$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: XfrmZkV5dXZhAvckR80FVq03rQQojkCnr47nI+tw3gg= Subject key identifier: 26:18:E7:87:C8:4D:9F:15:8F:7F:F1:CF:D6:3F:CE:CF:A5:E2:DD:80 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 14FEB0572C624E6A65B45BAA708914AF8C2E9CAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 0124 Signing time: Fri 12 Jun 2026 19:18:59 +0000 Manifest this update: Fri 12 Jun 2026 19:13:59 +0000 Manifest next update: Sat 13 Jun 2026 21:54:59 +0000 Files and hashes: 1: 3230322e352e3232302e302f32322d3234203d3e2038383838.roa (hash: 8fu1VICLJqfb2qBAICSYNfZTWIi/AxU4hCyty2bGjds=) 2: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 4: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 5: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 6: 3130332e3230312e3132382e302f32322d3234203d3e2038383838.roa (hash: jroVYKFHmgPVzgsQ26TPXXr/n6bFbi/cJido3jfFoMg=) 7: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 8: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 9: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: NlKb/i4bfgCMjaT+m1Mz2YqghE0AmnxqfyUxub5rAGw=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fe:b0:57:2c:62:4e:6a:65:b4:5b:aa:70:89:14:af:8c:2e:9c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Jun 12 19:13:59 2026 GMT Not After : Jun 13 21:54:59 2026 GMT Subject: CN=2618E787C84D9F158F7FF1CFD63FCECFA5E2DD80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a0:5a:04:69:b1:2c:aa:da:7d:d5:14:a4:e8: 00:09:59:43:e4:59:f4:43:90:6a:d3:91:4f:16:22: 5a:de:ec:eb:20:82:85:f5:31:b6:93:96:ba:a2:e1: 58:c7:fc:3b:17:df:49:bd:c3:18:4b:b5:15:64:87: 43:5d:b9:be:2d:6a:ca:bc:54:2c:7b:74:7a:bf:e7: c0:27:84:55:df:1b:6f:16:71:25:03:92:e9:7c:29: 57:e7:51:8b:06:2e:40:e0:40:69:22:b3:09:b0:27: 1c:e8:a9:9a:be:08:95:34:b7:74:4c:c6:1c:93:ca: b9:c1:ad:77:d3:3b:1a:ea:8c:1d:3c:ff:c2:a3:a1: 80:be:46:8c:83:53:c2:99:11:50:7a:a0:94:b9:f0: 51:8a:19:2d:12:c2:ee:b4:fa:43:aa:e1:7a:28:83: cd:b8:f7:7c:a1:18:07:a8:b3:b3:a1:69:25:11:1c: 04:93:dc:23:5e:d4:f6:26:f8:1e:2a:d0:d6:48:ac: fb:62:10:89:b6:1c:79:38:b5:54:0d:f4:7f:65:7a: 34:e2:73:0e:b0:c1:0e:08:bb:95:b0:dc:db:68:bb: 04:09:6c:2f:48:f0:3a:60:df:3a:ea:7d:a3:e9:ef: 3d:07:45:bf:ae:04:af:e9:4b:ab:6e:34:13:e0:d9: 0f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:18:E7:87:C8:4D:9F:15:8F:7F:F1:CF:D6:3F:CE:CF:A5:E2:DD:80 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:cd:99:0b:3a:7e:75:c2:2b:b6:83:02:00:55:38:5c:de:95: 6e:cc:e0:77:b2:72:ef:bc:67:89:99:09:2d:82:0a:98:63:6c: d0:02:5b:f7:be:e6:f5:1b:7a:84:42:f6:46:9d:65:a9:5e:0f: 90:b1:8d:05:32:df:ae:d3:95:46:32:f9:18:d9:50:db:bc:b0: a1:ff:2b:44:3c:6d:87:e8:30:1a:30:da:e6:d1:a3:ea:19:35: 52:56:99:97:e1:6e:54:d6:c7:aa:6f:79:fe:5c:c0:26:dc:8b: 1a:2d:1c:cf:33:c7:55:54:a4:65:6c:2a:5b:30:e0:12:6a:89: 48:19:49:85:6f:ca:f3:7d:d0:e0:e1:69:4e:8c:89:8c:34:c6: 9f:e8:70:ef:0b:50:85:7c:dd:ac:d3:40:1a:e5:c7:01:04:46: 6a:bc:ae:e8:bf:2a:b3:5e:44:12:01:bd:37:a0:8a:48:96:22: 43:b4:97:de:4f:9f:e8:ff:ff:d0:a6:27:75:70:b5:e8:3c:19: a5:af:e9:66:04:65:e5:a4:fb:64:9c:c6:01:be:3e:df:65:f9: fc:2c:2f:36:3c:34:af:24:f5:b9:49:f8:82:e8:72:c5:6b:be: 14:e0:23:fb:31:93:c2:b4:8c:f4:45:91:2f:5a:9f:27:02:00: c9:2c:e3:0f -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUFP6wVyxiTmpltFuqcIkUr4wunKowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDYxMjE5MTM1OVoX DTI2MDYxMzIxNTQ1OVowMzExMC8GA1UEAxMoMjYxOEU3ODdDODREOUYxNThGN0ZG MUNGRDYzRkNFQ0ZBNUUyREQ4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWgWgRpsSyq2n3VFKToAAlZQ+RZ9EOQatORTxYiWt7s6yCChfUxtpOWuqLh WMf8OxffSb3DGEu1FWSHQ125vi1qyrxULHt0er/nwCeEVd8bbxZxJQOS6XwpV+dR iwYuQOBAaSKzCbAnHOipmr4IlTS3dEzGHJPKucGtd9M7GuqMHTz/wqOhgL5GjINT wpkRUHqglLnwUYoZLRLC7rT6Q6rheiiDzbj3fKEYB6izs6FpJREcBJPcI17U9ib4 HirQ1kis+2IQibYceTi1VA30f2V6NOJzDrDBDgi7lbDc22i7BAlsL0jwOmDfOup9 o+nvPQdFv64Er+lLq240E+DZDz8CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQmGOeH yE2fFY9/8c/WP87PpeLdgDAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJzNmQs6fnXCK7aDAgBVOFzelW7M4Heycu+8 Z4mZCS2CCphjbNACW/e+5vUbeoRC9kadZaleD5CxjQUy367TlUYy+RjZUNu8sKH/ K0Q8bYfoMBow2ubRo+oZNVJWmZfhblTWx6pvef5cwCbcixotHM8zx1VUpGVsKlsw 4BJqiUgZSYVvyvN90ODhaU6MiYw0xp/ocO8LUIV83azTQBrlxwEERmq8rui/KrNe RBIBvTegikiWIkO0l95Pn+j//9CmJ3Vwteg8GaWv6WYEZeWk+2ScxgG+Pt9l+fws LzY8NK8k9blJ+ILocsVrvhTgI/sxk8K0jPRFkS9anycCAMks4w8= -----END CERTIFICATE-----Generated at Sat Jun 13 10:28:21 2026 by rpki-client