$ rpki-client -vvf rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft File: DAEAFB37164B3F2015820693231F24002ADC2113.mft (raw, json) Hash identifier: a5cjz4UZCNQVTC5/Sfh3Q3w0VRrTvUliN06ESk0Hkkw= Subject key identifier: B0:BB:CE:7B:43:E4:99:80:F9:5C:BF:5F:A8:D7:7A:0B:77:D9:C9:E5 Authority key identifier: DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 Certificate issuer: /CN=A9124B5E0000/serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Certificate serial: 0D4D22C1847B1F8820F8914FCA09297FCD8ECDFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft Manifest number: 1C Signing time: Fri 17 Apr 2026 12:31:32 +0000 Manifest this update: Fri 17 Apr 2026 12:26:32 +0000 Manifest next update: Sat 18 Apr 2026 14:49:32 +0000 Files and hashes: 1: DAEAFB37164B3F2015820693231F24002ADC2113.crl (hash: rOnEbDZvy7gwTenSeHiQ8AqfgI5C23zcqxCFjcohGm4=) 2: 3130332e3133362e3134342e302f32322d3234203d3e2038383838.roa (hash: gkSWhIsG/cKa7Lp3wtklJFQ2S+B1JBQrTCHMmOqyJOY=) 3: 3130332e3133362e3134342e302f32322d3234203d3e203234323432.roa (hash: thQvr/N0a8AQrIYugr9DeDyUSsLd2ILFdpj+ZmdXBk4=) 4: 3130332e3133362e3134372e302f32342d3234203d3e203433333537.roa (hash: rFVQUYAqJTODcy+KMuheW/SnFVOlgYrcWihzZ85NvXY=) 5: 323430343a393534303a3a2f33322d3438203d3e203234323432.roa (hash: 9Jlu+M3rXD12EuJzqhRW5ZFTf/kwx838RQdRoAP5znc=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 14:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:4d:22:c1:84:7b:1f:88:20:f8:91:4f:ca:09:29:7f:cd:8e:cd:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B5E0000, serialNumber=DAEAFB37164B3F2015820693231F24002ADC2113 Validity Not Before: Apr 17 12:26:32 2026 GMT Not After : Apr 18 14:49:32 2026 GMT Subject: CN=B0BBCE7B43E49980F95CBF5FA8D77A0B77D9C9E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e2:e1:2b:dd:38:a7:fc:8c:82:76:79:bb:33: bd:b6:d4:da:0a:e4:9c:c9:83:bf:51:ed:d1:86:b7: 7b:ba:c2:41:d9:62:a1:33:aa:89:18:e6:6c:d9:80: 2d:44:20:ad:96:cd:16:93:94:16:39:02:68:3e:b5: 18:a5:7e:2d:a9:d4:7c:3b:31:e6:38:8d:cf:87:58: dd:d7:7d:be:f3:e2:b2:c0:c5:e4:11:64:4d:75:af: 1c:43:2a:33:0f:46:a3:84:27:aa:a5:57:45:a2:af: 13:af:96:76:d6:03:e1:c0:80:da:7a:a5:51:4f:6a: e2:d6:b8:f3:32:4a:43:01:a2:d0:73:8c:03:61:ec: e2:b9:5e:17:12:e3:39:49:33:25:97:8d:ad:7b:6c: 1c:d0:45:c3:47:e8:79:6b:66:59:ed:86:0f:f8:58: 35:27:13:95:c4:67:61:6c:41:94:ad:94:f2:90:1e: 35:e8:f4:84:ba:8a:06:cb:25:b6:d8:44:7c:d2:5a: c9:01:ef:75:6a:16:54:cc:8f:46:bb:7f:c6:34:59: 43:5a:27:7d:e8:b0:19:7a:62:17:04:ee:3e:73:89: 22:a0:e6:9d:79:d0:7c:19:50:65:b4:cf:1c:a2:c0: a5:21:3b:dd:38:ae:52:40:4b:79:cb:0c:37:c9:8e: 3b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BB:CE:7B:43:E4:99:80:F9:5C:BF:5F:A8:D7:7A:0B:77:D9:C9:E5 X509v3 Authority Key Identifier: keyid:DA:EA:FB:37:16:4B:3F:20:15:82:06:93:23:1F:24:00:2A:DC:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ur7NxZLPyAVggaTIx8kACrcIRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/62/DAEAFB37164B3F2015820693231F24002ADC2113.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:6c:d8:3f:36:63:04:19:3e:5e:f7:f1:ed:34:5c:28:f6:50: 3d:43:0c:dd:4f:31:75:2c:30:01:91:c5:cc:91:0e:7a:36:9d: 93:36:9b:b5:e1:bd:00:e2:c6:d3:12:e0:3f:38:6d:4d:6f:20: 06:5a:f9:4e:b3:05:9f:e7:7c:f7:68:4d:7f:c4:66:e4:f8:20: 6b:48:e7:f7:f5:68:43:5c:77:b0:46:07:8c:c4:7a:91:6b:67: 2b:4e:60:9e:5a:74:af:71:32:e9:9d:29:dd:4f:a8:0d:a9:75: ad:0b:2b:78:c7:b9:d4:13:ab:32:70:c2:6a:ba:d1:9d:8b:42: 0a:d2:0d:14:cf:af:9a:c9:db:7f:5b:96:05:a5:a8:94:ea:97: e5:00:ab:7e:4a:9d:7a:5c:3e:db:3e:a2:a6:16:6e:ce:dd:b1: 94:11:7b:54:46:6e:be:19:67:3d:f8:9c:4e:fe:bf:a1:af:bc: ac:6a:cc:9e:f4:09:8d:d0:74:2e:87:16:87:7d:01:15:b3:c5: 15:d9:d1:b6:10:17:18:bf:c9:02:61:38:3d:bd:09:29:4e:d9: f6:15:93:a6:7a:dc:be:f9:98:d8:a6:73:0e:8c:76:9d:5f:89: 65:ab:a6:af:a7:f2:38:67:f3:d6:e3:ef:4e:48:63:9b:35:cf: 75:ef:0e:6b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUDU0iwYR7H4gg+JFPygkpf82Ozf0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMjRCNUUwMDAwMTEwLwYDVQQFEyhEQUVBRkIzNzE2 NEIzRjIwMTU4MjA2OTMyMzFGMjQwMDJBREMyMTEzMB4XDTI2MDQxNzEyMjYzMloX DTI2MDQxODE0NDkzMlowMzExMC8GA1UEAxMoQjBCQkNFN0I0M0U0OTk4MEY5NUNC RjVGQThENzdBMEI3N0Q5QzlFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN7i4SvdOKf8jIJ2ebszvbbU2grknMmDv1Ht0Ya3e7rCQdlioTOqiRjmbNmA LUQgrZbNFpOUFjkCaD61GKV+LanUfDsx5jiNz4dY3dd9vvPissDF5BFkTXWvHEMq Mw9Go4QnqqVXRaKvE6+WdtYD4cCA2nqlUU9q4ta48zJKQwGi0HOMA2Hs4rleFxLj OUkzJZeNrXtsHNBFw0foeWtmWe2GD/hYNScTlcRnYWxBlK2U8pAeNej0hLqKBssl tthEfNJayQHvdWoWVMyPRrt/xjRZQ1onfeiwGXpiFwTuPnOJIqDmnXnQfBlQZbTP HKLApSE73TiuUkBLecsMN8mOO1MCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSwu857 Q+SZgPlcv1+o13oLd9nJ5TAfBgNVHSMEGDAWgBTa6vs3Fks/IBWCBpMjHyQAKtwh EzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzYyL0RBRUFGQjM3MTY0QjNGMjAxNTgyMDY5MzIz MUYyNDAwMkFEQzIxMTMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyLzJ1cjdOeFpMUHlBVmdnYVRJeDhrQUNyY0lSTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNjIvREFFQUZCMzcxNjRCM0YyMDE1ODIwNjkzMjMxRjI0 MDAyQURDMjExMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAENs2D82YwQZPl738e00XCj2UD1DDN1PMXUs MAGRxcyRDno2nZM2m7XhvQDixtMS4D84bU1vIAZa+U6zBZ/nfPdoTX/EZuT4IGtI 5/f1aENcd7BGB4zEepFrZytOYJ5adK9xMumdKd1PqA2pda0LK3jHudQTqzJwwmq6 0Z2LQgrSDRTPr5rJ239blgWlqJTql+UAq35KnXpcPts+oqYWbs7dsZQRe1RGbr4Z Zz34nE7+v6GvvKxqzJ70CY3QdC6HFod9ARWzxRXZ0bYQFxi/yQJhOD29CSlO2fYV k6Z63L75mNimcw6Mdp1fiWWrpq+n8jhn89bj705IY5s1z3XvDms= -----END CERTIFICATE-----Generated at Fri Apr 17 23:54:08 2026 by rpki-client