$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: PkZCnOslf4UN5apaPMh7eG+uy61ZJuMbza7OS6rB4H0= Subject key identifier: A8:2D:33:20:BF:56:3D:1D:6A:BC:4D:E4:0F:6E:FA:FC:99:9C:3C:B0 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 271B9B2658DA22887AFEF3A6C69354C72D19B379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 07D7 Signing time: Sat 07 Mar 2026 08:46:30 +0000 Manifest this update: Sat 07 Mar 2026 08:41:30 +0000 Manifest next update: Sun 08 Mar 2026 09:18:30 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 2: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 3: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 4: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 5: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 6: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 7: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 8: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 9: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 10: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: y1Sc7g1x6VIv9qMuNYp37m6HltoUX37hX6fZhmEFq5s=) 11: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:18:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:1b:9b:26:58:da:22:88:7a:fe:f3:a6:c6:93:54:c7:2d:19:b3:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Mar 7 08:41:30 2026 GMT Not After : Mar 8 09:18:30 2026 GMT Subject: CN=A82D3320BF563D1D6ABC4DE40F6EFAFC999C3CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:eb:19:53:72:d3:e5:3b:8c:11:86:d2:f8:e6: f7:85:4a:fe:41:ec:53:8c:40:7d:60:9d:2e:1c:a6: 1d:e0:c5:5e:f8:7d:58:ab:e2:1e:a4:81:f6:db:54: c6:16:d2:6c:9d:3d:39:3e:d1:07:ae:44:a5:30:40: 15:f6:25:8f:46:3e:a1:b6:42:d8:e5:9b:4e:e3:61: 1d:f9:cc:0f:f6:fb:e5:65:66:0e:9d:11:2d:fc:99: 5e:62:60:3f:16:94:2e:3d:df:0e:9d:37:db:65:57: 99:fd:22:8d:8f:ba:bf:ef:bd:9e:dd:5a:e2:cb:7d: b1:10:9b:db:81:e5:56:94:6f:27:c9:bc:97:83:a5: a9:db:04:75:6d:de:6c:2b:85:38:a3:ea:4d:35:2a: 44:af:aa:63:6c:ef:28:3e:c4:a6:f3:a9:6a:ba:27: 35:b3:90:23:36:c1:e4:7d:a8:0a:f5:6d:a3:ce:c2: a1:29:45:d9:c3:b4:b5:b2:6a:25:94:39:33:ad:3a: c4:d5:7d:96:ce:d5:db:53:c1:03:c3:56:92:7b:dc: 68:fb:7d:3c:12:a9:b9:9a:ba:d3:17:e8:9f:1d:e0: b8:ed:d3:38:c2:c0:cb:4e:6e:28:da:99:89:06:a4: 1a:5d:31:0f:8c:88:1b:07:70:d3:0b:32:3b:a7:91: 21:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2D:33:20:BF:56:3D:1D:6A:BC:4D:E4:0F:6E:FA:FC:99:9C:3C:B0 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:05:19:84:02:4b:65:fe:b0:2e:0d:b8:22:1d:e7:90:d0:97: 14:c4:11:81:0b:f6:19:cb:e4:c5:a0:fe:bb:a4:5d:19:62:da: 8d:93:1b:25:32:ba:fe:31:6d:b5:d9:4c:7f:3d:62:af:3a:94: b2:9b:96:90:93:90:51:46:b0:81:15:7b:d4:54:aa:7a:4a:ab: 11:2e:6d:de:01:13:07:dd:78:00:83:89:40:16:a0:3b:94:17: 2a:9a:c3:82:ae:24:0c:82:2c:c4:d3:ef:6d:37:21:d5:c2:d8: 8e:9d:b8:e0:99:a1:07:d5:98:78:b1:91:3d:f0:dd:69:89:87: 1f:1f:3d:bf:a5:1a:03:ca:65:8f:41:92:f2:dd:eb:2e:3c:4e: fa:2a:18:5c:80:ac:ef:7b:9a:c6:d6:b5:b4:d3:c0:24:62:3b: af:6d:59:18:5e:15:84:ef:5c:80:2a:c2:3d:c0:49:b8:22:33: b3:03:05:b3:cb:5b:bc:27:38:6f:7a:f3:63:16:bf:b4:b3:dd: d0:a8:76:56:ef:71:a2:50:e2:b1:aa:d8:52:7e:92:8c:82:7f: 95:0a:a3:13:65:33:b3:48:e8:e2:8b:a3:c9:ba:e9:be:38:bb: e3:30:f2:af:d3:50:69:74:71:68:db:20:35:4c:b7:31:79:5a: c7:2d:3d:eb -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUJxubJljaIoh6/vOmxpNUxy0Zs3kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDMwNzA4NDEzMFoX DTI2MDMwODA5MTgzMFowMzExMC8GA1UEAxMoQTgyRDMzMjBCRjU2M0QxRDZBQkM0 REU0MEY2RUZBRkM5OTlDM0NCMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIjrGVNy0+U7jBGG0vjm94VK/kHsU4xAfWCdLhymHeDFXvh9WKviHqSB9ttU xhbSbJ09OT7RB65EpTBAFfYlj0Y+obZC2OWbTuNhHfnMD/b75WVmDp0RLfyZXmJg PxaULj3fDp0322VXmf0ijY+6v++9nt1a4st9sRCb24HlVpRvJ8m8l4OlqdsEdW3e bCuFOKPqTTUqRK+qY2zvKD7EpvOparonNbOQIzbB5H2oCvVto87CoSlF2cO0tbJq JZQ5M606xNV9ls7V21PBA8NWknvcaPt9PBKpuZq60xfonx3guO3TOMLAy05uKNqZ iQakGl0xD4yIGwdw0wsyO6eRIWMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSoLTMg v1Y9HWq8TeQPbvr8mZw8sDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG8FGYQCS2X+sC4NuCId55DQlxTEEYEL9hnL 5MWg/rukXRli2o2TGyUyuv4xbbXZTH89Yq86lLKblpCTkFFGsIEVe9RUqnpKqxEu bd4BEwfdeACDiUAWoDuUFyqaw4KuJAyCLMTT7203IdXC2I6duOCZoQfVmHixkT3w 3WmJhx8fPb+lGgPKZY9BkvLd6y48TvoqGFyArO97msbWtbTTwCRiO69tWRheFYTv XIAqwj3ASbgiM7MDBbPLW7wnOG9682MWv7Sz3dCodlbvcaJQ4rGq2FJ+koyCf5UK oxNlM7NI6OKLo8m66b44u+Mw8q/TUGl0cWjbIDVMtzF5WsctPes= -----END CERTIFICATE-----Generated at Sun Mar 8 00:35:10 2026 by rpki-client