$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: nHw1N3XJf5wBfrAGa3MBEIVirsDqtWsLSFIzyYutQMI= Subject key identifier: A8:BC:DA:BF:E9:34:D4:61:BF:C8:42:DE:7B:ED:35:83:E9:2E:A9:73 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 33370E62C5857DC3C21FF4F498E112159FDEA7EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 81 Signing time: Sun 01 Mar 2026 11:11:30 +0000 Manifest this update: Sun 01 Mar 2026 11:06:30 +0000 Manifest next update: Mon 02 Mar 2026 11:11:30 +0000 Files and hashes: 1: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 2: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 4: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 5: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: 6fE56oGlbTQBEzqTo4lmMqV8oeh2Hw/Ufgzu3QSDZ8A=) 6: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 7: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 11:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:37:0e:62:c5:85:7d:c3:c2:1f:f4:f4:98:e1:12:15:9f:de:a7:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Mar 1 11:06:30 2026 GMT Not After : Mar 2 11:11:30 2026 GMT Subject: CN=A8BCDABFE934D461BFC842DE7BED3583E92EA973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d3:90:bc:b9:c1:66:b8:86:7c:c2:92:51:d0: d8:4d:4e:a4:c1:3f:40:c1:a4:92:bc:08:e5:b9:49: 7d:37:95:0d:e8:7f:3b:b5:2e:3c:65:f2:9d:57:87: 47:bb:a0:43:e2:ba:29:e1:66:84:05:28:80:f5:f7: 45:7b:33:0a:c0:04:ff:60:84:0b:5f:44:85:d9:86: a6:97:3b:04:d7:39:2b:13:97:fb:69:2d:9b:56:6f: 43:cf:88:ca:9b:c5:b5:19:94:2a:b3:3c:c7:8a:50: e2:a5:59:99:a3:b6:0d:59:0d:83:64:9a:6a:2d:31: 35:84:42:d1:ba:07:05:c6:70:e5:45:10:8d:ed:fa: 94:c9:5c:34:67:b5:b7:fd:de:94:e6:0f:34:14:de: 6a:fc:4c:c0:9a:80:c6:ca:42:e9:14:9f:50:9b:51: 9e:f7:82:80:39:b5:a9:e3:ff:37:5e:40:aa:bf:02: 68:ba:50:4a:f0:25:fc:9e:45:2b:83:dc:b3:a1:e3: e1:f1:2e:95:e5:f9:e0:31:69:36:a4:46:09:31:f7: 33:33:f9:81:65:e0:80:9f:5c:0a:8a:ed:09:c4:b6: 01:81:d7:dd:94:7c:80:41:55:d2:94:11:58:90:0f: 40:7d:6a:02:e2:9c:9e:b3:fd:84:40:aa:df:7b:e3: ec:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BC:DA:BF:E9:34:D4:61:BF:C8:42:DE:7B:ED:35:83:E9:2E:A9:73 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:78:e4:db:c0:95:52:88:60:80:55:c9:03:29:5d:c1:c4:73: 25:0f:23:3a:cd:a0:a7:16:50:74:df:3c:d2:2b:9c:a7:48:51: 90:5e:00:8a:7f:37:e5:3d:67:ef:a1:3a:a5:6e:ac:e9:d2:f7: ba:f2:8c:75:64:65:0e:d8:af:64:92:09:e8:f8:df:35:03:5c: 68:9e:89:3a:8c:09:22:82:d7:bb:22:db:7c:bb:5b:7d:88:00: 5c:20:b7:8b:f8:10:09:53:ad:f1:11:81:51:eb:7d:d1:e9:37: f8:1e:1b:88:d4:c5:2c:b2:75:a1:82:6b:43:dc:51:7d:99:97: da:8d:03:51:18:92:9e:a3:e8:b3:ee:fd:d5:10:59:62:79:06: 43:bf:b4:61:bf:0a:53:88:18:d3:86:3c:d0:b5:cc:87:fc:10: 88:a6:f5:21:c4:2e:05:72:fa:57:97:1e:41:1e:ae:bd:80:0b: 4e:39:ec:5f:31:9c:4a:bd:37:39:89:ab:ff:29:62:f4:c6:f6: 57:78:90:c2:25:56:d3:84:e2:b2:f4:c2:27:52:fa:d6:3d:42: 14:88:d9:a7:46:3d:9e:0a:3a:63:30:10:fe:a6:b1:7a:85:3b: 5f:59:c3:ae:d3:f3:e6:51:5f:dd:3d:39:04:5f:fd:10:cc:0a: 4c:e7:02:0a -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUMzcOYsWFfcPCH/T0mOESFZ/ep+swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDMwMTExMDYzMFoX DTI2MDMwMjExMTEzMFowMzExMC8GA1UEAxMoQThCQ0RBQkZFOTM0RDQ2MUJGQzg0 MkRFN0JFRDM1ODNFOTJFQTk3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPTkLy5wWa4hnzCklHQ2E1OpME/QMGkkrwI5blJfTeVDeh/O7UuPGXynVeH R7ugQ+K6KeFmhAUogPX3RXszCsAE/2CEC19EhdmGppc7BNc5KxOX+2ktm1ZvQ8+I ypvFtRmUKrM8x4pQ4qVZmaO2DVkNg2Saai0xNYRC0boHBcZw5UUQje36lMlcNGe1 t/3elOYPNBTeavxMwJqAxspC6RSfUJtRnveCgDm1qeP/N15Aqr8CaLpQSvAl/J5F K4Pcs6Hj4fEuleX54DFpNqRGCTH3MzP5gWXggJ9cCortCcS2AYHX3ZR8gEFV0pQR WJAPQH1qAuKcnrP9hECq33vj7BkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSovNq/ 6TTUYb/IQt577TWD6S6pczAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKd45NvAlVKIYIBVyQMpXcHEcyUPIzrNoKcW UHTfPNIrnKdIUZBeAIp/N+U9Z++hOqVurOnS97ryjHVkZQ7Yr2SSCej43zUDXGie iTqMCSKC17si23y7W32IAFwgt4v4EAlTrfERgVHrfdHpN/geG4jUxSyydaGCa0Pc UX2Zl9qNA1EYkp6j6LPu/dUQWWJ5BkO/tGG/ClOIGNOGPNC1zIf8EIim9SHELgVy +leXHkEerr2AC0457F8xnEq9NzmJq/8pYvTG9ld4kMIlVtOE4rL0widS+tY9QhSI 2adGPZ4KOmMwEP6msXqFO19Zw67T8+ZRX909OQRf/RDMCkznAgo= -----END CERTIFICATE-----Generated at Sun Mar 1 18:16:18 2026 by rpki-client