$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: 1a+KcvVETyhsfPenf69G6YBM5cSR9l4Oa/GJ2uiSglI= Subject key identifier: 2C:F3:AC:E9:2E:A8:4F:CE:CD:F3:5B:97:16:3F:59:DE:80:4F:D8:D6 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 27555EC0DFDEDB274B9962E05D463942CD1A5618 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: F8 Signing time: Tue 12 May 2026 05:16:33 +0000 Manifest this update: Tue 12 May 2026 05:11:33 +0000 Manifest next update: Wed 13 May 2026 07:09:33 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: TV1ulxIOsm7FDxstKZ+/63+DrXGkLmj0oQQLRfxiQL4=) 2: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) 3: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:09:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:55:5e:c0:df:de:db:27:4b:99:62:e0:5d:46:39:42:cd:1a:56:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: May 12 05:11:33 2026 GMT Not After : May 13 07:09:33 2026 GMT Subject: CN=2CF3ACE92EA84FCECDF35B97163F59DE804FD8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1d:d2:25:f7:6e:13:bf:2d:e9:f3:40:39:0c: e3:fe:fc:31:a0:ee:5b:6b:65:a2:5b:61:9a:b6:7f: b3:89:75:8b:cf:2c:2d:29:12:a3:79:7d:fb:6f:d6: 78:c1:0f:5a:22:e4:c2:e6:ac:be:55:39:1c:75:86: 42:0b:76:bb:6f:8f:6a:cd:4b:81:b5:a2:e1:3e:31: d0:f1:3f:ff:03:55:02:57:c3:8b:44:e8:53:a6:3e: ee:ab:f4:df:ab:66:a7:bf:df:cc:f5:38:24:29:6e: 9d:a0:ff:37:57:b0:c3:35:25:c4:7a:c0:12:db:85: 3c:50:01:11:cd:72:b3:a8:81:6f:ff:a0:5e:72:d4: 35:76:42:49:20:a8:f0:cd:6a:ec:aa:e9:c9:35:be: ba:f8:4e:3e:39:6d:b3:ae:ed:d0:a9:14:c1:8d:be: db:48:8d:48:44:4b:07:84:70:32:dd:b5:22:b5:d4: 68:0e:2e:a5:13:a8:1f:71:3a:a5:b5:8a:ec:dc:26: 7e:b6:81:c4:b7:b9:9f:d6:cc:9a:c7:12:7c:d9:83: 97:56:0a:d2:26:c6:48:93:ce:5f:ee:01:92:e8:f4: af:48:55:2f:cc:bd:d4:53:5f:86:51:fe:7e:30:2b: 49:3c:e4:d2:ca:f0:d3:6b:04:3e:5b:9d:ae:ea:a8: 64:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F3:AC:E9:2E:A8:4F:CE:CD:F3:5B:97:16:3F:59:DE:80:4F:D8:D6 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:7b:02:7c:8b:d3:e5:b3:d7:af:07:f0:1c:52:61:d3:89:a1: 1a:c4:89:f9:c9:b1:61:a2:66:e2:8a:0b:4c:23:78:c3:e6:22: ed:58:58:26:da:cb:9e:42:6c:5f:88:90:b5:39:a3:79:bd:07: 14:2a:81:33:c0:df:ed:e9:1f:ca:63:76:be:9a:46:c2:ef:47: 60:8f:6b:7c:26:21:12:31:7b:1f:64:e0:f1:9e:82:b3:b0:15: fa:a2:b3:2c:36:ad:d5:bc:63:19:46:97:ec:fd:7d:9c:56:60: 5f:c7:9a:f6:03:06:28:9a:40:a1:33:bc:a4:54:4b:de:e7:21: 8e:82:7d:c2:45:04:e3:7f:50:78:e3:7a:67:bb:d8:82:f7:0f: 94:49:fc:59:e0:0a:e7:cf:b4:92:ea:25:8b:54:48:46:6a:ac: 04:fd:bc:03:3f:9a:f8:1c:77:79:2e:7d:72:24:ae:37:b8:04: 5e:3d:7c:e6:71:bc:51:2d:0b:72:56:a8:43:47:a4:e4:25:0c: 59:9a:b4:ee:08:64:71:27:29:59:65:83:48:5b:46:43:ac:d5: 08:40:bd:12:e9:70:aa:47:f8:15:dd:81:ca:df:da:54:94:c9: 2b:95:80:c1:ad:0c:dc:de:ed:b9:eb:63:21:84:9d:ab:28:69: c9:f0:30:7c -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUJ1VewN/e2ydLmWLgXUY5Qs0aVhgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDUxMjA1MTEzM1oX DTI2MDUxMzA3MDkzM1owMzExMC8GA1UEAxMoMkNGM0FDRTkyRUE4NEZDRUNERjM1 Qjk3MTYzRjU5REU4MDRGRDhENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcd0iX3bhO/LenzQDkM4/78MaDuW2tlolthmrZ/s4l1i88sLSkSo3l9+2/W eMEPWiLkwuasvlU5HHWGQgt2u2+Pas1LgbWi4T4x0PE//wNVAlfDi0ToU6Y+7qv0 36tmp7/fzPU4JClunaD/N1ewwzUlxHrAEtuFPFABEc1ys6iBb/+gXnLUNXZCSSCo 8M1q7KrpyTW+uvhOPjlts67t0KkUwY2+20iNSERLB4RwMt21IrXUaA4upROoH3E6 pbWK7NwmfraBxLe5n9bMmscSfNmDl1YK0ibGSJPOX+4Bkuj0r0hVL8y91FNfhlH+ fjArSTzk0srw02sEPludruqoZO0CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQs86zp LqhPzs3zW5cWP1negE/Y1jAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHB7AnyL0+Wz168H8BxSYdOJoRrEifnJsWGi ZuKKC0wjeMPmIu1YWCbay55CbF+IkLU5o3m9BxQqgTPA3+3pH8pjdr6aRsLvR2CP a3wmIRIxex9k4PGegrOwFfqisyw2rdW8YxlGl+z9fZxWYF/HmvYDBiiaQKEzvKRU S97nIY6CfcJFBON/UHjjeme72IL3D5RJ/FngCufPtJLqJYtUSEZqrAT9vAM/mvgc d3kufXIkrje4BF49fOZxvFEtC3JWqENHpOQlDFmatO4IZHEnKVllg0hbRkOs1QhA vRLpcKpH+BXdgcrf2lSUySuVgMGtDNze7bnrYyGEnasoacnwMHw= -----END CERTIFICATE-----Generated at Wed May 13 00:38:50 2026 by rpki-client