This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: CevIc3CvaxmtA7tpSzPk16wz8+AyXGhLUyDVTDoOM18= Subject key identifier: D3:7A:73:69:FA:AB:7A:59:36:DA:E8:69:16:8A:1D:96:9F:BD:E4:5C Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 785A9682F745887B92BC65B75CA1B07D6EEE993C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 4E Signing time: Sat 24 Jan 2026 23:35:56 +0000 Manifest this update: Sat 24 Jan 2026 23:30:56 +0000 Manifest next update: Mon 26 Jan 2026 00:09:56 +0000 Files and hashes: 1: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) 2: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: pCLS8hjeux4AyJerWI90rBZ4jnB45W7teRouLA5s0NM=) 3: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 00:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:5a:96:82:f7:45:88:7b:92:bc:65:b7:5c:a1:b0:7d:6e:ee:99:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Jan 24 23:30:56 2026 GMT Not After : Jan 26 00:09:56 2026 GMT Subject: CN=D37A7369FAAB7A5936DAE869168A1D969FBDE45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a3:5d:d7:1b:23:1b:a7:23:d4:90:33:88:cb: 89:bf:ef:05:24:35:e1:89:47:04:a5:25:51:15:57: ab:1b:f2:9a:1a:05:bc:04:8f:95:4f:ad:67:6c:51: 4d:e4:f9:d8:3e:e9:32:eb:71:1f:a6:48:55:d2:8c: 2f:5d:e2:fc:6a:1a:a0:2f:48:aa:98:3d:66:7f:61: 7c:87:45:bf:aa:72:7c:d3:cc:82:d5:6a:b5:cf:e5: f5:72:f8:ab:8f:aa:e8:fa:96:9f:af:1c:5c:3e:a4: fa:a0:dc:51:5f:1d:7e:16:1f:3d:ab:c4:46:97:8b: a0:65:c4:ca:ef:68:a3:82:e8:96:7f:ce:42:4c:5f: 37:94:5a:8b:9c:af:72:0f:30:26:dc:05:55:36:d1: 7c:9d:ce:b5:c9:27:49:48:66:55:ae:b0:ac:ac:59: 2f:0a:c0:6c:cf:f4:e2:18:e5:84:76:82:8a:6c:df: 3f:6c:8a:45:ab:32:50:5b:1b:e1:43:05:ce:d4:4d: f7:5b:14:13:4d:47:e2:46:32:16:8c:b3:72:f2:dd: d9:c0:5a:d6:93:6e:13:85:ba:35:5f:b6:b8:f9:46: 94:99:d4:11:24:12:fb:5f:cc:aa:56:6f:97:d4:14: cd:65:f0:b0:8b:88:60:52:cb:85:1c:64:00:0d:9f: 38:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:7A:73:69:FA:AB:7A:59:36:DA:E8:69:16:8A:1D:96:9F:BD:E4:5C X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:52:f0:26:ba:07:fe:5e:27:3c:49:88:0e:ee:47:05:32:96: 29:99:2a:96:77:6b:ad:87:e8:1a:9d:78:66:a8:41:1f:a6:6a: fb:55:27:e7:5c:18:1d:dd:c5:2b:fe:90:7b:f0:2f:e1:98:95: ea:ac:34:e4:89:c1:b2:ef:b8:0f:f7:6f:c4:89:03:b4:00:90: 1f:85:5b:d9:2a:00:e7:f2:8f:ae:81:05:be:77:f2:bb:9a:2d: dd:51:17:e7:ff:55:e0:3a:f5:16:14:26:8f:44:0b:ef:52:3f: 9e:37:9b:f4:80:4d:32:b7:f0:f0:ef:c2:fa:bf:7a:65:66:ab: 48:99:6a:3e:c6:9f:89:f3:26:d3:4f:4b:7d:88:49:32:40:9b: ab:df:78:5b:ff:68:1c:cd:ae:d7:aa:18:7f:c0:0e:b6:ff:2e: 58:60:92:ee:8b:d2:f1:c8:4e:1b:49:96:4e:f2:63:61:05:15: fa:50:f5:5c:26:4d:48:56:d0:2f:d0:6a:ce:13:5f:9c:2d:9f: e9:6e:1d:b5:b4:ba:d2:c6:3e:47:a6:f0:6f:60:98:f5:7b:49: c5:32:95:8a:bc:ad:cc:3c:4b:e6:c6:4d:22:79:48:96:6f:52: 32:1d:56:53:ed:cc:f6:52:49:b7:57:d2:ad:d0:5c:f7:4b:57: 69:9c:a1:b9 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUeFqWgvdFiHuSvGW3XKGwfW7umTwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDEyNDIzMzA1NloX DTI2MDEyNjAwMDk1NlowMzExMC8GA1UEAxMoRDM3QTczNjlGQUFCN0E1OTM2REFF ODY5MTY4QTFEOTY5RkJERTQ1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMejXdcbIxunI9SQM4jLib/vBSQ14YlHBKUlURVXqxvymhoFvASPlU+tZ2xR TeT52D7pMutxH6ZIVdKML13i/GoaoC9Iqpg9Zn9hfIdFv6pyfNPMgtVqtc/l9XL4 q4+q6PqWn68cXD6k+qDcUV8dfhYfPavERpeLoGXEyu9oo4Loln/OQkxfN5Rai5yv cg8wJtwFVTbRfJ3OtcknSUhmVa6wrKxZLwrAbM/04hjlhHaCimzfP2yKRasyUFsb 4UMFztRN91sUE01H4kYyFoyzcvLd2cBa1pNuE4W6NV+2uPlGlJnUESQS+1/MqlZv l9QUzWXwsIuIYFLLhRxkAA2fOMsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTTenNp +qt6WTba6GkWih2Wn73kXDAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABZS8Ca6B/5eJzxJiA7uRwUylimZKpZ3a62H 6BqdeGaoQR+mavtVJ+dcGB3dxSv+kHvwL+GYleqsNOSJwbLvuA/3b8SJA7QAkB+F W9kqAOfyj66BBb538ruaLd1RF+f/VeA69RYUJo9EC+9SP543m/SATTK38PDvwvq/ emVmq0iZaj7Gn4nzJtNPS32ISTJAm6vfeFv/aBzNrteqGH/ADrb/Llhgku6L0vHI ThtJlk7yY2EFFfpQ9VwmTUhW0C/Qas4TX5wtn+luHbW0utLGPkem8G9gmPV7ScUy lYq8rcw8S+bGTSJ5SJZvUjIdVlPtzPZSSbdX0q3QXPdLV2mcobk= -----END CERTIFICATE-----Generated at Sun Jan 25 05:59:17 2026 by rpki-client