb:e9:bf:a7:a0:40:70:89:5a:bc:52: b1:84:65:68:d9:e2:6d:89:97:96:0e:db:d9:f4:60: c8:87:1e:d1:f4:68:2e:2d:4f:70:48:49:3a:77:89: 31:07:14:cb:53:6e:30:5c:61:29:f1:c7:c7:85:d9: ff:8d:13:b9:10:10:aa:37:22:02:41:52:6a:88:c0: f7:d4:c2:be:09:90:d4:bb:96:28:e5:e5:ea:8f:b9: 90:bf:ac:bc:50:95:e4:02:33:2f:0a:7f:d7:4d:f4: 29:1c:d5:a0:b0:ff:24:ff:04:37:1b:ce:3e:f8:ab: eb:5c:08:dd:34:1a:51:6e:88:c7:ae:f4:05:d5:f5: 79:69:aa:50:7c:2c:2a:42:66:9e:32:82:0e:92:96: 43:6f:88:7c:30:54:69:a3:3b:f2:cf:9b:27:36:fa: 3c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8F:DD:6C:23:48:F9:B7:A2:D2:B2:03:8C:E0:DF:D1:C4:25:41:EC X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:f5:e2:5e:23:9e:62:0a:38:69:d6:43:61:63:94:d7:33:bb: 55:a7:19:a1:00:2f:5e:ac:fb:9a:da:18:2e:cb:13:37:f4:7e: 30:be:f7:06:ad:e2:24:69:39:fa:11:95:5c:4e:76:2a:e6:f9: 75:8d:24:49:12:d0:8d:d6:ce:2e:3c:31:bd:70:23:e7:13:17: fb:99:31:5a:25:56:92:f0:57:bd:2d:17:54:65:09:2b:1c:6c: 22:51:52:ea:f6:c4:68:c1:c9:11:96:40:09:23:16:72:19:97: 9c:64:3d:63:2d:5a:67:dd:81:f3:84:41:8e:bc:85:f7:87:9f: 3c:fb:4e:63:1d:5b:e9:2f:21:ca:e4:b8:ad:09:ca:5f:1c:ab: cd:8a:eb:53:4a:69:aa:b6:b1:08:82:97:62:4c:76:82:e9:7c: c7:ec:ce:3f:3d:cb:08:3c:dc:fb:ea:d9:2f:3c:50:5c:65:6d: 14:07:ef:b2:d6:98:36:a6:2e:2c:53:ea:61:e4:f5:2d:64:34: 82:7e:10:6d:ab:9b:86:b8:32:9c:f9:b4:db:04:f5:33:07:de: 02:01:fe:9a:ed:6f:94:86:c2:a3:51:ec:a2:d6:41:c9:6a:40: 4e:f3:d5:b6:a2:ee:83:7a:a6:7a:fc:8c:68:03:e1:5f:15:a6: ca:58:18:8a -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUScFbUMjNE+RDySPpH9ElxKeJUNkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI1MTIwNTE5NTQzN1oX DTI1MTIwNjIyNDAzN1owMzExMC8GA1UEAxMoODU4RkRENkMyMzQ4RjlCN0EyRDJC MjAzOENFMERGRDFDNDI1NDFFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMiFO2PPbNHjnbJKL2HabYrPiGZ5ma4em5u5cSRUlo2BTsGmQr8VFgopxiyE fq/cTsPpunM9bHYOJ6BT60wVbXdMDhcizsQiN8Ef8ICsG+DqZJsoaODO2RDDYbDw xvvpv6egQHCJWrxSsYRlaNnibYmXlg7b2fRgyIce0fRoLi1PcEhJOneJMQcUy1Nu MFxhKfHHx4XZ/40TuRAQqjciAkFSaojA99TCvgmQ1LuWKOXl6o+5kL+svFCV5AIz Lwp/1030KRzVoLD/JP8ENxvOPvir61wI3TQaUW6Ix670BdX1eWmqUHwsKkJmnjKC DpKWQ2+IfDBUaaM78s+bJzb6PKsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSFj91s I0j5t6LSsgOM4N/RxCVB7DAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGL14l4jnmIKOGnWQ2FjlNczu1WnGaEAL16s +5raGC7LEzf0fjC+9wat4iRpOfoRlVxOdirm+XWNJEkS0I3Wzi48Mb1wI+cTF/uZ MVolVpLwV70tF1RlCSscbCJRUur2xGjByRGWQAkjFnIZl5xkPWMtWmfdgfOEQY68 hfeHnzz7TmMdW+kvIcrkuK0Jyl8cq82K61NKaaq2sQiCl2JMdoLpfMfszj89ywg8 3Pvq2S88UFxlbRQH77LWmDamLixT6mHk9S1kNIJ+EG2rm4a4Mpz5tNsE9TMH3gIB /prtb5SGwqNR7KLWQclqQE7z1bai7oN6pnr8jGgD4V8VpspYGIo= -----END CERTIFICATE-----Generated at Sat Dec 6 05:41:43 2025 by rpki-client