$ rpki-client -vvf rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft File: DAEAFB37164B3F2015820693231F24002ADC2113.mft (raw, json) Hash identifier: v40TzEMS5LYh0qJd2sIYsBcc2PC1r+ddflYY4IrcBfI= Subject key identifier: BA:CA:C5:22:16:02:59:FB:C8:15:38:25:E7:8C:38:0F:A8:FA:64:00 Authority key identifier: DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 Certificate issuer: /CN=A9124B5E0000/serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Certificate serial: 310AEB37074745657C748E75390E0AD3BA14C475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft Manifest number: 7A Signing time: Fri 12 Jun 2026 17:53:59 +0000 Manifest this update: Fri 12 Jun 2026 17:48:59 +0000 Manifest next update: Sat 13 Jun 2026 21:46:59 +0000 Files and hashes: 1: DAEAFB37164B3F2015820693231F24002ADC2113.crl (hash: V8fgfcWd07OopAYymaRt+p8Pwfw21sOVTMLL7+TUuqE=) 2: 3130332e3133362e3134342e302f32322d3234203d3e2033323538.roa (hash: 44857mPnflbld8sAjrxn24bZ5Kn4lYc5chLLJ4ZXsck=) 3: 3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa (hash: gkSWhIsG/cKa7Lp3wtklJFQ2S+B1JBQrTCHMmOqyJOY=) 4: 323430343a393534303a3a2f33322d3438203d3e203234323432.roa (hash: 9Jlu+M3rXD12EuJzqhRW5ZFTf/kwx838RQdRoAP5znc=) 5: 3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa (hash: rFVQUYAqJTODcy+KMuheW/SnFVOlgYrcWihzZ85NvXY=) 6: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (hash: thQvr/N0a8AQrIYugr9DeDyUSsLd2ILFdpj+ZmdXBk4=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:0a:eb:37:07:47:45:65:7c:74:8e:75:39:0e:0a:d3:ba:14:c4:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Validity Not Before: Jun 12 17:48:59 2026 GMT Not After : Jun 13 21:46:59 2026 GMT Subject: CN=BACAC522160259FBC8153825E78C380FA8FA6400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:5a:b7:e8:42:99:1f:38:7b:d2:61:5d:56: b4:cf:72:eb:20:f2:de:fd:0f:60:5c:e2:33:9d:d6: 62:32:b1:4d:55:e1:0e:fe:21:a1:9b:f6:5d:56:f1: 82:50:33:05:85:5a:11:9a:5f:02:14:d1:8a:fa:ca: 7f:6b:8a:a8:5c:db:d0:75:fe:19:5e:1e:99:8d:7a: f1:ba:c6:cd:b2:75:f9:6b:46:6b:ea:7f:81:69:fd: 41:1e:a4:dc:56:67:45:75:70:3a:1c:4a:84:5f:2b: e5:74:73:02:21:c1:84:f5:ae:fc:e9:dd:f2:e8:0f: c5:99:ab:1f:f2:a8:b9:ab:74:5f:c6:41:0f:63:7a: c6:48:17:2b:16:48:d9:e9:64:d8:0f:bb:4f:79:87: 2a:7b:d7:fc:fb:8c:4e:67:fe:0b:a1:80:07:dc:87: fe:8d:f0:6b:63:f3:7e:ef:1d:a1:d9:46:41:a4:05: bd:d8:07:67:2c:65:56:f0:68:af:1d:79:fc:c0:3d: ed:ae:be:aa:9d:f9:57:4e:d7:57:64:7e:cc:d3:a9: 66:6c:a1:77:bf:32:61:e9:a1:1e:e6:2b:49:75:04: 6f:39:b3:3d:9d:2d:06:06:06:bb:9b:ff:22:d3:c3: a5:86:7a:23:90:48:45:23:45:d1:5a:13:b5:7f:46: 31:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:CA:C5:22:16:02:59:FB:C8:15:38:25:E7:8C:38:0F:A8:FA:64:00 X509v3 Authority Key Identifier: keyid:DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:28:26:55:8f:ea:46:5d:14:33:8d:b5:f9:42:7f:73:fd:b7: 1a:08:73:b4:b4:38:02:26:01:69:4e:77:c6:de:96:56:8f:3e: 99:7c:2e:4a:c0:78:bd:e8:3a:25:7f:f2:c6:a2:8d:64:2a:99: aa:81:c7:aa:48:80:05:e8:3c:9e:7f:94:db:1d:cf:35:3f:24: 64:e2:01:44:4b:38:42:ec:3e:e7:cc:02:25:bd:d7:fa:04:77: 00:ba:6a:08:07:d4:64:19:b4:20:9d:aa:f9:9b:2f:93:07:03: 9c:e1:73:f8:16:8e:4c:d5:94:9b:1d:0a:00:c0:93:b6:b8:52: 39:f3:ee:4f:86:c3:83:51:1a:7e:6d:07:9b:37:3f:a3:c6:12: 2e:d7:18:c6:8f:30:c6:e3:21:d1:06:bf:9e:32:e3:8e:71:36: ce:3c:de:c8:b9:ee:9e:0a:3e:1f:ab:9c:de:f0:43:f8:04:36: 9d:c8:73:4d:7d:82:d2:97:f9:aa:07:75:94:76:ea:40:19:d2: 77:4a:c9:84:69:65:38:55:4c:c5:44:c7:8c:1f:d7:18:10:34: 89:ad:96:3c:87:fb:aa:ae:f8:94:21:e1:2a:10:8a:cd:6a:07: ec:50:ed:1a:a2:6e:40:8d:ce:e5:cc:64:03:1a:d2:56:fd:0c: 35:01:9c:7b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUMQrrNwdHRWV8dI51OQ4K07oUxHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyhEQUVBRkIzNzE2 NEIzRjIwMTU4MjA2OTMyMzFGMjQwMDJBREMyMTEzMB4XDTI2MDYxMjE3NDg1OVoX DTI2MDYxMzIxNDY1OVowMzExMC8GA1UEAxMoQkFDQUM1MjIxNjAyNTlGQkM4MTUz ODI1RTc4QzM4MEZBOEZBNjQwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALS6WrfoQpkfOHvSYV1WtM9y6yDy3v0PYFziM53WYjKxTVXhDv4hoZv2XVbx glAzBYVaEZpfAhTRivrKf2uKqFzb0HX+GV4emY168brGzbJ1+WtGa+p/gWn9QR6k 3FZnRXVwOhxKhF8r5XRzAiHBhPWu/Ond8ugPxZmrH/Kouat0X8ZBD2N6xkgXKxZI 2elk2A+7T3mHKnvX/PuMTmf+C6GAB9yH/o3wa2Pzfu8dodlGQaQFvdgHZyxlVvBo rx15/MA97a6+qp35V07XV2R+zNOpZmyhd78yYemhHuYrSXUEbzmzPZ0tBgYGu5v/ ItPDpYZ6I5BIRSNF0VoTtX9GMWkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBS6ysUi FgJZ+8gVOCXnjDgPqPpkADAfBgNVHSMEGDAWgBTa6vs3Fks/IBWCBpMjHyQAKtwh EzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzYyL0RBRUFGQjM3MTY0QjNGMjAxNTgyMDY5MzIz MUYyNDAwMkFEQzIxMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzJ1cjdOeFpMUHlBVmdnYVRJeDhrQUNyY0lSTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNjIvREFFQUZCMzcxNjRCM0YyMDE1ODIwNjkzMjMxRjI0 MDAyQURDMjExMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIYoJlWP6kZdFDONtflCf3P9txoIc7S0OAIm AWlOd8bellaPPpl8LkrAeL3oOiV/8saijWQqmaqBx6pIgAXoPJ5/lNsdzzU/JGTi AURLOELsPufMAiW91/oEdwC6aggH1GQZtCCdqvmbL5MHA5zhc/gWjkzVlJsdCgDA k7a4Ujnz7k+Gw4NRGn5tB5s3P6PGEi7XGMaPMMbjIdEGv54y445xNs483si57p4K Ph+rnN7wQ/gENp3Ic019gtKX+aoHdZR26kAZ0ndKyYRpZThVTMVEx4wf1xgQNImt ljyH+6qu+JQh4SoQis1qB+xQ7RqibkCNzuXMZAMa0lb9DDUBnHs= -----END CERTIFICATE-----Generated at Sat Jun 13 10:45:33 2026 by rpki-client