$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: 739TaLdpNA8mGpNc+57NAvUTibGcFBbNB9poXUc7Dbk= Subject key identifier: D1:60:F3:35:3F:D1:A3:3D:41:12:17:4B:9E:44:2C:79:2B:59:42:FA Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 4D4892EFF2331C6686D5DC2B577431004E036A20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0873 Signing time: Fri 12 Jun 2026 19:13:59 +0000 Manifest this update: Fri 12 Jun 2026 19:08:59 +0000 Manifest next update: Sat 13 Jun 2026 20:07:59 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 2: 34352e3131372e3130302e302f32322d3234203d3e2038383838.roa (hash: voPiakdEWPirMq/WncFYq7Upw23ZrCEb5LKsM3/mXvw=) 3: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 4: 34352e3131372e3130302e302f32322d3234203d3e2033323538.roa (hash: KWTsLxWIFcXKjNjL6LfQgdvsCq/JmPqGWhOtCfjvM28=) 5: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 6: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 7: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 8: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 9: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 10: 3130332e35372e3136342e302f32322d3234203d3e2033323538.roa (hash: UqIC9u7BB9Id3IMbYgH9FX+luoFs+hXH+2V/k9wpOTU=) 11: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: zwn4TKfhjTXmB4d249towbwKlk9LCArAm5ATc201/DQ=) 12: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 13: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 14: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 20:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:48:92:ef:f2:33:1c:66:86:d5:dc:2b:57:74:31:00:4e:03:6a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Jun 12 19:08:59 2026 GMT Not After : Jun 13 20:07:59 2026 GMT Subject: CN=D160F3353FD1A33D4112174B9E442C792B5942FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:04:e4:2f:75:84:15:1e:5f:c2:50:84:17: d8:08:84:54:d4:6c:0f:dd:95:30:82:a6:39:30:7f: 4c:23:ac:54:4b:c7:fc:93:5e:bf:a8:25:28:b6:ed: 88:60:1e:66:1d:0d:e3:70:60:cb:87:52:a4:e2:51: 88:17:97:08:8d:ed:e0:48:f1:51:99:d1:9a:50:1a: da:ef:cc:55:2a:91:24:31:b4:6e:89:54:81:e1:4b: c5:21:7f:16:e8:8f:7f:7a:91:52:fd:8e:41:a7:1b: e9:33:d0:9e:9d:bb:3e:45:bd:75:a8:e8:9c:19:cf: fb:c9:56:08:b0:62:7d:10:04:35:98:03:ea:b3:c4: b7:0c:18:f0:9a:30:fd:a9:21:ec:49:74:b5:cf:4d: 7d:c2:74:41:38:3e:49:b2:4b:b6:f3:62:c5:8f:8d: ff:27:34:3c:a4:b4:d8:26:0d:c1:19:ca:27:6a:c4: 32:76:37:6b:2e:70:ac:77:c5:57:67:da:05:c8:33: ff:d9:a8:c6:6a:b7:d2:7f:9c:21:2b:d9:4c:bf:4f: 23:17:ce:ec:c9:8b:9e:27:20:59:a1:1f:bc:8b:ef: c7:69:f1:cf:c5:69:23:92:7a:f1:0d:0f:4f:4a:0c: 0c:99:fc:76:cb:dd:3b:dd:31:c5:b2:b1:10:8f:d7: 23:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:60:F3:35:3F:D1:A3:3D:41:12:17:4B:9E:44:2C:79:2B:59:42:FA X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:01:88:b4:fb:44:4e:1a:4f:e2:63:9d:ef:e0:77:ea:0d:34: dc:6e:6a:85:36:01:13:02:1b:de:6e:0e:1a:61:f6:6a:38:17: 69:c3:23:a4:41:86:83:bb:d6:2e:9d:40:61:c0:61:71:d8:d3: ea:07:76:8a:ce:3d:48:3f:8b:12:eb:fe:df:aa:ba:4b:cc:28: 6a:27:e6:6a:d8:ad:4c:ed:df:58:5c:82:7f:00:af:f3:26:ee: 24:12:a0:71:84:ec:d7:f7:ac:da:ee:51:ee:e4:e4:ea:99:db: 82:b6:51:41:33:a9:61:b5:7c:13:a3:9a:36:f1:11:5e:ca:57: 29:d3:63:bf:a4:b3:21:85:8c:b9:24:85:d0:b7:76:da:ed:1d: fa:d7:67:c8:5b:30:08:c4:f1:1e:22:13:d5:4d:eb:76:f2:b4: 12:b9:3f:c7:74:a0:84:65:f9:0b:ad:9a:86:7b:6c:85:95:c2: b7:a5:7f:22:de:a2:a7:09:5f:35:9b:85:74:d1:06:17:51:66: 9d:9a:97:83:77:d3:22:9d:90:fe:28:47:e7:18:86:5d:a2:15: a5:77:8e:f7:b0:68:ef:47:8a:a9:52:dc:c2:31:47:f7:1c:c8: 44:ef:b2:a4:a9:0a:c5:7a:af:43:06:d2:7e:77:e4:b4:1b:7e: ec:0d:f2:88 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUTUiS7/IzHGaG1dwrV3QxAE4DaiAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDYxMjE5MDg1OVoX DTI2MDYxMzIwMDc1OVowMzExMC8GA1UEAxMoRDE2MEYzMzUzRkQxQTMzRDQxMTIx NzRCOUU0NDJDNzkyQjU5NDJGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ7EBOQvdYQVHl/CUIQX2AiEVNRsD92VMIKmOTB/TCOsVEvH/JNev6glKLbt iGAeZh0N43Bgy4dSpOJRiBeXCI3t4EjxUZnRmlAa2u/MVSqRJDG0bolUgeFLxSF/ FuiPf3qRUv2OQacb6TPQnp27PkW9dajonBnP+8lWCLBifRAENZgD6rPEtwwY8Jow /akh7El0tc9NfcJ0QTg+SbJLtvNixY+N/yc0PKS02CYNwRnKJ2rEMnY3ay5wrHfF V2faBcgz/9moxmq30n+cISvZTL9PIxfO7MmLnicgWaEfvIvvx2nxz8VpI5J68Q0P T0oMDJn8dsvdO90xxbKxEI/XI48CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTRYPM1 P9GjPUESF0ueRCx5K1lC+jAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIUBiLT7RE4aT+Jjne/gd+oNNNxuaoU2ARMC G95uDhph9mo4F2nDI6RBhoO71i6dQGHAYXHY0+oHdorOPUg/ixLr/t+qukvMKGon 5mrYrUzt31hcgn8Ar/Mm7iQSoHGE7Nf3rNruUe7k5OqZ24K2UUEzqWG1fBOjmjbx EV7KVynTY7+ksyGFjLkkhdC3dtrtHfrXZ8hbMAjE8R4iE9VN63bytBK5P8d0oIRl +QutmoZ7bIWVwrelfyLeoqcJXzWbhXTRBhdRZp2al4N30yKdkP4oR+cYhl2iFaV3 jvewaO9HiqlS3MIxR/ccyETvsqSpCsV6r0MG0n535LQbfuwN8og= -----END CERTIFICATE-----Generated at Sat Jun 13 07:21:23 2026 by rpki-client