$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: lkozr1jKo8cQa1f4oB8sVYu2ZJep9LXovjfZJDS0wBY= Subject key identifier: 7C:33:DD:3A:BA:2E:E2:3E:DD:CE:2F:92:61:7F:E9:55:5C:80:40:00 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 3ADBE3DA71F3CA9F01130E698C379BF185B00DA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 06C2 Signing time: Thu 21 Aug 2025 20:34:32 +0000 Manifest this update: Thu 21 Aug 2025 20:29:32 +0000 Manifest next update: Fri 22 Aug 2025 23:52:32 +0000 Files and hashes: 1: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: jyNabxBU4E0iGzLKUBuwzuG/CbYiteouzBgrGC1EzQA=) 2: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: yk45ao5jNqxMlDQT9mHO4gwIetHo/y3vLlvKtrGMEU4=) 3: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: lBMQEgfNNqcQ4E5GtZaXErKNQCGw7C4a/0CUQvTz9ac=) 4: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: miNQAOvEV9cqqJweidH1Da7G+8UCj99vxs996hAnF9M=) 5: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: 2qTnddQssGcU8sg+KC1UrSSj7O/cHGdq7aS7vBfMtvw=) 6: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 5hG4RwSHZVnSqsO9x6f7nAjxYEbAb/HRse6WJYcZAOE=) 7: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: 3QW6q7nlyaTHmuuayp38mJeD/0p6RSdiwoIkJYlbTEA=) 8: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: dxlqlSymD3+QS7EUByE6MriZabTKsAyLs26IGboQuBk=) 9: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: 77sdRzVq6pP1l7Vu8K2ysVi1R2suvoRUxVXi384mZhs=) 10: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: aHLgsiUilAeuP0eUngFPa4NKmApL4+TTY785LIHVh2U=) 11: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: M7BFiLI/85eHFKyc8YCJdi5+AugJtg2SqbTW7w1G6LQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Aug 2025 23:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:db:e3:da:71:f3:ca:9f:01:13:0e:69:8c:37:9b:f1:85:b0:0d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Aug 21 20:29:32 2025 GMT Not After : Aug 22 23:52:32 2025 GMT Subject: CN=7C33DD3ABA2EE23EDDCE2F92617FE9555C804000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:1c:52:81:dd:1a:16:58:e1:12:72:78:a8: 28:8f:fa:b8:7b:f9:12:03:d9:8c:8a:ef:57:01:e5: 1e:2e:02:19:dc:09:48:de:8c:0c:ab:2f:55:14:ea: ce:79:8b:87:5d:39:9d:bf:3a:b2:ae:dc:32:e6:ab: 74:82:16:49:55:c6:38:2c:97:14:de:aa:38:05:82: 22:5e:a2:3e:dd:12:dd:09:aa:2b:0e:a9:f7:10:f5: 5a:80:60:d0:0a:6e:19:29:33:28:0a:d2:d7:80:c8: 9d:41:7b:c8:b2:7e:62:b8:14:b4:42:ab:00:6c:ed: 3e:ae:d1:9c:53:7f:6c:ab:3f:b5:f4:06:58:04:5e: 61:bb:cd:0e:51:7f:c7:a5:94:64:59:42:54:21:ad: fa:77:2f:b1:b5:1d:52:42:a6:87:fd:79:cf:6a:9b: a5:10:a8:cf:98:aa:74:9e:14:00:ba:ce:f7:52:84: 97:a4:5f:4e:d6:f4:28:68:42:2d:95:71:4d:48:58: 36:bd:b0:63:b9:d6:4c:5e:16:2e:e0:3a:e5:5f:01: 16:6c:f5:8c:3d:a6:e5:74:9a:f0:16:b1:77:f3:ff: de:14:3a:ff:66:2b:d0:b8:e3:47:92:33:07:0b:5b: c9:d9:66:e9:73:5d:9c:37:5a:11:d5:75:b6:60:3f: 04:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:33:DD:3A:BA:2E:E2:3E:DD:CE:2F:92:61:7F:E9:55:5C:80:40:00 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:65:94:f9:b0:b8:9f:b0:30:7d:1d:09:79:55:8f:ea:f0:fb: f9:15:64:7d:61:23:3e:fe:6c:4f:ba:54:c0:0a:4a:d2:7b:e7: a3:42:5c:d8:eb:c7:c2:18:a7:bb:1a:5c:17:f0:7c:5a:d9:a4: a0:8f:42:38:f6:d4:ab:27:7c:fd:04:f4:42:40:a1:e7:ed:b5: 68:64:03:e5:e3:5b:6e:a0:28:b3:61:1a:b8:e7:a6:0a:20:6e: 83:39:05:11:f3:93:44:be:74:08:c5:b1:2b:e0:65:1e:27:9a: 9a:ea:6f:10:26:2c:94:fb:5c:1f:87:47:75:4d:45:27:97:88: b9:fa:71:c0:f1:67:1c:8e:7e:0a:9f:d5:65:25:02:ad:a0:4d: f6:72:f2:f7:e8:b5:e5:13:49:5d:76:7f:db:63:a6:3e:87:54: c4:72:4a:7a:01:51:59:49:64:92:93:3a:18:2b:f9:3d:8b:ed: 13:07:4e:62:82:87:03:93:42:76:91:93:4c:2b:13:c1:5d:cc: 91:4f:09:a6:97:18:93:b3:99:95:f4:26:06:12:02:15:a7:54: 67:58:29:09:07:e7:fd:c3:cd:a3:eb:31:4d:e4:e6:8b:e9:79: 33:9f:3b:fa:20:08:22:88:11:34:a3:50:1b:58:a3:90:db:09: f4:18:53:79 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUOtvj2nHzyp8BEw5pjDeb8YWwDaUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDgyMTIwMjkzMloX DTI1MDgyMjIzNTIzMlowMzExMC8GA1UEAxMoN0MzM0REM0FCQTJFRTIzRUREQ0Uy RjkyNjE3RkU5NTU1QzgwNDAwMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+yHFKB3RoWWOEScnioKI/6uHv5EgPZjIrvVwHlHi4CGdwJSN6MDKsvVRTq znmLh105nb86sq7cMuardIIWSVXGOCyXFN6qOAWCIl6iPt0S3QmqKw6p9xD1WoBg 0ApuGSkzKArS14DInUF7yLJ+YrgUtEKrAGztPq7RnFN/bKs/tfQGWAReYbvNDlF/ x6WUZFlCVCGt+ncvsbUdUkKmh/15z2qbpRCoz5iqdJ4UALrO91KEl6RfTtb0KGhC LZVxTUhYNr2wY7nWTF4WLuA65V8BFmz1jD2m5XSa8Baxd/P/3hQ6/2Yr0LjjR5Iz Bwtbydlm6XNdnDdaEdV1tmA/BGMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBR8M906 ui7iPt3OL5Jhf+lVXIBAADAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpllPmwuJ+wMH0dCXlVj+rw+/kVZH1hIz7+ bE+6VMAKStJ756NCXNjrx8IYp7saXBfwfFrZpKCPQjj21KsnfP0E9EJAoefttWhk A+XjW26gKLNhGrjnpgogboM5BRHzk0S+dAjFsSvgZR4nmprqbxAmLJT7XB+HR3VN RSeXiLn6ccDxZxyOfgqf1WUlAq2gTfZy8vfoteUTSV12f9tjpj6HVMRySnoBUVlJ ZJKTOhgr+T2L7RMHTmKChwOTQnaRk0wrE8FdzJFPCaaXGJOzmZX0JgYSAhWnVGdY KQkH5/3DzaPrMU3k5ovpeTOfO/ogCCKIETSjUBtYo5DbCfQYU3k= -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:44 2025 by rpki-client