$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: BuI7COAbsAcINLVoUm13rrLnvPlNOrGwd41Kf6oL4Ow= Subject key identifier: 77:61:AA:A9:CE:D9:32:F6:65:4F:36:0E:71:C5:1D:A7:95:23:2D:4A Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 6B3C672E0A62447F271FD952C2FC6D7242314D75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0728 Signing time: Mon 03 Nov 2025 23:17:13 +0000 Manifest this update: Mon 03 Nov 2025 23:12:13 +0000 Manifest next update: Wed 05 Nov 2025 02:26:13 +0000 Files and hashes: 1: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 2: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 3: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 4: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 5: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 6: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 7: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 8: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: 69xZFnAAeWlpmOAw4pd+qHY6kwWm6fCwtu0Ek5Rv3Ns=) 9: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 10: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 11: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 02:26:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3c:67:2e:0a:62:44:7f:27:1f:d9:52:c2:fc:6d:72:42:31:4d:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Nov 3 23:12:13 2025 GMT Not After : Nov 5 02:26:13 2025 GMT Subject: CN=7761AAA9CED932F6654F360E71C51DA795232D4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a6:61:46:41:fa:70:13:be:89:e6:25:90:23: 65:06:59:ff:04:95:b9:62:62:e7:9c:45:50:65:36: 44:4b:7c:fc:55:f3:46:ee:aa:65:0c:2a:51:d2:a4: 77:4d:cf:13:df:f0:6e:0a:b4:0c:3b:f4:94:04:91: 0b:9f:40:76:a7:79:63:0d:21:4c:c7:6d:ce:c9:cb: c3:15:e9:e1:33:3f:84:d1:95:bd:bf:c7:25:74:6e: 4d:96:08:6b:0e:9a:7c:be:8e:d7:58:b5:12:36:6f: da:62:09:66:7c:2e:d6:ac:6c:49:73:36:f8:0c:a9: 0c:5d:d9:0d:49:0e:e1:f8:cc:59:0a:e8:21:1a:b9: f1:f2:c5:80:72:65:fc:47:c0:58:00:35:1f:10:45: 7f:bf:95:46:0a:b2:5e:19:c3:21:d6:30:79:38:36: 50:29:ca:8c:30:a3:6a:1e:21:50:b8:d4:3f:52:e4: aa:ea:f9:db:cc:d5:22:45:95:ee:93:0c:45:ab:cc: fe:30:b7:de:a1:43:ba:98:44:87:61:c6:18:1e:62: c0:04:57:95:01:4b:97:01:6f:82:95:34:88:7a:94: d3:94:2f:a2:b4:fc:98:b8:52:a1:83:92:5d:b6:18: 4d:82:42:5e:b5:83:31:44:27:c2:6c:ec:5a:c3:60: e5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:61:AA:A9:CE:D9:32:F6:65:4F:36:0E:71:C5:1D:A7:95:23:2D:4A X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:37:a0:7f:26:62:d3:3e:63:b4:75:da:6a:dd:48:3c:2b:e7: 90:47:e1:9e:92:7a:52:50:ab:7a:13:73:55:25:fe:85:87:70: 44:af:9b:8c:d2:15:00:67:3f:7e:9c:74:7a:0c:b8:ab:76:da: 47:8f:03:a9:9a:c0:aa:c9:2d:f5:ec:dd:00:bd:8a:eb:48:be: fa:36:f7:25:3e:23:81:bc:67:06:3c:89:b9:57:47:9a:1d:9c: 25:e8:a6:31:fa:21:56:3e:d3:1b:7d:fe:b9:00:8f:af:3e:42: 7d:65:a1:f4:1f:19:77:db:4c:d8:e3:2b:ff:af:38:15:15:f3: b5:cb:78:c5:17:b6:bb:c8:1c:5c:f5:ee:1b:0f:df:06:f9:ed: 41:fe:5a:8a:bd:0a:fb:6b:b1:ce:a5:c8:2f:8d:87:52:96:70: db:31:04:d3:2a:b5:b2:de:ee:5e:fe:33:21:15:62:80:94:5d: 53:44:48:91:01:5a:47:f1:a8:76:92:fc:ab:9b:5c:5f:31:dc: cc:c6:eb:fd:8b:dc:b5:5a:62:59:9b:67:41:04:60:67:09:4e: 2b:0a:80:bd:c5:93:bf:59:cb:6f:a6:ed:4b:1b:78:4d:d7:51: 0f:06:8d:74:c6:8c:d7:80:c2:2d:93:67:81:6d:1d:3e:1e:6d: ab:4d:e4:46 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUazxnLgpiRH8nH9lSwvxtckIxTXUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MTEwMzIzMTIxM1oX DTI1MTEwNTAyMjYxM1owMzExMC8GA1UEAxMoNzc2MUFBQTlDRUQ5MzJGNjY1NEYz NjBFNzFDNTFEQTc5NTIzMkQ0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+mYUZB+nATvonmJZAjZQZZ/wSVuWJi55xFUGU2REt8/FXzRu6qZQwqUdKk d03PE9/wbgq0DDv0lASRC59Adqd5Yw0hTMdtzsnLwxXp4TM/hNGVvb/HJXRuTZYI aw6afL6O11i1EjZv2mIJZnwu1qxsSXM2+AypDF3ZDUkO4fjMWQroIRq58fLFgHJl /EfAWAA1HxBFf7+VRgqyXhnDIdYweTg2UCnKjDCjah4hULjUP1Lkqur528zVIkWV 7pMMRavM/jC33qFDuphEh2HGGB5iwARXlQFLlwFvgpU0iHqU05QvorT8mLhSoYOS XbYYTYJCXrWDMUQnwmzsWsNg5V8CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBR3Yaqp ztky9mVPNg5xxR2nlSMtSjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG03oH8mYtM+Y7R12mrdSDwr55BH4Z6SelJQ q3oTc1Ul/oWHcESvm4zSFQBnP36cdHoMuKt22kePA6mawKrJLfXs3QC9iutIvvo2 9yU+I4G8ZwY8iblXR5odnCXopjH6IVY+0xt9/rkAj68+Qn1lofQfGXfbTNjjK/+v OBUV87XLeMUXtrvIHFz17hsP3wb57UH+Woq9Cvtrsc6lyC+Nh1KWcNsxBNMqtbLe 7l7+MyEVYoCUXVNESJEBWkfxqHaS/KubXF8x3MzG6/2L3LVaYlmbZ0EEYGcJTisK gL3Fk79Zy2+m7UsbeE3XUQ8GjXTGjNeAwi2TZ4FtHT4ebatN5EY= -----END CERTIFICATE-----Generated at Tue Nov 4 08:11:19 2025 by rpki-client