$ rpki-client -vvf rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft File: 5A19D2FDC8392727696F70449B8B32AF772091A8.mft (raw, json) Hash identifier: Zv6wPaqf9xFIiEDlEq9J1KKcfIGGj59WYv+3ejGqjyA= Subject key identifier: 1A:81:B2:8B:CD:8A:C3:A0:87:64:5A:CF:39:46:31:5C:9F:94:D5:B4 Authority key identifier: 5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 Certificate issuer: /CN=A91FA37D0000/serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Certificate serial: 1018E58160E01C797A40F64FD9073BC07AFFFA22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft Manifest number: 0659 Signing time: Sat 07 Jun 2025 09:03:34 +0000 Manifest this update: Sat 07 Jun 2025 08:58:34 +0000 Manifest next update: Sun 08 Jun 2025 10:24:34 +0000 Files and hashes: 1: 3130332e35372e3136342e302f32322d3234203d3e203233383538.roa (hash: KI2kjcb07IKesGZMinnaOEsz6/06bdA9BT5qaeeOZmU=) 2: 34352e3131372e3130302e302f32342d3234203d3e203233383538.roa (hash: 4yKK7RQLbJBx+gt7T7QZgKRPOxG5R1dHZfrXztWXnbY=) 3: 3130332e35372e3136342e302f32322d3234203d3e2038383838.roa (hash: /Wmkfbw/QLEaUfwznC2lEulj1F/OKW4GZn9Xm/KPUG0=) 4: 34352e3131372e3130312e302f32342d3234203d3e2034373835.roa (hash: RoPjCRMghwCK+9v8LueB1XO0CyHUDX9hongUtmgU4JA=) 5: 34352e3131372e3130322e302f32342d3234203d3e2034373835.roa (hash: sjhpTTvgo1FU3FaH8+zye7CEY4XTySIpONdDjAMSaqY=) 6: 5A19D2FDC8392727696F70449B8B32AF772091A8.crl (hash: vuZOvK8BouHh/9wdiWOtU8IUawfmHkUrlKSDnmhYaM4=) 7: 34352e3131372e3130332e302f32342d3234203d3e2034373835.roa (hash: OAx44UBQtqTx/sf7Ypb1JySuUeicgRwCGdCfYQjlgWk=) 8: 3130332e35372e3136352e302f32342d3234203d3e203336333531.roa (hash: f2FBviAJM9nDrbOq27nSeNTQJT9zRNj0KswKLgIhEgE=) 9: 323430333a326538303a3a2f33322d3438203d3e2038383838.roa (hash: BXr190YMJHQxmWlxeRnUrhn/SSQploVAKewTY5AAwas=) 10: 34352e3131372e3130302e302f32342d3234203d3e2038383838.roa (hash: aBdDS6GrqBz2pYvAehQXWgBWcDDBIaKdKK9Nym5jFLQ=) 11: 323430333a326538303a3a2f33322d3438203d3e203233383538.roa (hash: 8WGGny+jtgmSnuXipWNSY1ESLZ/IHyh7iVF3qoveYM0=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 10:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:18:e5:81:60:e0:1c:79:7a:40:f6:4f:d9:07:3b:c0:7a:ff:fa:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA37D0000, serialNumber=5A19D2FDC8392727696F70449B8B32AF772091A8 Validity Not Before: Jun 7 08:58:34 2025 GMT Not After : Jun 8 10:24:34 2025 GMT Subject: CN=1A81B28BCD8AC3A087645ACF3946315C9F94D5B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:18:4f:04:a7:1c:d5:d9:38:f5:83:f4:d2:12: e4:27:3b:c6:5d:bf:68:d5:29:91:90:c0:fc:14:cc: 2d:5c:32:80:7c:71:ba:cc:27:98:39:ad:12:50:66: b0:dc:d1:7b:c7:b1:f1:28:3d:3b:1c:0e:ff:6c:c5: 4a:5c:07:79:a8:e2:df:d8:08:2e:ce:67:c6:8c:ad: 7c:a7:84:93:11:32:09:49:56:58:fe:dc:40:20:6f: a6:f1:74:18:7b:f3:b9:f3:1d:9f:ef:d6:1c:a7:0e: 86:4e:cf:ae:ab:ea:24:c3:ab:53:e9:b1:33:45:ee: 86:54:18:b1:68:70:0a:1f:9e:bb:79:84:67:e4:90: 34:0f:85:8f:3f:48:7c:c0:6a:31:42:4e:ec:17:ab: d5:82:62:e7:6f:23:c9:42:49:89:5f:56:87:e7:b3: 9b:13:96:f1:34:00:b2:5a:c4:28:33:74:66:0b:0a: 61:d8:fd:e1:04:78:ef:54:fb:9c:52:0d:9b:27:7f: 1c:e8:ed:21:e2:e2:b9:5d:5a:5d:51:0a:d5:9e:20: 64:3a:ae:2e:9d:a7:a1:13:78:9b:34:53:d9:d8:15: 4c:c9:27:9f:2f:0a:69:11:b8:57:52:07:88:7a:f3: bd:4c:7b:08:3a:1f:6b:28:ae:c0:9f:f6:5f:ec:eb: 13:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:81:B2:8B:CD:8A:C3:A0:87:64:5A:CF:39:46:31:5C:9F:94:D5:B4 X509v3 Authority Key Identifier: keyid:5A:19:D2:FD:C8:39:27:27:69:6F:70:44:9B:8B:32:AF:77:20:91:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WhnS_cg5Jydpb3BEm4syr3cgkag.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/57/5A19D2FDC8392727696F70449B8B32AF772091A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:24:4c:3a:96:4a:1a:e6:1d:10:80:e7:5a:e3:b6:a5:74:2b: 38:bb:b9:c4:5f:25:fb:6c:d5:66:c5:bd:b0:4e:36:2b:f0:b5: a0:bd:19:bb:be:9b:3e:66:78:e5:70:e5:ae:30:39:8b:97:be: 35:e0:3e:45:b1:2d:d4:9b:c0:6c:61:84:d0:ec:db:49:12:5c: 57:dd:bc:75:99:b7:1a:3d:f9:96:fc:88:f6:1d:23:b7:d2:36: 59:91:7d:97:ce:00:96:67:26:f9:1a:3b:2c:1e:b4:ea:86:7e: ab:03:cf:0e:a1:d0:2a:02:9a:13:c2:0d:a0:d0:5c:20:0c:24: a1:bc:dc:09:87:78:59:28:57:7b:24:28:d7:38:89:74:6d:84: 44:d5:49:5f:88:48:71:46:af:6e:7c:85:a1:7b:fe:03:7a:0c: d8:28:2a:54:2c:55:76:9f:ae:e5:19:3a:a5:53:98:15:ef:b5: ff:8a:78:32:93:4a:bc:8e:8c:7a:d5:5a:78:51:d7:19:92:fe: 77:5a:70:0b:76:9a:d9:88:26:e2:b1:c3:98:6b:d0:a3:20:07: 07:b1:a9:b3:18:a5:27:c1:06:06:e1:69:a3:c5:af:9a:cf:a2: f1:32:1d:cb:68:3b:77:86:63:d6:35:9a:e1:d3:f1:af:75:e9: fe:37:6c:02 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUEBjlgWDgHHl6QPZP2Qc7wHr/+iIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkEzN0QwMDAwMTEwLwYDVQQFEyg1QTE5RDJGREM4 MzkyNzI3Njk2RjcwNDQ5QjhCMzJBRjc3MjA5MUE4MB4XDTI1MDYwNzA4NTgzNFoX DTI1MDYwODEwMjQzNFowMzExMC8GA1UEAxMoMUE4MUIyOEJDRDhBQzNBMDg3NjQ1 QUNGMzk0NjMxNUM5Rjk0RDVCNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKAYTwSnHNXZOPWD9NIS5Cc7xl2/aNUpkZDA/BTMLVwygHxxuswnmDmtElBm sNzRe8ex8Sg9OxwO/2zFSlwHeaji39gILs5nxoytfKeEkxEyCUlWWP7cQCBvpvF0 GHvzufMdn+/WHKcOhk7PrqvqJMOrU+mxM0XuhlQYsWhwCh+eu3mEZ+SQNA+Fjz9I fMBqMUJO7Ber1YJi528jyUJJiV9Wh+ezmxOW8TQAslrEKDN0ZgsKYdj94QR471T7 nFINmyd/HOjtIeLiuV1aXVEK1Z4gZDquLp2noRN4mzRT2dgVTMknny8KaRG4V1IH iHrzvUx7CDofayiuwJ/2X+zrExkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQagbKL zYrDoIdkWs85RjFcn5TVtDAfBgNVHSMEGDAWgBRaGdL9yDknJ2lvcESbizKvdyCR qDAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU3LzVBMTlEMkZEQzgzOTI3Mjc2OTZGNzA0NDlC OEIzMkFGNzcyMDkxQTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1doblNfY2c1SnlkcGIzQkVtNHN5cjNjZ2thZy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTcvNUExOUQyRkRDODM5MjcyNzY5NkY3MDQ0OUI4QjMy QUY3NzIwOTFBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB8kTDqWShrmHRCA51rjtqV0Kzi7ucRfJfts 1WbFvbBONivwtaC9Gbu+mz5meOVw5a4wOYuXvjXgPkWxLdSbwGxhhNDs20kSXFfd vHWZtxo9+Zb8iPYdI7fSNlmRfZfOAJZnJvkaOywetOqGfqsDzw6h0CoCmhPCDaDQ XCAMJKG83AmHeFkoV3skKNc4iXRthETVSV+ISHFGr258haF7/gN6DNgoKlQsVXaf ruUZOqVTmBXvtf+KeDKTSryOjHrVWnhR1xmS/ndacAt2mtmIJuKxw5hr0KMgBwex qbMYpSfBBgbhaaPFr5rPovEyHctoO3eGY9Y1muHT8a916f43bAI= -----END CERTIFICATE-----Generated at Sat Jun 7 12:34:54 2025 by rpki-client