$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: eDFLktIrQABEMaSQHXIymYHhbXVczpl8ukTec6sOqeU= Subject key identifier: 48:93:7B:79:F7:BD:F7:B4:39:5D:16:55:9D:45:DC:D8:B3:D1:D4:8C Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 620210519817C6458A83230AC17034D0967C0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 7F Signing time: Sun 01 Mar 2026 18:31:30 +0000 Manifest this update: Sun 01 Mar 2026 18:26:30 +0000 Manifest next update: Mon 02 Mar 2026 18:39:30 +0000 Files and hashes: 1: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) 2: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: Oo8a4fCcZ9ZOyGyFRHWDwN0x5qOGRphqAs07XlDX4Zo=) 3: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 18:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:02:10:51:98:17:c6:45:8a:83:23:0a:c1:70:34:d0:96:7c:0a:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Mar 1 18:26:30 2026 GMT Not After : Mar 2 18:39:30 2026 GMT Subject: CN=48937B79F7BDF7B4395D16559D45DCD8B3D1D48C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fb:65:e1:f7:f4:7b:d6:f1:d4:99:1e:e2:ee: a8:a7:b2:6c:7b:1a:ec:a7:a4:a3:df:e4:df:1a:99: 10:27:18:17:da:83:51:38:37:2e:9e:4d:be:24:c8: 8e:62:9a:81:18:30:a7:2a:b6:5f:d4:1c:3a:c2:96: 38:41:8e:9c:a7:26:38:e2:25:7c:07:74:61:84:fd: 0d:5a:bb:13:82:46:c7:0c:fb:a5:92:fe:dd:ae:81: d6:0f:fe:90:2f:5b:17:2f:0a:5c:28:aa:e4:9c:36: e4:2d:31:b9:c2:ae:88:91:d6:f2:13:46:87:56:3a: da:93:27:a2:58:f1:ab:ac:71:81:88:17:77:f1:39: e0:8f:63:fc:55:ea:4d:e5:5c:6b:e0:dd:ce:1c:62: d7:30:5b:1e:92:34:16:a8:74:f4:4d:36:c5:2d:44: ee:6b:ad:70:df:ba:44:87:dc:ca:7c:c2:c8:6d:44: fd:c0:11:4a:69:10:75:b9:23:d1:65:73:3e:85:68: 1c:a5:12:1d:c8:0f:e0:25:b0:2c:5e:76:f9:ce:a4: 6c:46:8b:31:fa:db:34:27:b7:6c:a8:97:d4:f2:79: 95:de:ad:ee:41:a8:3e:40:22:51:f7:28:de:0e:a0: 21:c5:39:e2:4c:51:03:83:02:44:1c:cf:53:1f:e2: 13:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:93:7B:79:F7:BD:F7:B4:39:5D:16:55:9D:45:DC:D8:B3:D1:D4:8C X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:1f:33:13:2a:e3:0d:42:ae:66:59:64:8f:87:c9:c0:1b:e7: b3:41:df:65:a5:c7:f7:9e:dc:ed:28:c0:b0:bd:8d:f1:70:38: 6a:09:64:4d:89:a1:be:69:54:f5:77:fc:66:d5:f6:ca:69:a4: 34:09:68:bf:54:1a:47:86:a6:21:25:5e:79:9a:59:66:e7:d6: 0b:3e:f0:06:42:a4:b8:06:33:c8:ba:91:ae:49:32:bb:0d:6b: 0d:b4:37:b5:72:e4:42:8a:1f:d8:70:0a:b8:5f:7c:3f:8e:6f: b1:c7:f0:b5:9a:36:80:05:0a:d2:8d:13:ce:d6:0b:5a:27:da: 5c:28:33:bb:94:8e:9c:54:a0:6e:cf:e7:01:c7:7b:a6:4b:02: df:e0:13:d0:cc:ba:a9:1d:c5:a2:85:52:8a:cd:ba:50:72:5a: 8d:e9:89:03:03:91:38:0f:d4:72:fc:7d:b9:7b:0e:a4:14:5a: 47:29:ae:48:f8:71:7a:24:65:a1:57:4f:fb:82:ca:49:33:fc: 28:fa:d8:5b:8e:c8:8e:c7:e7:2a:c5:86:1d:c7:d4:68:00:94: c6:83:67:c0:8c:aa:0f:47:17:a2:af:b1:73:83:57:d1:7d:b7: 01:34:d7:03:2d:5d:09:8c:57:ef:06:f8:35:48:10:e2:90:64: 8c:34:24:e2 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUYgIQUZgXxkWKgyMKwXA00JZ8CjkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDMwMTE4MjYzMFoX DTI2MDMwMjE4MzkzMFowMzExMC8GA1UEAxMoNDg5MzdCNzlGN0JERjdCNDM5NUQx NjU1OUQ0NURDRDhCM0QxRDQ4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOL7ZeH39HvW8dSZHuLuqKeybHsa7Keko9/k3xqZECcYF9qDUTg3Lp5NviTI jmKagRgwpyq2X9QcOsKWOEGOnKcmOOIlfAd0YYT9DVq7E4JGxwz7pZL+3a6B1g/+ kC9bFy8KXCiq5Jw25C0xucKuiJHW8hNGh1Y62pMnoljxq6xxgYgXd/E54I9j/FXq TeVca+Ddzhxi1zBbHpI0Fqh09E02xS1E7mutcN+6RIfcynzCyG1E/cARSmkQdbkj 0WVzPoVoHKUSHcgP4CWwLF52+c6kbEaLMfrbNCe3bKiX1PJ5ld6t7kGoPkAiUfco 3g6gIcU54kxRA4MCRBzPUx/iE1UCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRIk3t5 9733tDldFlWdRdzYs9HUjDAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHIfMxMq4w1CrmZZZI+HycAb57NB32Wlx/ee 3O0owLC9jfFwOGoJZE2Job5pVPV3/GbV9spppDQJaL9UGkeGpiElXnmaWWbn1gs+ 8AZCpLgGM8i6ka5JMrsNaw20N7Vy5EKKH9hwCrhffD+Ob7HH8LWaNoAFCtKNE87W C1on2lwoM7uUjpxUoG7P5wHHe6ZLAt/gE9DMuqkdxaKFUorNulByWo3piQMDkTgP 1HL8fbl7DqQUWkcprkj4cXokZaFXT/uCykkz/Cj62FuOyI7H5yrFhh3H1GgAlMaD Z8CMqg9HF6KvsXODV9F9twE01wMtXQmMV+8G+DVIEOKQZIw0JOI= -----END CERTIFICATE-----Generated at Mon Mar 2 10:32:50 2026 by rpki-client