$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: KD5husouzi6Giz5OmM9TcbTDGMveU8KjK88Av6xprio= Subject key identifier: B4:19:44:E9:94:67:EF:6E:00:BA:56:2F:FF:81:98:37:AF:F1:BA:59 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 489B4C5D308FE15B4C73DF0DF02AAAA853109743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: C6 Signing time: Fri 17 Apr 2026 03:01:32 +0000 Manifest this update: Fri 17 Apr 2026 02:56:32 +0000 Manifest next update: Sat 18 Apr 2026 06:31:32 +0000 Files and hashes: 1: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 2: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 3: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 4: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 5: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 6: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 7: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: p8jDkaAhsrDj+//ubKdMYFdJ4xXZw0a18ncjwywqGLs=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 06:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:9b:4c:5d:30:8f:e1:5b:4c:73:df:0d:f0:2a:aa:a8:53:10:97:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Apr 17 02:56:32 2026 GMT Not After : Apr 18 06:31:32 2026 GMT Subject: CN=B41944E99467EF6E00BA562FFF819837AFF1BA59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:a1:7d:7f:b7:2c:72:0e:53:9a:44:01:91: 54:a1:2b:0d:96:8a:31:55:0b:e0:72:cd:b5:3e:b6: da:92:96:d5:d8:6c:9b:92:e1:54:dc:3c:95:e0:ce: 0c:91:ad:b7:72:e5:ac:4e:b3:c2:b4:ec:e5:9c:0d: 8e:62:46:e3:18:7e:c7:fa:e0:68:73:c9:bd:1e:ce: ae:19:fa:15:a4:4d:2b:86:f4:d4:3b:8b:b2:01:c8: f4:45:7d:9d:91:29:bd:e1:0f:c6:ff:5d:f7:63:f3: d2:81:9e:4d:a7:f6:85:8d:54:26:57:3d:67:7b:56: 11:41:7c:3f:4c:4a:d6:c5:a4:cd:96:44:82:86:d0: d0:94:15:f4:3a:60:0e:aa:62:db:35:e9:96:67:fc: 80:57:3a:86:cb:0b:52:cb:23:09:dc:fc:2c:18:d8: 4b:27:e0:1a:6b:38:af:08:a5:22:53:9e:b9:a0:6d: 80:ed:be:fc:67:94:df:53:24:29:91:3d:5d:76:89: c5:0b:6f:17:8a:79:3a:b9:c9:7b:6a:11:25:11:4f: 55:41:62:f7:02:90:8b:50:e9:26:84:18:c4:e5:a6: 01:60:1c:d3:58:aa:5f:bb:dc:f8:a2:81:a1:af:f4: a2:7c:78:d5:a0:40:63:3a:2b:dc:44:93:a1:07:1d: e8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:19:44:E9:94:67:EF:6E:00:BA:56:2F:FF:81:98:37:AF:F1:BA:59 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:27:29:cd:cf:dd:fc:e9:71:b4:4e:8c:87:2b:bc:fd:f7:f1: 33:bd:14:63:5e:c4:6f:ec:3a:e0:01:4a:54:11:5f:a0:e2:88: bb:17:04:24:1e:0c:36:39:0c:56:5c:a0:1c:1d:07:56:bf:57: 00:a1:0e:a9:8f:d4:6a:33:a6:47:2a:f3:8b:6e:a6:94:95:f9: 2f:40:2c:fa:1f:32:6d:2c:e1:25:5a:45:85:d1:2f:19:c5:6b: 2a:a8:ac:87:98:90:2d:77:03:2b:d8:d5:c3:eb:2c:43:43:8d: d7:0a:96:c4:72:91:2b:f5:0a:ff:7c:73:6e:37:bc:ce:21:59: 79:cb:0a:e7:e1:19:77:63:c5:27:f6:3b:14:f6:92:44:f2:b9: da:a3:9d:5d:95:84:43:26:93:54:f6:7e:65:0a:a2:11:49:da: da:31:88:c2:3e:1e:e4:79:d3:b4:e6:81:20:f9:97:5e:c2:b8: f4:50:1a:9a:d4:8b:ae:0e:99:4c:02:6e:59:c1:de:4a:06:37: b6:15:0b:97:60:b9:87:38:a1:20:28:9c:88:cc:cd:a8:91:4b: a8:3a:a2:42:1b:1d:37:b1:ee:b6:fd:b7:de:10:2a:84:6d:d6: 87:8f:19:aa:c5:b0:ea:56:ce:af:0b:a9:bd:1b:8e:ba:81:04: 04:15:a8:3f -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUSJtMXTCP4VtMc98N8CqqqFMQl0MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDQxNzAyNTYzMloX DTI2MDQxODA2MzEzMlowMzExMC8GA1UEAxMoQjQxOTQ0RTk5NDY3RUY2RTAwQkE1 NjJGRkY4MTk4MzdBRkYxQkE1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFloX1/tyxyDlOaRAGRVKErDZaKMVUL4HLNtT622pKW1dhsm5LhVNw8leDO DJGtt3LlrE6zwrTs5ZwNjmJG4xh+x/rgaHPJvR7Orhn6FaRNK4b01DuLsgHI9EV9 nZEpveEPxv9d92Pz0oGeTaf2hY1UJlc9Z3tWEUF8P0xK1sWkzZZEgobQ0JQV9Dpg Dqpi2zXplmf8gFc6hssLUssjCdz8LBjYSyfgGms4rwilIlOeuaBtgO2+/GeU31Mk KZE9XXaJxQtvF4p5OrnJe2oRJRFPVUFi9wKQi1DpJoQYxOWmAWAc01iqX7vc+KKB oa/0onx41aBAYzor3ESToQcd6FUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBS0GUTp lGfvbgC6Vi//gZg3r/G6WTAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC8nKc3P3fzpcbROjIcrvP338TO9FGNexG/s OuABSlQRX6DiiLsXBCQeDDY5DFZcoBwdB1a/VwChDqmP1Gozpkcq84tuppSV+S9A LPofMm0s4SVaRYXRLxnFayqorIeYkC13AyvY1cPrLENDjdcKlsRykSv1Cv98c243 vM4hWXnLCufhGXdjxSf2OxT2kkTyudqjnV2VhEMmk1T2fmUKohFJ2toxiMI+HuR5 07TmgSD5l17CuPRQGprUi64OmUwCblnB3koGN7YVC5dguYc4oSAonIjMzaiRS6g6 okIbHTex7rb9t94QKoRt1oePGarFsOpWzq8Lqb0bjrqBBAQVqD8= -----END CERTIFICATE-----Generated at Fri Apr 17 16:31:28 2026 by rpki-client