$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: 5bEjavo2ujBsh4Fc6HyWI7PFnYS6kWPCm4d4yD2G0kw= Subject key identifier: F0:7D:1A:8A:0B:56:2B:07:3A:7C:DA:89:28:51:CE:5B:90:97:A0:7E Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 6C8342A8723C08E0927553726B0BCCBB5B7C4D48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 06AF Signing time: Thu 07 Aug 2025 17:10:01 +0000 Manifest this update: Thu 07 Aug 2025 17:05:01 +0000 Manifest next update: Fri 08 Aug 2025 20:27:01 +0000 Files and hashes: 1: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) 2: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: 0wO9I3E5udkHyh6SjjLcfQtmIaQNlm4gkyE2APNFXSw=) 3: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) 4: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 5: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 6: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 7: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 8: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 9: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 10: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) 11: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 20:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:83:42:a8:72:3c:08:e0:92:75:53:72:6b:0b:cc:bb:5b:7c:4d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 7 17:05:01 2025 GMT Not After : Aug 8 20:27:01 2025 GMT Subject: CN=F07D1A8A0B562B073A7CDA892851CE5B9097A07E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:79:2f:94:14:3a:5f:52:b2:32:c1:d3:4a:2b: 86:f7:13:fb:d6:c0:fb:47:9e:f3:e4:16:0b:71:54: 3c:5b:5b:d9:89:c7:50:75:8e:3c:7e:32:ac:79:7a: d4:e2:68:52:08:ef:93:e1:b4:66:71:a0:8b:ed:f1: 78:8e:fb:19:e9:c2:7e:07:1d:d5:29:43:75:3d:ae: 65:01:1a:f8:58:47:15:44:69:d8:5b:38:fb:0f:5e: d0:dd:4c:71:59:3b:f9:3a:ff:08:5a:16:4c:6d:01: 4b:db:f7:7a:ae:96:73:26:d9:46:67:18:a2:a7:af: b2:0f:1e:4a:2a:9e:2d:ba:7c:84:5c:ca:2b:43:a0: 30:87:df:b4:fa:e4:84:03:19:ce:e6:4e:ff:9d:68: 6a:d6:b0:f7:ee:1d:83:b9:60:21:a7:2d:5a:02:c4: fa:b9:e8:8d:e7:bf:71:83:3c:d8:70:a7:40:4d:ca: 5e:ea:df:df:7d:20:74:4f:e6:4c:ce:f7:de:6a:04: dc:82:54:13:19:32:9a:6f:38:12:14:0c:41:2d:1d: 93:bd:03:e9:b4:50:5a:75:6e:82:e8:08:e0:02:81: 58:e0:ea:2e:15:bf:95:09:87:18:c6:e0:21:75:86: 93:18:7b:87:f3:cc:cc:45:ce:8b:ab:bc:45:a8:25: 4f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7D:1A:8A:0B:56:2B:07:3A:7C:DA:89:28:51:CE:5B:90:97:A0:7E X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:26:1d:f7:92:4e:1e:88:e0:7a:d0:b0:d0:35:a5:05:73:06: d4:4d:31:03:54:2f:f4:c1:30:ce:99:01:c8:cb:98:6b:42:31: 74:15:99:32:75:e1:07:42:ec:41:8f:74:5f:3f:89:9d:a9:e2: ed:f8:0d:d1:4b:0c:c3:bf:4e:fe:93:b1:cb:9b:1c:34:75:65: 03:02:17:88:71:9e:db:77:96:85:63:fa:b7:26:45:bc:77:d8: 48:74:00:3b:4b:44:de:0c:92:b2:87:9d:76:5f:6a:fa:c5:8e: 93:de:07:34:e2:26:7b:09:d4:b5:2c:ea:2d:2a:eb:fc:46:a2: 5b:b0:3b:43:4b:c8:26:bd:25:ed:8f:75:0c:98:f0:cf:55:49: 2d:43:2a:87:3c:15:bb:e3:f2:8e:2c:d6:8c:f6:1c:9b:06:eb: e4:41:fc:7d:4b:4a:2c:f3:c0:a4:6a:38:4f:62:24:24:04:6c: 9a:dc:1f:93:e2:3e:60:df:f4:a3:b7:e1:b7:79:1d:b4:ee:85: c3:91:ee:e6:b6:85:b3:0f:ac:de:6b:8c:70:d8:90:7c:94:c8: 24:d7:ab:65:18:47:cd:d0:03:2e:28:30:eb:a8:b9:8b:ec:d4: 3a:b7:8c:eb:c9:91:03:28:09:ca:a8:2a:5f:c0:0f:f7:ab:87: f5:24:81:55 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUbINCqHI8COCSdVNyawvMu1t8TUgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgwNzE3MDUwMVoX DTI1MDgwODIwMjcwMVowMzExMC8GA1UEAxMoRjA3RDFBOEEwQjU2MkIwNzNBN0NE QTg5Mjg1MUNFNUI5MDk3QTA3RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOJ5L5QUOl9SsjLB00orhvcT+9bA+0ee8+QWC3FUPFtb2YnHUHWOPH4yrHl6 1OJoUgjvk+G0ZnGgi+3xeI77GenCfgcd1SlDdT2uZQEa+FhHFURp2Fs4+w9e0N1M cVk7+Tr/CFoWTG0BS9v3eq6WcybZRmcYoqevsg8eSiqeLbp8hFzKK0OgMIfftPrk hAMZzuZO/51oataw9+4dg7lgIactWgLE+rnojee/cYM82HCnQE3KXurf330gdE/m TM733moE3IJUExkymm84EhQMQS0dk70D6bRQWnVugugI4AKBWODqLhW/lQmHGMbg IXWGkxh7h/PMzEXOi6u8RaglTzsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTwfRqK C1YrBzp82okoUc5bkJegfjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJgmHfeSTh6I4HrQsNA1pQVzBtRNMQNUL/TB MM6ZAcjLmGtCMXQVmTJ14QdC7EGPdF8/iZ2p4u34DdFLDMO/Tv6TscubHDR1ZQMC F4hxntt3loVj+rcmRbx32Eh0ADtLRN4MkrKHnXZfavrFjpPeBzTiJnsJ1LUs6i0q 6/xGoluwO0NLyCa9Je2PdQyY8M9VSS1DKoc8Fbvj8o4s1oz2HJsG6+RB/H1LSizz wKRqOE9iJCQEbJrcH5PiPmDf9KO34bd5HbTuhcOR7ua2hbMPrN5rjHDYkHyUyCTX q2UYR83QAy4oMOuouYvs1Dq3jOvJkQMoCcqoKl/AD/erh/UkgVU= -----END CERTIFICATE-----Generated at Fri Aug 8 10:20:27 2025 by rpki-client