This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: 9Go+nC9i4z/PRdpcS8BQiGouY6tjDCofKq9XtKdx+o4= Subject key identifier: 3F:79:20:D1:FD:95:95:A7:E7:4E:82:3A:B9:62:B5:B4:49:B5:29:E8 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 3606440307EBCACEB6B64B1438007716EF178DF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0770 Signing time: Fri 19 Dec 2025 13:38:51 +0000 Manifest this update: Fri 19 Dec 2025 13:33:51 +0000 Manifest next update: Sat 20 Dec 2025 17:28:51 +0000 Files and hashes: 1: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 2: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 3: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 4: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 5: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 6: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 7: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 8: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 9: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 10: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: OvautIAzZ9zP7WxXgT0K2DUoUq0QnSlAmPNLq+O15Fc=) 11: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 17:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:06:44:03:07:eb:ca:ce:b6:b6:4b:14:38:00:77:16:ef:17:8d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Dec 19 13:33:51 2025 GMT Not After : Dec 20 17:28:51 2025 GMT Subject: CN=3F7920D1FD9595A7E74E823AB962B5B449B529E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dd:d4:c4:85:0d:3c:49:89:ed:a1:7b:7e:b3: e2:4d:92:ae:f2:0f:83:cb:3d:fc:ee:c6:4b:5f:13: 99:6c:92:06:93:3f:30:c5:57:2a:79:c9:5a:42:29: 18:f6:af:46:00:12:3b:47:0c:12:5b:60:33:15:d9: 2b:b8:db:2c:16:fa:ef:e5:b2:ed:6b:6d:60:87:ca: 08:4e:dd:5b:c8:d9:a7:e9:e4:ce:4e:33:aa:45:96: 88:53:c1:12:aa:55:fc:a1:39:4b:80:ed:4a:3b:00: 1d:4d:d4:7c:53:74:54:e9:de:a3:67:7f:6f:1c:c3: d3:20:5f:2a:e9:48:cb:f9:c3:3d:74:74:a4:ac:9c: d3:a0:40:e5:3c:a5:c2:d9:d9:ef:cc:cc:6a:b5:5f: a9:9a:3a:4d:1c:05:5a:8d:82:f2:c7:73:f3:55:16: 18:49:3e:a4:e6:17:29:82:f7:86:2a:8a:71:3d:0e: 0e:31:0f:35:3f:07:7d:41:1e:f2:c2:34:e5:7f:a1: ea:3b:a5:bc:a7:97:6b:35:cd:d4:b2:1b:b3:ab:56: 8d:16:b2:19:b1:2f:41:12:c1:d7:bc:cd:94:d1:f7: 7d:4d:73:54:25:15:91:36:d7:77:c4:a0:30:b0:bf: a3:e4:7b:ef:eb:de:6d:c7:fe:be:57:7e:e2:95:3a: 9d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:79:20:D1:FD:95:95:A7:E7:4E:82:3A:B9:62:B5:B4:49:B5:29:E8 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a1:e9:2f:24:fe:89:d2:3a:fb:d8:b0:37:36:a9:31:7a:50: 5c:06:c4:95:3e:1f:2d:0e:83:fa:ae:99:30:00:cd:00:6f:2e: 3a:ee:70:66:bf:a7:03:0d:89:1a:79:d6:ac:17:27:4c:96:39: 97:e9:7f:e2:03:15:43:08:ef:e8:56:59:4e:a2:1c:48:86:82: fe:5c:52:6d:60:8b:c1:60:a0:15:10:f0:aa:e3:79:48:47:98: b5:41:c7:68:88:76:6d:01:34:9a:a7:c7:2c:78:a3:ae:a5:67: 3c:2f:87:4e:fe:6c:3e:c6:fe:83:08:24:7b:f5:cf:d3:96:24: 1d:38:ea:2d:72:38:42:5e:57:7b:a2:8f:24:c9:ad:11:3e:09: 7b:7e:4b:64:c5:03:44:e4:b2:5a:bf:51:9a:6b:f3:cf:c3:ff: e4:ed:00:e3:30:42:e6:5f:8f:9b:92:f8:d4:34:d0:bf:c2:83: 49:c2:be:4d:08:1c:21:4e:97:b9:8c:cb:4b:87:07:5f:18:f7: d7:aa:e3:7b:1f:df:f1:93:15:0c:db:fa:e4:40:a6:62:bb:fa: 36:a7:94:a7:36:49:ee:d5:0b:5e:84:52:73:bf:9f:8e:0f:6e: e3:cf:b9:29:10:7e:e0:05:b7:fa:5d:27:28:1d:0c:ee:4d:82: 31:b8:e3:8c -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUNgZEAwfrys62tksUOAB3Fu8XjfMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MTIxOTEzMzM1MVoX DTI1MTIyMDE3Mjg1MVowMzExMC8GA1UEAxMoM0Y3OTIwRDFGRDk1OTVBN0U3NEU4 MjNBQjk2MkI1QjQ0OUI1MjlFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfd1MSFDTxJie2he36z4k2SrvIPg8s9/O7GS18TmWySBpM/MMVXKnnJWkIp GPavRgASO0cMEltgMxXZK7jbLBb67+Wy7WttYIfKCE7dW8jZp+nkzk4zqkWWiFPB EqpV/KE5S4DtSjsAHU3UfFN0VOneo2d/bxzD0yBfKulIy/nDPXR0pKyc06BA5Tyl wtnZ78zMarVfqZo6TRwFWo2C8sdz81UWGEk+pOYXKYL3hiqKcT0ODjEPNT8HfUEe 8sI05X+h6julvKeXazXN1LIbs6tWjRayGbEvQRLB17zNlNH3fU1zVCUVkTbXd8Sg MLC/o+R77+vebcf+vld+4pU6nU8CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQ/eSDR /ZWVp+dOgjq5YrW0SbUp6DAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGuh6S8k/onSOvvYsDc2qTF6UFwGxJU+Hy0O g/qumTAAzQBvLjrucGa/pwMNiRp51qwXJ0yWOZfpf+IDFUMI7+hWWU6iHEiGgv5c Um1gi8FgoBUQ8KrjeUhHmLVBx2iIdm0BNJqnxyx4o66lZzwvh07+bD7G/oMIJHv1 z9OWJB046i1yOEJeV3uijyTJrRE+CXt+S2TFA0Tkslq/UZpr88/D/+TtAOMwQuZf j5uS+NQ00L/Cg0nCvk0IHCFOl7mMy0uHB18Y99eq43sf3/GTFQzb+uRApmK7+jan lKc2Se7VC16EUnO/n44PbuPPuSkQfuAFt/pdJygdDO5NgjG444w= -----END CERTIFICATE-----Generated at Fri Dec 19 17:43:47 2025 by rpki-client