$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: chFHjhUtbi8ciPiCWRBYp4cLii5DrjcE4ttDur3yzPw= Subject key identifier: D9:CD:66:85:F3:03:E4:AB:FC:AB:5B:AB:75:63:90:38:07:1E:A8:9B Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 71A8DFE864EA77B79E5C6ABF0B2EA76E8F226FF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0818 Signing time: Sat 18 Apr 2026 21:41:32 +0000 Manifest this update: Sat 18 Apr 2026 21:36:32 +0000 Manifest next update: Sun 19 Apr 2026 22:36:32 +0000 Files and hashes: 1: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: q4+HThmT9E3VYsYlV1LZ6h3gKQGL94AXnCSEdaHUnRc=) 2: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 3: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 4: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 5: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 6: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 7: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 8: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 9: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 10: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 11: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 22:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a8:df:e8:64:ea:77:b7:9e:5c:6a:bf:0b:2e:a7:6e:8f:22:6f:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Apr 18 21:36:32 2026 GMT Not After : Apr 19 22:36:32 2026 GMT Subject: CN=D9CD6685F303E4ABFCAB5BAB75639038071EA89B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e0:d9:de:09:bc:2d:34:46:6c:37:77:0e:a0: ab:d2:3e:e1:f8:bb:86:dd:47:55:30:f4:16:01:f5: 7a:c8:33:09:77:1b:2d:bb:8d:bd:18:ff:af:58:11: c8:60:99:04:d1:c9:a4:d1:2d:15:71:26:9b:1c:a4: 43:c9:21:c4:69:65:01:19:04:ee:99:4d:25:7a:b7: 3a:3e:76:3a:95:12:60:48:dd:08:d7:45:bd:4f:1b: b1:3c:c2:94:63:2e:0f:70:db:43:07:65:33:8d:8e: 97:e5:b2:b1:d4:82:fa:9a:47:82:f0:fa:f8:ae:bd: b6:c0:03:2b:90:76:a8:75:70:2b:be:6a:99:39:a9: 67:56:47:0f:f1:f0:ce:eb:3b:ee:5a:a9:2b:2d:66: 3f:0e:09:36:67:2a:d7:18:a0:47:f9:ff:95:40:35: b3:95:6a:59:6c:38:8d:5e:59:0c:ec:ad:a8:52:1d: fe:71:68:70:65:40:89:1a:45:5a:09:30:ef:bf:9b: 82:f7:de:b5:ea:a4:23:81:0b:64:ba:b7:46:5f:92: 7c:bf:ff:e0:cb:18:0d:62:28:b9:f6:4d:86:6b:e2: 3a:50:04:b9:a4:95:d2:96:1c:6b:fd:0f:95:4b:74: 95:0a:e8:d0:1b:25:12:5f:b6:59:7b:14:26:e8:15: 18:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CD:66:85:F3:03:E4:AB:FC:AB:5B:AB:75:63:90:38:07:1E:A8:9B X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:d4:d3:9c:6b:1c:05:4f:48:c7:21:c7:8a:70:2e:44:f1:e7: 56:d5:c1:0c:bb:62:9d:cd:e7:e3:35:97:33:54:c8:bd:ed:37: 95:72:b1:99:6e:19:a3:6c:e5:fc:ce:c8:10:0e:95:2d:a9:d0: f6:0a:b4:26:9b:0c:a3:0e:2b:6f:95:a3:c6:e7:9e:e7:45:4f: b6:ff:49:a7:fa:1c:e6:98:11:d8:a5:cb:ce:d1:a3:e3:71:5a: 60:43:4f:39:df:4b:fe:f5:17:28:6b:f9:9b:50:cb:0d:3b:1e: 9b:97:a6:a2:a8:7b:3a:4e:66:99:1b:ce:dc:df:40:03:76:6d: e3:9e:78:4e:99:c9:84:07:93:26:a6:e4:74:8a:ab:05:3a:3a: 39:6e:ea:be:a4:51:ad:be:ee:ec:4c:79:26:0f:c8:af:e0:bd: 44:69:10:d2:a4:c7:c9:15:6d:d7:93:24:74:0c:b3:2d:9b:41: f4:6d:23:f6:11:05:f1:0c:a3:6e:3d:7f:45:d8:a8:f5:7f:27: 63:81:3b:4a:20:de:4b:d7:5d:79:17:f6:e1:3e:74:ed:33:94: 4d:5f:10:99:51:e9:48:fe:4c:26:90:a2:8b:af:50:cd:83:60: ca:fc:23:26:85:8e:93:c1:29:35:11:9f:83:57:51:5d:f8:27: ed:68:9d:a2 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUcajf6GTqd7eeXGq/Cy6nbo8ib/YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDQxODIxMzYzMloX DTI2MDQxOTIyMzYzMlowMzExMC8GA1UEAxMoRDlDRDY2ODVGMzAzRTRBQkZDQUI1 QkFCNzU2MzkwMzgwNzFFQTg5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANrg2d4JvC00Rmw3dw6gq9I+4fi7ht1HVTD0FgH1esgzCXcbLbuNvRj/r1gR yGCZBNHJpNEtFXEmmxykQ8khxGllARkE7plNJXq3Oj52OpUSYEjdCNdFvU8bsTzC lGMuD3DbQwdlM42Ol+WysdSC+ppHgvD6+K69tsADK5B2qHVwK75qmTmpZ1ZHD/Hw zus77lqpKy1mPw4JNmcq1xigR/n/lUA1s5VqWWw4jV5ZDOytqFId/nFocGVAiRpF Wgkw77+bgvfeteqkI4ELZLq3Rl+SfL//4MsYDWIoufZNhmviOlAEuaSV0pYca/0P lUt0lQro0BslEl+2WXsUJugVGM8CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTZzWaF 8wPkq/yrW6t1Y5A4Bx6omzAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIbU05xrHAVPSMchx4pwLkTx51bVwQy7Yp3N 5+M1lzNUyL3tN5VysZluGaNs5fzOyBAOlS2p0PYKtCabDKMOK2+Vo8bnnudFT7b/ Saf6HOaYEdily87Ro+NxWmBDTznfS/71Fyhr+ZtQyw07HpuXpqKoezpOZpkbztzf QAN2beOeeE6ZyYQHkyam5HSKqwU6Ojlu6r6kUa2+7uxMeSYPyK/gvURpENKkx8kV bdeTJHQMsy2bQfRtI/YRBfEMo249f0XYqPV/J2OBO0og3kvXXXkX9uE+dO0zlE1f EJlR6Uj+TCaQoouvUM2DYMr8IyaFjpPBKTURn4NXUV34J+1onaI= -----END CERTIFICATE-----Generated at Sun Apr 19 08:19:33 2026 by rpki-client