$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: AP5aNfzNY/vt9Gwz2a86QUwFi9cMuZbfv3W9MhhYNQU= Subject key identifier: 73:ED:EA:C2:C5:56:36:55:AB:5F:61:21:E2:53:1F:17:24:B9:81:C6 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 2430635C3ACBD3997C1ECBAEC3A4BD5205EB93AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: C4 Signing time: Thu 16 Apr 2026 15:21:32 +0000 Manifest this update: Thu 16 Apr 2026 15:16:32 +0000 Manifest next update: Fri 17 Apr 2026 15:55:32 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: +y2jAgOuZUUoQlOpcaevNF+QEZJhomuvrjILzQlVG6E=) 2: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) 3: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 15:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:30:63:5c:3a:cb:d3:99:7c:1e:cb:ae:c3:a4:bd:52:05:eb:93:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Apr 16 15:16:32 2026 GMT Not After : Apr 17 15:55:32 2026 GMT Subject: CN=73EDEAC2C5563655AB5F6121E2531F1724B981C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:02:8b:c7:4b:95:76:2d:5b:8d:b4:2a:9c:1c: 9b:fd:52:a9:a0:8e:b1:8b:cc:85:a5:81:ae:0e:c4: a1:3c:2e:3c:e3:75:2e:da:c9:50:37:ef:70:09:b3: 15:44:54:ef:0a:f4:fe:a3:7e:8d:c7:4b:6c:ed:4f: 3e:7c:e3:cc:8b:5f:ea:7f:5e:a4:70:69:4a:2a:96: f7:42:8a:3f:bb:ac:ac:9c:ed:0d:43:ab:41:3f:46: 20:09:c0:2d:d7:04:81:e7:64:8e:1e:a5:a8:98:09: cb:dc:d6:37:2a:d6:b7:ee:8e:a9:6f:2c:97:78:66: 18:25:a3:e1:ec:56:f6:0d:57:c6:ba:b2:41:17:e9: 81:b2:d4:af:8c:6f:a6:b8:df:ca:46:7a:9a:43:d1: 4b:bf:b5:41:33:65:4c:00:c6:28:15:22:5b:cb:e1: cb:79:b9:c8:2e:b8:13:42:f2:74:b6:86:e8:6f:61: 1a:50:2a:7d:a1:d0:7c:2d:2c:d7:43:c3:53:51:9a: 07:0a:42:9c:8d:43:1e:f0:62:df:08:4f:42:b0:ec: 1e:a2:48:b8:3b:46:79:c6:36:41:78:a5:71:c9:6b: 87:3a:37:ce:00:ae:d7:08:4a:59:c3:0e:c3:2a:f9: 66:0b:96:52:3b:9c:a9:66:06:1a:6a:30:41:05:5b: 1c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:ED:EA:C2:C5:56:36:55:AB:5F:61:21:E2:53:1F:17:24:B9:81:C6 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:53:37:6f:26:8a:50:76:12:98:16:37:fd:cf:6a:d6:7c:f5: 63:5d:32:ea:1b:ab:20:dc:8e:f3:cd:63:3e:8c:e6:bc:63:fe: 2f:80:7b:67:82:5a:e2:d0:6a:b9:23:70:f9:3a:45:44:9d:4d: d6:cc:c8:02:89:59:e1:25:5d:cf:48:99:b0:45:10:4f:78:5f: 75:68:5b:59:78:62:fb:8f:bc:e0:b7:d1:0c:11:86:87:b3:26: a3:b8:9c:c8:bb:7c:79:1b:31:81:34:56:e6:7f:d6:5e:a9:ad: 1d:7a:35:a0:be:98:41:03:e6:3a:85:d1:70:2e:1e:d5:90:6f: 05:28:74:02:20:64:95:a6:ae:18:4d:24:5a:33:6d:fc:13:f1: 04:75:f4:9b:dd:14:77:f5:30:96:46:0c:9c:b7:9d:6f:85:e0: 25:12:3b:ac:fd:6e:06:31:77:7e:38:e1:23:56:22:71:b5:bb: bf:b1:e0:87:0a:2e:41:b9:36:0c:40:4e:5f:6e:dd:ab:2a:6a: e5:89:06:44:71:db:d7:cc:4e:f6:e5:83:31:cb:63:9f:56:0c: 89:58:77:f9:90:25:8b:20:40:58:79:90:0d:8a:a8:89:8e:5d: 14:1f:bc:e7:f8:80:cf:99:78:23:71:3b:46:76:8f:bd:a2:95: 2a:ab:e1:3e -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUJDBjXDrL05l8Hsuuw6S9UgXrk6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDQxNjE1MTYzMloX DTI2MDQxNzE1NTUzMlowMzExMC8GA1UEAxMoNzNFREVBQzJDNTU2MzY1NUFCNUY2 MTIxRTI1MzFGMTcyNEI5ODFDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOQCi8dLlXYtW420Kpwcm/1SqaCOsYvMhaWBrg7EoTwuPON1LtrJUDfvcAmz FURU7wr0/qN+jcdLbO1PPnzjzItf6n9epHBpSiqW90KKP7usrJztDUOrQT9GIAnA LdcEgedkjh6lqJgJy9zWNyrWt+6OqW8sl3hmGCWj4exW9g1XxrqyQRfpgbLUr4xv prjfykZ6mkPRS7+1QTNlTADGKBUiW8vhy3m5yC64E0LydLaG6G9hGlAqfaHQfC0s 10PDU1GaBwpCnI1DHvBi3whPQrDsHqJIuDtGecY2QXilcclrhzo3zgCu1whKWcMO wyr5ZguWUjucqWYGGmowQQVbHMUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRz7erC xVY2VatfYSHiUx8XJLmBxjAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGZTN28milB2EpgWN/3PatZ89WNdMuobqyDc jvPNYz6M5rxj/i+Ae2eCWuLQarkjcPk6RUSdTdbMyAKJWeElXc9ImbBFEE94X3Vo W1l4YvuPvOC30QwRhoezJqO4nMi7fHkbMYE0VuZ/1l6prR16NaC+mEED5jqF0XAu HtWQbwUodAIgZJWmrhhNJFozbfwT8QR19JvdFHf1MJZGDJy3nW+F4CUSO6z9bgYx d3444SNWInG1u7+x4IcKLkG5NgxATl9u3asqauWJBkRx29fMTvblgzHLY59WDIlY d/mQJYsgQFh5kA2KqImOXRQfvOf4gM+ZeCNxO0Z2j72ilSqr4T4= -----END CERTIFICATE-----Generated at Fri Apr 17 05:45:16 2026 by rpki-client