$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: nkZM1CcbciHOVXJl4cLDCwnUHUxVHEExSwfjf/THmcE= Subject key identifier: 46:2D:CD:82:1A:94:08:02:5A:5C:2E:88:9E:FF:FA:CD:89:46:01:69 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 56FAEF2648140FC7255C162531B9B956591DC9F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0603 Signing time: Sat 05 Apr 2025 21:45:12 +0000 Manifest this update: Sat 05 Apr 2025 21:40:12 +0000 Manifest next update: Mon 07 Apr 2025 00:28:12 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 2: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) 3: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 4: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 5: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 6: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 7: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) 8: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 9: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: Deg5dzmkiKXBQNhK3sJu10k/JM0vPUd6tRPZEJbfj/4=) 10: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) 11: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 00:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:fa:ef:26:48:14:0f:c7:25:5c:16:25:31:b9:b9:56:59:1d:c9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000 Validity Not Before: Apr 5 21:40:12 2025 GMT Not After : Apr 7 00:28:12 2025 GMT Subject: CN=462DCD821A9408025A5C2E889EFFFACD89460169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:68:b3:2c:45:53:9a:8f:34:25:6f:7d:bd:e8: ad:32:1f:b9:8c:c2:35:b2:5e:a5:09:90:54:74:86: 76:3d:bf:62:29:77:18:bd:b1:1d:d7:ee:4f:d9:24: f2:6f:12:15:fa:0f:46:d6:26:4a:c4:49:89:96:02: 62:ef:49:96:dc:79:48:9b:64:09:62:12:1e:84:dd: 1b:3d:f3:ee:ce:76:c3:01:55:bb:68:27:7f:3e:dc: 1e:85:36:fd:55:29:ef:41:db:53:75:83:b3:80:0c: 96:d6:69:50:af:67:b1:2c:81:dc:71:c0:b4:99:d9: e5:3c:73:6b:4c:ca:55:02:50:e3:b3:24:39:b7:cc: 0b:d1:d1:c4:ca:eb:3a:dc:6c:c6:2c:f0:a4:ad:d0: 0f:78:25:b0:ba:83:a3:8e:c9:7f:cc:4b:e5:c2:61: 14:11:3c:ae:eb:85:d7:a4:76:24:d9:c1:36:7d:2d: e2:92:14:5c:18:13:39:2f:26:fd:69:2c:fe:06:8c: 67:28:37:73:d4:66:e8:88:04:32:fc:82:c0:66:17: 77:b0:7c:6f:c1:2e:ba:62:b5:3a:fd:09:4c:51:69: 82:32:8e:28:f8:70:3b:97:7b:53:5a:c4:57:26:c5: c5:98:8d:b6:5d:58:76:16:ea:89:0c:b1:3a:fe:2c: 47:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2D:CD:82:1A:94:08:02:5A:5C:2E:88:9E:FF:FA:CD:89:46:01:69 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:dd:29:4e:b0:bd:42:cf:2f:68:3b:74:39:56:cb:c8:79:77: f8:5b:7f:90:a8:b3:8e:4c:02:12:8b:2a:e0:32:f5:79:c0:24: 1e:ff:c9:53:f3:f8:59:5c:b9:37:a1:8e:52:a7:d5:f8:ea:80: 18:45:57:56:9e:b4:47:22:2c:74:2f:50:03:95:fb:d9:96:86: 44:ea:03:73:07:7e:66:3a:84:0f:40:d1:e5:3b:e1:a7:6a:8a: 19:a6:08:cb:2a:4a:db:16:2f:5e:52:99:f1:e6:0c:9e:af:2f: fb:db:31:61:ed:31:c2:a2:62:31:49:d5:27:bc:f3:07:39:41: 1f:e1:b7:0a:c4:d5:db:7d:21:7f:f1:23:d7:9b:38:23:7d:f7: b3:4a:c2:67:7c:f3:4e:40:f9:dc:18:f2:fa:ab:de:90:56:0b: 67:47:07:72:23:f5:a6:27:92:59:63:22:92:c8:01:10:30:d9: 6f:23:3f:9c:3b:93:10:2a:c2:70:23:9d:bc:d9:78:a6:95:22: 8c:0b:da:1e:5c:78:dd:dc:a4:c0:13:41:10:47:51:df:b0:26: b9:89:8e:e7:59:35:79:53:3b:7f:17:08:0d:4f:65:57:f9:d8: 7d:9c:c1:61:e0:76:5d:80:5e:90:ff:00:95:6e:93:d2:8a:69: 4d:ca:f1:c6 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUVvrvJkgUD8clXBYlMbm5VlkdyfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDQwNTIxNDAxMloX DTI1MDQwNzAwMjgxMlowMzExMC8GA1UEAxMoNDYyRENEODIxQTk0MDgwMjVBNUMy RTg4OUVGRkZBQ0Q4OTQ2MDE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5osyxFU5qPNCVvfb3orTIfuYzCNbJepQmQVHSGdj2/Yil3GL2xHdfuT9kk 8m8SFfoPRtYmSsRJiZYCYu9Jltx5SJtkCWISHoTdGz3z7s52wwFVu2gnfz7cHoU2 /VUp70HbU3WDs4AMltZpUK9nsSyB3HHAtJnZ5Txza0zKVQJQ47MkObfMC9HRxMrr OtxsxizwpK3QD3glsLqDo47Jf8xL5cJhFBE8ruuF16R2JNnBNn0t4pIUXBgTOS8m /Wks/gaMZyg3c9Rm6IgEMvyCwGYXd7B8b8EuumK1Ov0JTFFpgjKOKPhwO5d7U1rE VybFxZiNtl1YdhbqiQyxOv4sR7MCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRGLc2C GpQIAlpcLoie//rNiUYBaTAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEfdKU6wvULPL2g7dDlWy8h5d/hbf5Cos45M AhKLKuAy9XnAJB7/yVPz+FlcuTehjlKn1fjqgBhFV1aetEciLHQvUAOV+9mWhkTq A3MHfmY6hA9A0eU74adqihmmCMsqStsWL15SmfHmDJ6vL/vbMWHtMcKiYjFJ1Se8 8wc5QR/htwrE1dt9IX/xI9ebOCN997NKwmd8805A+dwY8vqr3pBWC2dHB3Ij9aYn klljIpLIARAw2W8jP5w7kxAqwnAjnbzZeKaVIowL2h5ceN3cpMATQRBHUd+wJrmJ judZNXlTO38XCA1PZVf52H2cwWHgdl2AXpD/AJVuk9KKaU3K8cY= -----END CERTIFICATE-----Generated at Sun Apr 6 17:21:28 2025 by rpki-client