$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: zmspmzCnF83UAPffhsiB5qGYGY4z3AB+Ic3MU51X+oQ= Subject key identifier: E1:4F:1E:81:AB:57:40:E2:48:27:FD:69:20:02:1D:33:D3:B6:2D:5B Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 112C984906135A24EECEE8157EA50082397FFA91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 0123 Signing time: Fri 12 Jun 2026 19:58:59 +0000 Manifest this update: Fri 12 Jun 2026 19:53:59 +0000 Manifest next update: Sat 13 Jun 2026 22:25:59 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: wBiwEluLBzMUyaHdBdc4zPqgD5CfAbhsPkKn/7i/AM8=) 2: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) 3: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 22:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2c:98:49:06:13:5a:24:ee:ce:e8:15:7e:a5:00:82:39:7f:fa:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Jun 12 19:53:59 2026 GMT Not After : Jun 13 22:25:59 2026 GMT Subject: CN=E14F1E81AB5740E24827FD6920021D33D3B62D5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:b0:45:05:9b:93:15:13:74:bb:3d:2b:d9: a2:9e:ef:19:e4:7e:80:a1:bd:d0:cd:1a:3c:33:fb: bc:cd:08:1c:c0:d1:73:8b:1c:f1:c6:06:a4:b4:3b: ef:a1:65:f9:98:56:25:30:ed:62:cf:05:e4:80:58: 53:66:8a:4e:21:dd:a9:58:6a:d3:41:da:c6:b6:08: ab:c3:dd:a0:2f:81:4c:8e:f8:60:c8:f1:23:b1:a2: 51:f6:09:cb:42:ba:57:f3:9f:35:fe:66:b3:4e:33: 2b:e1:a4:07:8e:71:16:ff:52:b3:d6:3f:83:1e:3c: 03:da:ef:1e:86:15:96:41:c8:48:27:bf:a7:eb:f7: 24:57:ac:0e:ab:2d:a2:66:4c:85:b7:15:1e:18:0c: b7:bb:ed:a9:eb:6d:98:4a:3b:ad:aa:f4:b7:61:23: e0:23:dd:24:75:9f:b6:3f:8c:cf:6b:91:c9:60:c1: a5:78:be:7f:71:7c:31:4a:2a:b4:ac:a0:d6:a6:67: a6:a7:d6:db:bb:28:a1:09:b9:0e:73:f3:10:93:b6: 94:fd:fc:4d:97:c9:ba:0b:4c:cc:52:6c:9e:d7:d1: e0:47:29:5c:90:d0:c2:73:e6:77:b4:18:21:7a:00: 10:f0:cf:ba:ee:5d:3c:3e:82:e9:8f:f4:1b:ab:ca: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4F:1E:81:AB:57:40:E2:48:27:FD:69:20:02:1D:33:D3:B6:2D:5B X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:bc:99:1f:96:5b:86:61:45:4d:05:c6:9d:e3:b7:13:b6:60: 91:bf:a5:9f:9e:7b:8b:27:6c:cf:f1:f4:ef:54:a4:03:b6:24: 84:53:d1:b2:93:7d:88:59:fe:a3:6b:77:16:ac:15:98:59:4a: 1e:92:d0:5f:d9:fb:65:87:9a:9e:39:25:34:0a:4a:4e:c0:61: 4a:87:f2:fc:d0:61:70:2c:47:6e:5a:c1:27:73:23:76:fa:ec: 12:e5:90:a7:36:e7:bd:86:0e:7b:ea:a3:93:b7:b6:92:20:46: 31:5e:98:68:9a:ba:e8:fa:da:08:34:4e:c3:ac:31:a6:61:51: f0:29:92:b1:43:c6:4b:5c:78:6e:ac:b0:e2:8e:bf:d7:ad:91: d6:8d:85:ae:1c:cc:62:30:da:38:da:9e:36:c2:15:c7:8a:a9: f0:5a:6f:c9:69:3a:5f:ef:0d:78:cf:19:31:bc:bb:20:fc:6f: e5:94:e7:c0:dd:ca:6c:9a:4a:ae:30:92:5c:e8:66:50:7b:d7: 25:1d:88:14:f5:a7:0e:f7:f5:fb:22:7e:73:f2:12:b0:b8:dc: 83:a8:c3:70:49:5f:71:20:da:bc:2f:fb:60:a1:bb:f9:9c:0a: d1:9f:0c:8c:97:7b:0d:b9:6b:38:ba:79:25:08:0c:76:12:78: 37:66:c5:28 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUESyYSQYTWiTuzugVfqUAgjl/+pEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDYxMjE5NTM1OVoX DTI2MDYxMzIyMjU1OVowMzExMC8GA1UEAxMoRTE0RjFFODFBQjU3NDBFMjQ4MjdG RDY5MjAwMjFEMzNEM0I2MkQ1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALeTsEUFm5MVE3S7PSvZop7vGeR+gKG90M0aPDP7vM0IHMDRc4sc8cYGpLQ7 76Fl+ZhWJTDtYs8F5IBYU2aKTiHdqVhq00HaxrYIq8PdoC+BTI74YMjxI7GiUfYJ y0K6V/OfNf5ms04zK+GkB45xFv9Ss9Y/gx48A9rvHoYVlkHISCe/p+v3JFesDqst omZMhbcVHhgMt7vtqettmEo7rar0t2Ej4CPdJHWftj+Mz2uRyWDBpXi+f3F8MUoq tKyg1qZnpqfW27sooQm5DnPzEJO2lP38TZfJugtMzFJsntfR4EcpXJDQwnPmd7QY IXoAEPDPuu5dPD6C6Y/0G6vKVsMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBThTx6B q1dA4kgn/WkgAh0z07YtWzAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGi8mR+WW4ZhRU0Fxp3jtxO2YJG/pZ+ee4sn bM/x9O9UpAO2JIRT0bKTfYhZ/qNrdxasFZhZSh6S0F/Z+2WHmp45JTQKSk7AYUqH 8vzQYXAsR25awSdzI3b67BLlkKc2572GDnvqo5O3tpIgRjFemGiauuj62gg0TsOs MaZhUfApkrFDxktceG6ssOKOv9etkdaNha4czGIw2jjanjbCFceKqfBab8lpOl/v DXjPGTG8uyD8b+WU58DdymyaSq4wklzoZlB71yUdiBT1pw739fsifnPyErC43IOo w3BJX3Eg2rwv+2Chu/mcCtGfDIyXew25azi6eSUIDHYSeDdmxSg= -----END CERTIFICATE-----Generated at Sat Jun 13 08:12:51 2026 by rpki-client