$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: vGALdmbBQeEWoxzugkAAYrSPH5m2Xqu/uBzzqI1yebE= Subject key identifier: 37:71:34:A5:79:4D:E1:39:31:64:A0:7A:36:36:2F:46:01:FA:F7:95 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 03A445E08C37AF9E2C01ECAD714793B0C3574D5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: FA Signing time: Tue 12 May 2026 05:46:33 +0000 Manifest this update: Tue 12 May 2026 05:41:33 +0000 Manifest next update: Wed 13 May 2026 09:41:33 +0000 Files and hashes: 1: 3230322e352e3232302e302f32322d3234203d3e2038383838.roa (hash: 8fu1VICLJqfb2qBAICSYNfZTWIi/AxU4hCyty2bGjds=) 2: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 4: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 5: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: C8W+oz66w+XEdljw9Hc1n8hFg/RHXp5ehpRDCYIdgFA=) 6: 3130332e3230312e3132382e302f32322d3234203d3e2038383838.roa (hash: jroVYKFHmgPVzgsQ26TPXXr/n6bFbi/cJido3jfFoMg=) 7: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 8: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 9: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a4:45:e0:8c:37:af:9e:2c:01:ec:ad:71:47:93:b0:c3:57:4d:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: May 12 05:41:33 2026 GMT Not After : May 13 09:41:33 2026 GMT Subject: CN=377134A5794DE1393164A07A36362F4601FAF795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:64:31:59:4c:1f:2b:0a:40:59:d1:6d:8e:d4: a1:e7:47:64:15:30:32:7c:a8:34:f2:bb:43:0b:f4: 31:12:a5:b7:7a:76:33:81:12:ec:e3:e4:d8:d1:47: 93:ef:52:25:8f:2a:f0:ab:78:d5:6f:24:ee:18:05: 3b:28:7f:5c:8a:70:b6:d6:c3:21:97:25:17:eb:a3: cd:db:36:a4:0e:5e:2d:d2:8c:68:05:4f:c2:cc:73: cb:b7:2b:56:0e:d0:95:2f:f2:af:d7:6c:c6:13:3e: 4c:c3:60:49:fb:40:3a:5c:dc:40:b9:21:d0:1a:5b: 13:63:9c:da:06:96:f2:15:34:0d:b8:9d:fa:21:52: b8:5d:50:df:27:ab:90:65:40:90:dc:e6:1d:e2:18: ae:fe:32:57:de:f6:7a:72:70:37:95:0e:fd:69:64: e2:6d:07:d0:49:21:84:f2:92:a1:fc:29:81:46:b6: 5a:d8:36:92:13:bc:e4:d9:a2:e1:32:0f:28:82:ad: 1c:c4:d7:91:c7:a1:b0:31:c6:e8:d1:b4:70:e9:74: 18:b6:ee:38:41:14:9f:22:ea:36:32:f7:63:e8:60: 14:cf:37:18:87:59:e0:38:5b:8a:47:30:67:4b:a6: 2d:01:11:b6:1a:c6:00:a3:18:7d:96:c8:11:a7:c6: a1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:71:34:A5:79:4D:E1:39:31:64:A0:7A:36:36:2F:46:01:FA:F7:95 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:6c:fd:c9:e1:db:ff:2d:d9:85:64:0f:da:2b:c8:64:f5:69: 8d:fc:d9:ad:42:f3:d3:bf:b7:da:88:df:e7:85:fd:b9:3b:b4: dc:59:c9:9d:1b:12:cc:03:8e:c1:41:cf:cc:28:29:03:02:8c: 2c:74:0a:24:2e:0d:96:88:06:70:25:9f:07:72:7f:14:50:73: 04:7d:21:33:c8:c4:86:93:4c:d1:2c:27:76:49:4b:f0:e4:71: d1:49:a8:36:96:22:d0:07:97:4a:2b:db:c1:87:04:98:d8:d1: 5b:c6:ca:3c:0e:e8:ac:c9:17:4c:5e:ce:2f:92:87:1b:6b:b5: f1:1d:fa:0b:f3:01:16:78:be:a2:15:b8:d3:66:69:75:c8:0f: 8d:55:8a:0d:6e:3f:38:ca:f0:ed:85:e4:b7:c1:3f:28:62:44: 9d:f8:9f:92:9e:a4:89:d7:6e:96:72:61:d5:de:9a:ba:42:48: 3e:88:ae:73:4f:ff:4d:18:65:c5:32:ac:bf:17:cc:f0:d7:8c: 58:22:6e:a0:7e:94:57:37:cd:b4:d6:36:7a:0d:69:4c:5f:1f: e8:e5:aa:d5:29:f7:3c:15:7c:2d:56:0e:6d:49:28:81:f0:0f: ad:e6:68:1d:0f:b5:f7:9c:76:65:3a:a5:af:92:0a:5e:42:8a: b2:83:79:ac -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUA6RF4Iw3r54sAeytcUeTsMNXTVswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDUxMjA1NDEzM1oX DTI2MDUxMzA5NDEzM1owMzExMC8GA1UEAxMoMzc3MTM0QTU3OTRERTEzOTMxNjRB MDdBMzYzNjJGNDYwMUZBRjc5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBkMVlMHysKQFnRbY7UoedHZBUwMnyoNPK7Qwv0MRKlt3p2M4ES7OPk2NFH k+9SJY8q8Kt41W8k7hgFOyh/XIpwttbDIZclF+ujzds2pA5eLdKMaAVPwsxzy7cr Vg7QlS/yr9dsxhM+TMNgSftAOlzcQLkh0BpbE2Oc2gaW8hU0Dbid+iFSuF1Q3yer kGVAkNzmHeIYrv4yV972enJwN5UO/Wlk4m0H0EkhhPKSofwpgUa2Wtg2khO85Nmi 4TIPKIKtHMTXkcehsDHG6NG0cOl0GLbuOEEUnyLqNjL3Y+hgFM83GIdZ4Dhbikcw Z0umLQERthrGAKMYfZbIEafGocECAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQ3cTSl eU3hOTFkoHo2Ni9GAfr3lTAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAFs/cnh2/8t2YVkD9oryGT1aY382a1C89O/ t9qI3+eF/bk7tNxZyZ0bEswDjsFBz8woKQMCjCx0CiQuDZaIBnAlnwdyfxRQcwR9 ITPIxIaTTNEsJ3ZJS/DkcdFJqDaWItAHl0or28GHBJjY0VvGyjwO6KzJF0xezi+S hxtrtfEd+gvzARZ4vqIVuNNmaXXID41Vig1uPzjK8O2F5LfBPyhiRJ34n5KepInX bpZyYdXemrpCSD6IrnNP/00YZcUyrL8XzPDXjFgibqB+lFc3zbTWNnoNaUxfH+jl qtUp9zwVfC1WDm1JKIHwD63maB0PtfecdmU6pa+SCl5CirKDeaw= -----END CERTIFICATE-----Generated at Tue May 12 22:15:21 2026 by rpki-client