$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: incMRiS1SIkfIuNoSkz1GgOo3R8+xvsUt48P4purkzc= Subject key identifier: 96:B7:6D:59:D9:A5:93:01:8E:28:39:01:B8:D6:E0:C1:B1:17:41:14 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 4D40D7E4F425CBE9ABF397667087D0F3A45BD579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 086A Signing time: Fri 05 Jun 2026 23:58:59 +0000 Manifest this update: Fri 05 Jun 2026 23:53:59 +0000 Manifest next update: Sun 07 Jun 2026 01:42:59 +0000 Files and hashes: 1: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: 45xWZoMfu9BJFTSSRh83owtluQAI2KDUymvMPg+9sSk=) 2: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 3: 34352e3131372e3130302e302f32322d3234203d3e2033323538.roa (hash: KWTsLxWIFcXKjNjL6LfQgdvsCq/JmPqGWhOtCfjvM28=) 4: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 5: 3130332e35372e3136342e302f32322d3234203d3e2033323538.roa (hash: UqIC9u7BB9Id3IMbYgH9FX+luoFs+hXH+2V/k9wpOTU=) 6: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 7: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 8: 34352e3131372e3130302e302f32322d3234203d3e2038383838.roa (hash: voPiakdEWPirMq/WncFYq7Upw23ZrCEb5LKsM3/mXvw=) 9: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 10: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 11: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 12: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 13: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 14: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 01:42:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:40:d7:e4:f4:25:cb:e9:ab:f3:97:66:70:87:d0:f3:a4:5b:d5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Jun 5 23:53:59 2026 GMT Not After : Jun 7 01:42:59 2026 GMT Subject: CN=96B76D59D9A593018E283901B8D6E0C1B1174114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d4:94:59:d6:ed:d5:03:98:4f:89:d3:8d:a5: 70:20:1b:57:0c:36:95:71:52:85:58:d6:a9:37:72: 34:c5:62:60:87:71:3d:f5:5b:1f:d6:fd:b7:8f:c4: ee:bd:36:f7:9c:8f:2a:7d:39:d3:82:ba:42:89:1c: 66:f9:bb:2b:14:c8:a9:7e:c4:20:56:fb:6a:90:8d: 4c:1e:4a:83:f7:64:fd:61:bc:00:e5:25:0f:93:18: e1:ba:82:05:ec:17:b3:ec:96:80:ca:c1:66:cf:24: 12:8c:ff:f9:bc:d0:3d:e4:03:88:5f:2e:f9:22:92: ac:d7:2e:62:3b:e1:61:0f:80:e4:a4:c2:16:47:d4: 03:bd:bd:1f:91:83:f5:22:99:dc:d8:e5:56:f2:b0: 55:19:c5:cf:2d:f8:17:9a:38:78:7a:b7:4c:33:d1: d9:cf:74:29:66:56:41:4b:1a:a1:7c:2a:fe:74:94: 05:00:8f:a0:cf:08:1f:96:20:e3:ba:5f:3c:e8:2a: f6:31:5e:91:ca:b1:96:27:de:2d:38:92:9c:f6:b3: a1:8f:ff:4c:6f:0c:7a:05:93:0a:ad:c7:7f:95:ba: 2b:83:09:69:db:28:39:b5:71:43:59:35:3b:a1:68: a4:40:77:36:02:b1:00:2f:69:08:3c:2f:c6:b0:5e: 0e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B7:6D:59:D9:A5:93:01:8E:28:39:01:B8:D6:E0:C1:B1:17:41:14 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:29:ee:11:15:b9:b6:bf:68:5b:8e:92:62:66:21:bb:09:d0: 9a:97:e0:33:1d:d9:6a:8e:2c:de:54:23:c6:07:c5:05:dc:a8: 5f:00:33:60:d9:aa:e4:33:db:68:e7:9a:cd:1f:00:da:57:71: e9:cc:6b:0d:ea:b0:a8:cd:97:77:fc:ea:eb:a8:a7:15:ee:d0: 1c:7e:b1:d9:e3:b5:93:07:bf:06:57:c0:76:fa:e7:5e:62:77: 2a:f6:1d:c9:c1:95:ea:cc:01:fd:b8:97:69:0a:2e:85:d3:12: 8e:c7:3d:9c:a8:68:98:97:43:dc:5d:36:c7:95:b5:d2:1a:bb: e7:92:da:b5:0e:ee:a5:fd:3b:2c:41:fe:5d:ef:62:de:64:d4: d0:d7:8f:bf:b6:f7:ca:ae:64:6c:e5:e4:2f:b7:3f:35:b9:46: 22:f2:af:ce:e2:82:12:28:6a:10:a7:b2:7e:5f:f2:cb:af:34: c1:2e:43:bc:3a:95:aa:d1:22:8c:c2:00:ad:3c:e0:4f:1d:33: 1b:8b:64:ec:93:e2:f8:1a:27:13:09:1e:a1:67:2b:59:80:17: f8:69:c3:6f:e5:c7:f2:24:f8:27:db:5d:4b:fb:8e:3a:58:a3: 69:25:78:2e:fa:bd:1c:57:81:01:30:ca:ab:f4:5e:df:e5:bc: 86:3d:67:1b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUTUDX5PQly+mr85dmcIfQ86Rb1XkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDYwNTIzNTM1OVoX DTI2MDYwNzAxNDI1OVowMzExMC8GA1UEAxMoOTZCNzZENTlEOUE1OTMwMThFMjgz OTAxQjhENkUwQzFCMTE3NDExNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXUlFnW7dUDmE+J042lcCAbVww2lXFShVjWqTdyNMViYIdxPfVbH9b9t4/E 7r0295yPKn0504K6QokcZvm7KxTIqX7EIFb7apCNTB5Kg/dk/WG8AOUlD5MY4bqC BewXs+yWgMrBZs8kEoz/+bzQPeQDiF8u+SKSrNcuYjvhYQ+A5KTCFkfUA729H5GD 9SKZ3NjlVvKwVRnFzy34F5o4eHq3TDPR2c90KWZWQUsaoXwq/nSUBQCPoM8IH5Yg 47pfPOgq9jFekcqxlifeLTiSnPazoY//TG8MegWTCq3Hf5W6K4MJadsoObVxQ1k1 O6FopEB3NgKxAC9pCDwvxrBeDjUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSWt21Z 2aWTAY4oOQG41uDBsRdBFDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEop7hEVuba/aFuOkmJmIbsJ0JqX4DMd2WqO LN5UI8YHxQXcqF8AM2DZquQz22jnms0fANpXcenMaw3qsKjNl3f86uuopxXu0Bx+ sdnjtZMHvwZXwHb6515idyr2HcnBlerMAf24l2kKLoXTEo7HPZyoaJiXQ9xdNseV tdIau+eS2rUO7qX9OyxB/l3vYt5k1NDXj7+298quZGzl5C+3PzW5RiLyr87ighIo ahCnsn5f8suvNMEuQ7w6larRIozCAK084E8dMxuLZOyT4vgaJxMJHqFnK1mAF/hp w2/lx/Ik+CfbXUv7jjpYo2kleC76vRxXgQEwyqv0Xt/lvIY9Zxs= -----END CERTIFICATE-----Generated at Sat Jun 6 14:57:05 2026 by rpki-client