$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: PtdGXWShJZ9KYfg79zw2dF6Iuz+Cicr6clbq+sRjz2Q= Subject key identifier: 87:B4:1D:12:68:78:AD:F6:CB:1C:05:AF:F8:26:9F:90:CC:76:82:85 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 4BBE0DC4A6B1C14E3B5882F5ACFC9D7A7F060DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0620 Signing time: Fri 25 Apr 2025 19:20:31 +0000 Manifest this update: Fri 25 Apr 2025 19:15:31 +0000 Manifest next update: Sat 26 Apr 2025 20:06:31 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 2: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 3: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: HtVkRvndmNLEJMyZ3Y73FndTG32gkswnuSyjK80IASU=) 4: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) 5: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 6: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 7: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 8: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) 9: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) 10: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 11: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 20:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:be:0d:c4:a6:b1:c1:4e:3b:58:82:f5:ac:fc:9d:7a:7f:06:0d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Apr 25 19:15:31 2025 GMT Not After : Apr 26 20:06:31 2025 GMT Subject: CN=87B41D126878ADF6CB1C05AFF8269F90CC768285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:22:78:ae:09:fa:61:47:01:d8:11:2b:3d:c6: 03:4e:0e:ad:f9:c9:9f:0e:ef:34:8d:a8:c9:ae:16: a4:01:9a:bf:e1:c5:a9:22:3c:b7:7b:3c:f7:b4:bc: 00:84:a5:d6:1e:02:c2:90:87:45:6e:05:5a:d1:b9: 11:4f:c1:76:3a:5d:37:1c:d4:df:60:5d:11:68:ee: 3d:ed:8f:49:27:86:c1:99:a3:20:dd:6d:8d:99:59: 71:93:fa:63:ed:01:56:d4:e3:1e:44:28:c8:68:35: 4f:1d:cf:c2:3f:68:da:45:b7:9a:07:26:e7:d4:cf: f7:ff:ac:42:df:d5:f0:4c:84:16:30:9a:60:e0:4d: b3:76:96:df:a4:b1:54:ef:8e:1b:4e:74:b0:3d:ae: 55:7b:c8:93:16:e6:d9:7d:e2:bb:95:26:31:dc:b4: 3b:44:6b:0b:da:ab:99:50:09:79:9a:e5:99:cf:3d: 7b:f8:ee:e3:16:a8:00:a2:d2:7c:ac:ce:b0:51:27: ac:fd:ea:2c:d6:e6:30:58:e8:5c:87:6d:90:84:36: 81:9e:ec:0a:66:4f:fb:05:02:db:f2:cc:e5:83:7d: 4c:05:98:c5:61:f2:55:ee:78:29:a9:80:65:29:f7: 96:83:00:f9:b8:a7:4d:4f:52:a7:f2:e5:0a:33:07: d0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B4:1D:12:68:78:AD:F6:CB:1C:05:AF:F8:26:9F:90:CC:76:82:85 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:65:e6:cc:09:71:5f:e4:bb:3d:ad:d5:36:c7:cf:c7:03:e7: c5:89:d7:89:33:a4:ff:86:4a:fa:43:f7:dd:d8:b1:ba:5a:48: 1a:ac:e4:54:16:3c:40:9e:d7:e6:45:e2:ad:d6:5e:e6:5d:6a: f4:bc:7b:02:cd:9d:0d:1c:da:46:9e:a5:a4:d3:20:9d:7a:3c: b4:77:d0:4f:53:81:fb:8c:c1:a8:4b:2f:b6:f3:1b:68:c2:a2: 8b:d1:49:f6:49:40:69:66:c1:4b:f6:fa:7f:37:64:15:61:6a: 71:58:5d:c2:a0:94:0b:8a:73:63:fa:5a:b7:db:a6:fb:c0:26: 10:dd:f9:f2:24:b5:ec:9a:fa:8f:d0:1a:6f:4f:78:0c:9b:5b: bb:ad:7b:98:51:e2:ca:9f:d2:81:a0:bd:84:b5:6a:5a:14:3d: 02:31:f5:db:d7:3b:9b:e0:4d:47:29:d5:c0:88:52:e8:10:b9: 73:e4:5a:3d:81:26:01:3a:2c:23:13:97:b5:97:26:d9:1d:79: d6:8e:5c:ee:af:dc:04:d9:16:1d:fd:0a:9f:b8:ff:4f:e1:bd: 44:27:15:20:07:e5:c0:76:9d:d4:1b:f4:7c:ff:fa:1a:aa:3d: e0:da:29:02:ef:70:b5:4c:fd:58:5c:16:c4:f8:69:08:5e:8d: cd:25:33:de -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUS74NxKaxwU47WIL1rPyden8GDfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDQyNTE5MTUzMVoX DTI1MDQyNjIwMDYzMVowMzExMC8GA1UEAxMoODdCNDFEMTI2ODc4QURGNkNCMUMw NUFGRjgyNjlGOTBDQzc2ODI4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMwieK4J+mFHAdgRKz3GA04OrfnJnw7vNI2oya4WpAGav+HFqSI8t3s897S8 AISl1h4CwpCHRW4FWtG5EU/BdjpdNxzU32BdEWjuPe2PSSeGwZmjIN1tjZlZcZP6 Y+0BVtTjHkQoyGg1Tx3Pwj9o2kW3mgcm59TP9/+sQt/V8EyEFjCaYOBNs3aW36Sx VO+OG050sD2uVXvIkxbm2X3iu5UmMdy0O0RrC9qrmVAJeZrlmc89e/ju4xaoAKLS fKzOsFEnrP3qLNbmMFjoXIdtkIQ2gZ7sCmZP+wUC2/LM5YN9TAWYxWHyVe54KamA ZSn3loMA+binTU9Sp/LlCjMH0NsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSHtB0S aHit9sscBa/4Jp+QzHaChTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHFl5swJcV/kuz2t1TbHz8cD58WJ14kzpP+G SvpD993YsbpaSBqs5FQWPECe1+ZF4q3WXuZdavS8ewLNnQ0c2kaepaTTIJ16PLR3 0E9TgfuMwahLL7bzG2jCoovRSfZJQGlmwUv2+n83ZBVhanFYXcKglAuKc2P6Wrfb pvvAJhDd+fIkteya+o/QGm9PeAybW7ute5hR4sqf0oGgvYS1aloUPQIx9dvXO5vg TUcp1cCIUugQuXPkWj2BJgE6LCMTl7WXJtkdedaOXO6v3ATZFh39Cp+4/0/hvUQn FSAH5cB2ndQb9Hz/+hqqPeDaKQLvcLVM/VhcFsT4aQhejc0lM94= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:55 2025 by rpki-client