$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: JqvJNenF5JO0NjW/NcOKgKLP9JIEiKpMNlancIxyxI0= Subject key identifier: 83:A0:E4:90:27:2F:9F:68:B8:59:67:AC:67:45:91:4E:B1:E3:9D:90 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 3E16D949DB9F0287F901096211F4E22A98006594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 081C Signing time: Tue 21 Apr 2026 18:26:32 +0000 Manifest this update: Tue 21 Apr 2026 18:21:32 +0000 Manifest next update: Wed 22 Apr 2026 20:20:32 +0000 Files and hashes: 1: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 2: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 3: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 4: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 5: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: l0ok//SPAa+Z37FIoYTmoInDKSsVjiya0l9aSjJZxiI=) 6: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 7: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 8: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 9: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 10: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) 11: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 20:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:16:d9:49:db:9f:02:87:f9:01:09:62:11:f4:e2:2a:98:00:65:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Apr 21 18:21:32 2026 GMT Not After : Apr 22 20:20:32 2026 GMT Subject: CN=83A0E490272F9F68B85967AC6745914EB1E39D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:78:89:8d:a4:c9:d2:97:72:9a:25:4b:7d: 45:a0:28:eb:ab:12:72:a8:a1:e6:9d:15:25:b4:da: a3:d7:b1:c3:8d:fe:25:00:5c:8d:30:83:83:b3:df: 44:1a:ad:94:6e:30:52:10:81:97:09:d6:9b:94:93: 49:6b:33:cc:58:e5:76:c4:38:09:07:39:91:51:9a: 1a:56:4c:3f:52:8d:7c:cc:f6:d3:1b:68:d3:4b:9a: 1f:4e:7e:d4:f1:22:10:5a:a2:e4:0a:56:4f:5b:f3: 79:83:34:32:e0:9f:25:8c:c6:7b:c7:cb:8c:3e:c1: e4:a4:63:dd:97:92:93:a0:99:e0:25:ff:52:55:bc: 5c:fe:ac:15:e3:06:6d:a1:20:c8:6f:df:ae:ea:e3: a4:fb:ba:b8:5c:88:6f:d7:f4:69:fd:fb:8b:09:01: 2b:00:81:2f:f9:12:ae:e9:8d:fe:40:ab:f2:ee:b9: e0:c1:d9:98:3d:cb:91:ce:59:7f:43:d5:71:fa:8a: 55:1b:db:e5:e0:88:7c:97:6d:ec:66:33:77:1c:dd: 78:9e:53:4c:f8:c9:5c:40:68:7b:98:81:a5:d9:98: 50:9e:24:5d:69:a6:96:d7:1c:25:da:37:37:3e:02: fb:73:1a:22:75:25:c6:59:99:38:4a:73:ef:b5:18: 00:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:A0:E4:90:27:2F:9F:68:B8:59:67:AC:67:45:91:4E:B1:E3:9D:90 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:40:64:6a:6f:fc:7e:df:5b:1f:a1:f7:79:20:1f:ad:d0:83: 19:25:90:ea:55:67:20:fd:e0:64:55:c2:68:c1:ab:98:23:a6: a0:42:74:e7:9b:33:63:4f:c9:39:b9:ec:54:94:21:b1:26:c1: 9d:44:a9:f9:fe:c8:bd:c0:f6:2e:96:90:c2:e0:c7:ce:66:ab: b0:33:3e:ea:d1:30:78:90:d3:1c:e2:e3:b7:3c:21:89:af:4a: ee:b5:a6:98:80:61:5f:bb:64:40:6c:83:03:79:84:5e:7a:b6: d2:65:17:04:8d:74:cd:54:a7:6f:a0:dd:c5:28:dd:13:84:d9: 16:7c:3d:e7:c8:95:7c:a5:83:14:85:c6:63:90:36:1d:9e:67: 1f:06:f1:b9:5b:01:a3:55:b4:3e:14:20:e0:d2:4c:4e:ed:58: 61:65:87:84:4f:16:16:5c:b3:af:1b:8b:41:96:b8:a1:55:ee: 74:34:df:61:d5:32:4f:9a:9c:5f:05:d0:82:8b:15:04:31:5a: 52:36:3a:1f:34:d3:da:be:9d:18:e2:c7:ca:ec:5b:a4:5f:9d: ee:ae:d9:32:7f:03:00:21:c4:18:e9:b4:57:a3:ec:f7:88:b8: 45:a4:3a:04:3a:6a:b7:56:72:d7:b3:45:65:3e:86:fc:e8:d4: 2a:ed:2e:e3 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUPhbZSdufAof5AQliEfTiKpgAZZQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI2MDQyMTE4MjEzMloX DTI2MDQyMjIwMjAzMlowMzExMC8GA1UEAxMoODNBMEU0OTAyNzJGOUY2OEI4NTk2 N0FDNjc0NTkxNEVCMUUzOUQ5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0XeImNpMnSl3KaJUt9RaAo66sScqih5p0VJbTao9exw43+JQBcjTCDg7Pf RBqtlG4wUhCBlwnWm5STSWszzFjldsQ4CQc5kVGaGlZMP1KNfMz20xto00uaH05+ 1PEiEFqi5ApWT1vzeYM0MuCfJYzGe8fLjD7B5KRj3ZeSk6CZ4CX/UlW8XP6sFeMG baEgyG/frurjpPu6uFyIb9f0af37iwkBKwCBL/kSrumN/kCr8u654MHZmD3Lkc5Z f0PVcfqKVRvb5eCIfJdt7GYzdxzdeJ5TTPjJXEBoe5iBpdmYUJ4kXWmmltccJdo3 Nz4C+3MaInUlxlmZOEpz77UYABkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSDoOSQ Jy+faLhZZ6xnRZFOseOdkDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEtAZGpv/H7fWx+h93kgH63QgxklkOpVZyD9 4GRVwmjBq5gjpqBCdOebM2NPyTm57FSUIbEmwZ1Eqfn+yL3A9i6WkMLgx85mq7Az PurRMHiQ0xzi47c8IYmvSu61ppiAYV+7ZEBsgwN5hF56ttJlFwSNdM1Up2+g3cUo 3ROE2RZ8PefIlXylgxSFxmOQNh2eZx8G8blbAaNVtD4UIODSTE7tWGFlh4RPFhZc s68bi0GWuKFV7nQ032HVMk+anF8F0IKLFQQxWlI2Oh8009q+nRjix8rsW6Rfne6u 2TJ/AwAhxBjptFej7PeIuEWkOgQ6ardWctezRWU+hvzo1CrtLuM= -----END CERTIFICATE-----Generated at Wed Apr 22 05:28:54 2026 by rpki-client