$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: 7BRG8hrJlAMwzdGSsrkdEqlTQIHQK+b3ub7+spAaRGw= Subject key identifier: C5:6D:9F:D0:BB:03:59:4D:9A:D9:44:8F:3A:4C:68:06:A4:EB:03:94 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 73628B10C9DD9458924F793982FCE2F22B341DAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 070B Signing time: Mon 13 Oct 2025 08:50:17 +0000 Manifest this update: Mon 13 Oct 2025 08:45:17 +0000 Manifest next update: Tue 14 Oct 2025 12:11:17 +0000 Files and hashes: 1: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 2: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 3: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 4: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 5: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 6: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 7: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 8: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: /4x/oBmuH/PbCBRy6de1qWU44XGmQmz3FqrpPejVd0M=) 9: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 10: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 11: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 12:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:62:8b:10:c9:dd:94:58:92:4f:79:39:82:fc:e2:f2:2b:34:1d:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Oct 13 08:45:17 2025 GMT Not After : Oct 14 12:11:17 2025 GMT Subject: CN=C56D9FD0BB03594D9AD9448F3A4C6806A4EB0394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:57:8f:40:ff:a2:fd:ab:f0:ac:5e:af:b1:ec: 4c:29:e8:60:3e:cb:a9:13:eb:fc:05:0a:6c:79:7b: 0e:6b:c1:dc:02:27:c3:4e:3d:38:a7:f5:1f:ad:f2: 6b:f3:a4:25:58:a3:c6:0a:8d:30:80:01:cf:66:cd: cc:ed:36:ab:5b:db:80:a4:f7:fe:0c:db:a3:a1:cd: 7b:dc:da:a8:8c:1f:4c:ed:6d:24:21:7d:43:28:59: b7:60:7a:96:16:30:9f:4a:f9:dc:b6:bf:6e:9c:51: 84:3d:ae:c7:94:ef:68:73:39:96:33:f6:22:a7:67: dc:81:7d:e5:ba:6c:b2:10:10:5e:e0:fa:2b:d9:34: d9:d4:4f:43:ed:d2:ea:9b:11:3e:f5:9c:1f:e0:bc: ee:84:13:f1:46:12:0b:a6:7e:34:83:23:3e:92:25: 4e:ed:b7:1d:7d:09:6b:4b:e3:13:1d:d1:0e:28:b3: 81:a9:7d:f7:80:f9:63:fb:d6:76:5a:fe:bd:3e:02: fa:f5:d7:f7:9d:ac:7e:54:b8:fa:6f:0b:2f:52:3d: 71:fa:de:64:3a:4b:4e:fa:d5:7d:b7:5f:32:1d:d7: 0c:ee:ff:f9:93:dd:82:9d:a4:f2:ca:40:4f:a9:96: d9:50:63:06:62:15:36:98:94:bc:7b:0f:49:6d:be: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6D:9F:D0:BB:03:59:4D:9A:D9:44:8F:3A:4C:68:06:A4:EB:03:94 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:f7:48:2c:77:19:16:f5:36:09:9f:cb:df:62:53:01:51:3b: 4e:61:ea:34:c7:c6:0d:37:87:c0:a4:d3:82:83:d8:0e:a1:8c: ac:2e:2e:d4:04:ba:41:90:fb:44:d8:d0:5e:28:eb:0e:52:25: 63:2d:e2:e8:3a:1a:9e:b9:f3:c1:19:d4:16:9d:3f:22:31:4c: 8d:be:f2:3f:88:e0:05:78:43:2a:e6:27:06:5d:3c:81:f1:07: 8f:6b:9a:6f:9d:09:34:72:52:97:05:91:e0:e0:e1:ed:4c:52: 9b:79:d2:b5:1d:70:8f:57:0f:64:d5:d9:a8:95:81:24:09:a4: cf:e2:8d:9f:24:cf:2e:32:89:b8:25:47:98:b3:4e:86:d0:53: ac:3b:63:10:c9:57:f5:f8:25:5f:f2:46:5e:18:c3:63:bd:41: 56:63:41:cc:90:52:89:71:65:da:bb:2c:dd:42:e6:2d:e4:34: fd:a3:6f:e7:19:c8:f1:9c:eb:c6:61:f5:d5:2e:ec:f6:19:5a: 00:38:fa:ac:f7:e4:57:9f:db:d6:a7:bf:86:f3:12:23:85:b4: ec:7c:20:de:67:e4:02:11:16:d9:00:9f:07:a4:fa:f1:c8:5c: 52:b7:8f:9c:4e:9b:dc:27:f9:88:46:5b:c4:79:95:62:ad:b1: 57:06:eb:f2 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUc2KLEMndlFiST3k5gvzi8is0HaswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MTAxMzA4NDUxN1oX DTI1MTAxNDEyMTExN1owMzExMC8GA1UEAxMoQzU2RDlGRDBCQjAzNTk0RDlBRDk0 NDhGM0E0QzY4MDZBNEVCMDM5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5Xj0D/ov2r8Kxer7HsTCnoYD7LqRPr/AUKbHl7DmvB3AInw049OKf1H63y a/OkJVijxgqNMIABz2bNzO02q1vbgKT3/gzbo6HNe9zaqIwfTO1tJCF9QyhZt2B6 lhYwn0r53La/bpxRhD2ux5TvaHM5ljP2Iqdn3IF95bpsshAQXuD6K9k02dRPQ+3S 6psRPvWcH+C87oQT8UYSC6Z+NIMjPpIlTu23HX0Ja0vjEx3RDiizgal994D5Y/vW dlr+vT4C+vXX952sflS4+m8LL1I9cfreZDpLTvrVfbdfMh3XDO7/+ZPdgp2k8spA T6mW2VBjBmIVNpiUvHsPSW2+xPUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBTFbZ/Q uwNZTZrZRI86TGgGpOsDlDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADj3SCx3GRb1Ngmfy99iUwFRO05h6jTHxg03 h8Ck04KD2A6hjKwuLtQEukGQ+0TY0F4o6w5SJWMt4ug6Gp6588EZ1BadPyIxTI2+ 8j+I4AV4QyrmJwZdPIHxB49rmm+dCTRyUpcFkeDg4e1MUpt50rUdcI9XD2TV2aiV gSQJpM/ijZ8kzy4yibglR5izTobQU6w7YxDJV/X4JV/yRl4Yw2O9QVZjQcyQUolx Zdq7LN1C5i3kNP2jb+cZyPGc68Zh9dUu7PYZWgA4+qz35Fef29anv4bzEiOFtOx8 IN5n5AIRFtkAnwek+vHIXFK3j5xOm9wn+YhGW8R5lWKtsVcG6/I= -----END CERTIFICATE-----Generated at Tue Oct 14 03:59:23 2025 by rpki-client