This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: g7U9/EaYJabGIT3pO/ZRenaolM/d+AYgutDo3ldl3+o= Subject key identifier: 40:B7:83:7E:02:2A:A8:1E:A1:BA:71:4C:1E:EB:FA:97:28:0A:EC:5E Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 7956D00E26B1C33DD530958AD975FFBC855F6BC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 079B Signing time: Wed 21 Jan 2026 08:44:12 +0000 Manifest this update: Wed 21 Jan 2026 08:39:12 +0000 Manifest next update: Thu 22 Jan 2026 09:36:12 +0000 Files and hashes: 1: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: nkGRT/4j8FfMtsqBTZg8/gPTFz+GREAiEBjigLSxnLw=) 2: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 3: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 4: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 5: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 6: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 7: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 8: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 9: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 10: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 11: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 09:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:56:d0:0e:26:b1:c3:3d:d5:30:95:8a:d9:75:ff:bc:85:5f:6b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Jan 21 08:39:12 2026 GMT Not After : Jan 22 09:36:12 2026 GMT Subject: CN=40B7837E022AA81EA1BA714C1EEBFA97280AEC5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d9:ec:d0:bf:23:9b:f7:99:1e:cf:9f:cb:68: 54:23:56:38:b1:c2:4a:d4:c8:6f:82:97:97:74:1b: 84:ac:16:77:4a:0d:dd:1b:b2:e0:1d:66:0a:35:f3: 9a:e3:e8:91:4f:5c:8d:15:6f:6a:65:bc:93:78:ec: 45:a5:31:fe:14:8a:51:6d:f4:04:e9:40:9a:9c:68: 19:54:9b:e0:d7:b9:b7:8f:e9:c9:2f:49:29:9a:6d: 07:d5:51:ec:47:f1:48:84:ff:33:0e:2b:85:50:9c: fe:a4:9c:41:34:bc:ca:1f:3e:17:d0:10:9f:2d:6d: fd:90:51:e3:15:18:c3:c4:96:cd:5b:31:8b:d9:b3: b2:1b:bd:8e:a4:bd:a2:dd:86:43:0e:10:47:4f:e3: b4:8e:da:a0:fd:48:4d:3c:00:bf:5f:db:9e:b9:03: c0:82:33:21:5a:55:73:82:f8:6b:1e:8a:a3:4e:97: c5:fc:75:77:d7:83:e7:82:91:bd:3b:44:89:17:d5: 2a:29:30:6e:24:f8:bb:96:35:69:d0:42:27:d0:ed: bf:6a:13:b9:6c:25:9f:af:b6:4d:61:d3:64:2f:f7: ac:ac:55:73:22:1a:dc:7d:4c:4d:7f:be:f5:52:91: 3c:39:33:cb:8f:43:83:2d:04:bf:9b:f5:b0:62:af: 13:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B7:83:7E:02:2A:A8:1E:A1:BA:71:4C:1E:EB:FA:97:28:0A:EC:5E X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:bb:ea:f3:01:63:c8:b4:05:98:53:d4:dd:f3:5a:f9:02:b4: 21:32:97:09:24:78:2d:12:bd:25:7d:33:65:74:34:ba:2b:c8: f3:ba:bf:8e:3a:ee:8a:46:30:ec:30:d9:ac:b5:85:46:77:c8: a9:f0:ed:95:e6:43:b3:69:8f:3f:95:bf:f8:1c:94:a1:68:56: 74:b5:e1:3a:5f:3b:aa:f4:b2:f6:c3:ae:7c:50:19:7e:39:65: 56:74:04:bb:4a:1a:a8:28:3f:dd:94:b3:df:a4:e2:93:03:87: d3:32:c2:2c:9a:bf:96:70:e0:f2:ee:3b:31:a4:62:96:fa:02: 84:84:ca:66:3c:6e:89:01:65:62:11:97:fb:0e:70:19:05:04: e1:14:82:b7:65:51:83:95:ef:63:ba:7f:6b:2e:25:cf:03:d7: ef:97:8d:f0:90:5b:c2:a2:83:8b:4d:78:f8:66:4c:f2:40:3d: e9:65:5a:a0:7b:8c:ad:1b:af:66:92:e2:5d:da:7a:b6:09:c2: a3:07:f0:ea:8c:92:66:ac:d2:93:ee:41:1d:c3:84:22:37:c1: a5:b7:7d:0d:c5:f1:17:26:ba:d0:1c:88:0a:38:93:ea:82:6e: f8:29:89:94:85:5a:26:20:f3:29:b3:e0:f7:0b:74:5e:a2:98: 3b:cd:ef:23 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUeVbQDiaxwz3VMJWK2XX/vIVfa8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDEyMTA4MzkxMloX DTI2MDEyMjA5MzYxMlowMzExMC8GA1UEAxMoNDBCNzgzN0UwMjJBQTgxRUExQkE3 MTRDMUVFQkZBOTcyODBBRUM1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPDZ7NC/I5v3mR7Pn8toVCNWOLHCStTIb4KXl3QbhKwWd0oN3Ruy4B1mCjXz muPokU9cjRVvamW8k3jsRaUx/hSKUW30BOlAmpxoGVSb4Ne5t4/pyS9JKZptB9VR 7EfxSIT/Mw4rhVCc/qScQTS8yh8+F9AQny1t/ZBR4xUYw8SWzVsxi9mzshu9jqS9 ot2GQw4QR0/jtI7aoP1ITTwAv1/bnrkDwIIzIVpVc4L4ax6Ko06Xxfx1d9eD54KR vTtEiRfVKikwbiT4u5Y1adBCJ9Dtv2oTuWwln6+2TWHTZC/3rKxVcyIa3H1MTX++ 9VKRPDkzy49Dgy0Ev5v1sGKvE00CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRAt4N+ AiqoHqG6cUwe6/qXKArsXjAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGa76vMBY8i0BZhT1N3zWvkCtCEylwkkeC0S vSV9M2V0NLoryPO6v4467opGMOww2ay1hUZ3yKnw7ZXmQ7Npjz+Vv/gclKFoVnS1 4TpfO6r0svbDrnxQGX45ZVZ0BLtKGqgoP92Us9+k4pMDh9Mywiyav5Zw4PLuOzGk Ypb6AoSEymY8bokBZWIRl/sOcBkFBOEUgrdlUYOV72O6f2suJc8D1++XjfCQW8Ki g4tNePhmTPJAPellWqB7jK0br2aS4l3aerYJwqMH8OqMkmas0pPuQR3DhCI3waW3 fQ3F8RcmutAciAo4k+qCbvgpiZSFWiYg8ymz4PcLdF6imDvN7yM= -----END CERTIFICATE-----Generated at Wed Jan 21 15:08:19 2026 by rpki-client