$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: B0pheuXUzkddf9UzXFR5QPTHj+oEwD8b81Fd7anTMnQ= Subject key identifier: 66:C8:1B:8F:F9:B1:30:4A:5B:46:A9:0A:90:70:F9:3B:42:3D:EE:25 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 640A8779A099CBE0DC77F1018468385919921DB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 07D0 Signing time: Sun 01 Mar 2026 21:06:30 +0000 Manifest this update: Sun 01 Mar 2026 21:01:30 +0000 Manifest next update: Mon 02 Mar 2026 21:48:30 +0000 Files and hashes: 1: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 2: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 3: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 4: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 5: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 6: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 7: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 8: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 9: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: X4Sgdc1/qv+S3t0v7MZApekPDWL61+o97/6msHmh+AE=) 10: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 11: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 21:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:0a:87:79:a0:99:cb:e0:dc:77:f1:01:84:68:38:59:19:92:1d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Mar 1 21:01:30 2026 GMT Not After : Mar 2 21:48:30 2026 GMT Subject: CN=66C81B8FF9B1304A5B46A90A9070F93B423DEE25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5c:fb:0a:56:ba:5a:94:8b:ae:7d:2b:18:50: 9e:e7:3b:f6:1f:60:e0:2c:63:e6:5b:a6:db:56:c0: 74:b8:a8:98:8a:e0:4d:d1:43:a3:a8:7b:ce:76:8d: 4f:fe:3e:48:eb:03:f1:10:10:00:eb:d9:2d:f8:bb: 81:51:44:d7:38:a8:6e:88:3d:42:3e:e9:22:8d:1e: 10:3e:79:41:7f:b7:9f:5a:3d:13:23:41:e3:e5:86: 15:57:4a:ad:ab:21:57:3a:52:9d:44:bc:c4:59:3f: 45:48:55:7f:3d:66:98:74:03:26:10:6b:e0:d4:69: d1:7c:ac:1f:5a:56:8e:6c:be:8b:92:e9:cb:8f:ea: c2:62:70:4a:d8:53:f0:6c:ab:1c:cb:65:8e:05:4f: 51:c8:c6:a8:3a:46:56:e1:25:0b:79:8f:dd:54:70: 82:bb:07:af:ae:bc:5e:7d:bd:88:00:3d:89:ff:8f: 29:f7:fb:34:db:40:b2:11:60:ed:b2:8d:0a:f2:32: 87:db:47:82:80:33:3d:e8:07:31:92:31:eb:af:3c: 0c:61:a2:3c:26:55:d0:db:64:58:5f:d2:48:c0:65: 69:47:03:eb:25:ae:5a:0d:5f:87:8f:35:cd:23:4f: e6:b9:61:85:a9:01:ad:12:19:65:92:e6:70:7e:b7: f1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C8:1B:8F:F9:B1:30:4A:5B:46:A9:0A:90:70:F9:3B:42:3D:EE:25 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:54:72:ba:95:57:c1:99:22:fe:e9:2f:47:45:09:c5:f7:4b: c4:02:d4:15:cf:56:48:b8:91:32:de:aa:f7:4f:15:6d:7e:6c: 28:c0:3a:1b:e4:11:de:63:f4:cc:02:58:f8:2c:7d:dd:ea:3b: ce:b9:cd:54:1f:9f:64:b4:f8:7b:f8:b5:7e:83:fc:da:5f:c1: df:c1:c9:e0:e0:d5:c1:da:1b:e2:44:84:f0:d9:89:48:bd:dd: 0e:10:25:2e:33:83:1b:38:14:77:43:52:a2:34:a0:6a:46:ac: 56:62:6f:35:66:fa:6a:0b:30:33:9d:ef:af:73:87:61:9d:23: 20:e5:97:be:e0:aa:cb:d1:1a:f5:5b:96:4a:20:f0:50:a1:17: 5f:63:cc:76:25:ff:30:37:70:b3:ca:0a:eb:a0:45:5f:5f:fe: f2:d3:04:3b:6e:4b:a7:9b:7a:92:76:a7:03:44:67:08:77:a1: 5c:b2:ad:c8:e5:31:9a:09:81:ff:be:12:29:9f:97:de:c5:b4: 3d:b8:72:6e:b7:62:0e:be:79:fb:54:d0:24:0d:f7:ef:a7:0d: 13:83:6a:70:cf:c5:3f:36:73:53:88:02:34:34:b7:b3:21:26: 7e:77:17:a8:69:ca:9c:c7:bf:74:51:b3:48:47:05:33:b7:73: 1d:62:3d:43 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUZAqHeaCZy+Dcd/EBhGg4WRmSHbIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDMwMTIxMDEzMFoX DTI2MDMwMjIxNDgzMFowMzExMC8GA1UEAxMoNjZDODFCOEZGOUIxMzA0QTVCNDZB OTBBOTA3MEY5M0I0MjNERUUyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdc+wpWulqUi659KxhQnuc79h9g4Cxj5lum21bAdLiomIrgTdFDo6h7znaN T/4+SOsD8RAQAOvZLfi7gVFE1ziobog9Qj7pIo0eED55QX+3n1o9EyNB4+WGFVdK rashVzpSnUS8xFk/RUhVfz1mmHQDJhBr4NRp0XysH1pWjmy+i5Lpy4/qwmJwSthT 8GyrHMtljgVPUcjGqDpGVuElC3mP3VRwgrsHr668Xn29iAA9if+PKff7NNtAshFg 7bKNCvIyh9tHgoAzPegHMZIx6688DGGiPCZV0NtkWF/SSMBlaUcD6yWuWg1fh481 zSNP5rlhhakBrRIZZZLmcH638QkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRmyBuP +bEwSltGqQqQcPk7Qj3uJTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABhUcrqVV8GZIv7pL0dFCcX3S8QC1BXPVki4 kTLeqvdPFW1+bCjAOhvkEd5j9MwCWPgsfd3qO865zVQfn2S0+Hv4tX6D/Npfwd/B yeDg1cHaG+JEhPDZiUi93Q4QJS4zgxs4FHdDUqI0oGpGrFZibzVm+moLMDOd769z h2GdIyDll77gqsvRGvVblkog8FChF19jzHYl/zA3cLPKCuugRV9f/vLTBDtuS6eb epJ2pwNEZwh3oVyyrcjlMZoJgf++Eimfl97FtD24cm63Yg6+eftU0CQN9++nDROD anDPxT82c1OIAjQ0t7MhJn53F6hpypzHv3RRs0hHBTO3cx1iPUM= -----END CERTIFICATE-----Generated at Mon Mar 2 03:31:40 2026 by rpki-client