This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: E1mJRopW+oMeXmaDSpx1f7mnl/UfrKCNn3WbjE39W/M= Subject key identifier: B2:9B:23:8C:1D:9C:70:D9:0E:31:81:5E:D9:13:97:75:4B:7C:FD:8A Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 2C9492EA4B8EA352330927878C1113C0B59301DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 4D Signing time: Wed 21 Jan 2026 07:29:12 +0000 Manifest this update: Wed 21 Jan 2026 07:24:12 +0000 Manifest next update: Thu 22 Jan 2026 08:33:12 +0000 Files and hashes: 1: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 2: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 3: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 4: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 5: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 6: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 7: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: F8bWKDvj6sLBtfhF9sRhGxJZ7Fz5r8dm6IP7+YWPZ+Q=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 08:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:94:92:ea:4b:8e:a3:52:33:09:27:87:8c:11:13:c0:b5:93:01:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Jan 21 07:24:12 2026 GMT Not After : Jan 22 08:33:12 2026 GMT Subject: CN=B29B238C1D9C70D90E31815ED91397754B7CFD8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:52:9b:49:5d:f4:99:a1:7a:a6:ab:35:86:7a: b8:22:9c:98:02:48:f4:32:c6:f7:c7:22:12:90:da: a8:97:12:42:18:c0:d2:01:3c:35:3d:0e:c8:a3:9f: 89:07:6f:bf:24:db:46:c3:da:42:4d:d1:e1:f3:d9: da:6d:ab:45:fc:63:03:93:a2:99:ed:a7:bc:6a:99: 28:61:73:dd:c1:38:50:e4:2a:f0:4b:1e:cf:dc:64: 34:1a:f6:2b:25:da:5b:1d:8f:28:ad:d2:ef:98:b8: 69:51:a7:35:c1:a9:86:51:49:db:b9:4c:ed:3b:02: 01:69:7a:12:49:df:1d:4b:a0:af:42:72:60:68:3c: d3:e8:11:3e:c9:a4:dc:f1:db:d3:dc:de:96:02:3b: 10:d0:d5:f1:c0:47:65:bd:f9:f6:eb:9f:e7:c3:d4: c3:6c:f7:8d:53:63:1f:73:8b:87:a7:3a:48:d1:63: 2d:7c:7a:88:fd:2e:da:71:2a:22:17:0b:d2:ba:14: 14:41:10:c4:11:b8:f8:f6:46:e3:9b:d7:28:fe:58: c7:de:35:85:8f:70:6f:01:47:07:df:fb:06:55:56: 2f:7b:02:de:35:12:35:95:ce:cd:73:b6:28:79:97: f5:e3:b4:fe:a5:b5:c0:ae:1e:68:52:37:fb:21:f4: a5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9B:23:8C:1D:9C:70:D9:0E:31:81:5E:D9:13:97:75:4B:7C:FD:8A X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:63:98:58:b9:3c:b1:a0:92:84:1f:80:0a:13:4f:9b:61:e9: d4:a2:b2:dd:a0:a3:13:83:65:a9:d7:42:a9:69:0b:ef:19:dc: e5:cc:30:54:72:1d:b1:09:c3:dd:66:fc:23:f7:fc:ce:03:05: 34:a5:f2:46:25:d3:bf:89:05:40:52:4d:58:50:4b:aa:5d:d5: 0d:de:70:95:d5:c0:d2:43:86:e2:35:50:2e:30:c4:19:b5:fe: 8e:21:27:72:c8:fb:5c:e9:67:fb:66:09:59:83:d0:04:a0:d9: dd:6e:1d:d0:3a:8a:90:b1:3e:f9:f2:d5:66:b5:89:38:64:c6: a4:85:02:07:8b:6b:33:53:78:29:cd:9a:ea:f2:e3:1a:3d:c9: 72:e5:92:a3:37:31:d1:6a:06:f5:74:0d:e6:2d:98:18:58:d5: 93:a6:97:7f:44:1d:5d:b8:6e:9f:25:95:49:44:20:24:8f:c4: db:4a:6f:27:ca:b7:2c:b4:17:ca:41:58:3e:15:36:3c:fc:77: 84:dd:ae:0f:b9:85:c6:07:fb:ad:16:b6:b5:8e:17:37:e2:e9: f3:17:b2:89:05:81:1c:2d:88:ea:59:39:06:1b:d3:be:df:eb: ae:50:a3:30:13:40:83:e4:b6:48:96:33:3c:1c:49:7a:08:45: bc:8d:63:25 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIULJSS6kuOo1IzCSeHjBETwLWTAdwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDEyMTA3MjQxMloX DTI2MDEyMjA4MzMxMlowMzExMC8GA1UEAxMoQjI5QjIzOEMxRDlDNzBEOTBFMzE4 MTVFRDkxMzk3NzU0QjdDRkQ4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAI9Sm0ld9JmheqarNYZ6uCKcmAJI9DLG98ciEpDaqJcSQhjA0gE8NT0OyKOf iQdvvyTbRsPaQk3R4fPZ2m2rRfxjA5Oime2nvGqZKGFz3cE4UOQq8Esez9xkNBr2 KyXaWx2PKK3S75i4aVGnNcGphlFJ27lM7TsCAWl6EknfHUugr0JyYGg80+gRPsmk 3PHb09zelgI7ENDV8cBHZb359uuf58PUw2z3jVNjH3OLh6c6SNFjLXx6iP0u2nEq IhcL0roUFEEQxBG4+PZG45vXKP5Yx941hY9wbwFHB9/7BlVWL3sC3jUSNZXOzXO2 KHmX9eO0/qW1wK4eaFI3+yH0pTkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSymyOM HZxw2Q4xgV7ZE5d1S3z9ijAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAtjmFi5PLGgkoQfgAoTT5th6dSist2goxOD ZanXQqlpC+8Z3OXMMFRyHbEJw91m/CP3/M4DBTSl8kYl07+JBUBSTVhQS6pd1Q3e cJXVwNJDhuI1UC4wxBm1/o4hJ3LI+1zpZ/tmCVmD0ASg2d1uHdA6ipCxPvny1Wa1 iThkxqSFAgeLazNTeCnNmury4xo9yXLlkqM3MdFqBvV0DeYtmBhY1ZOml39EHV24 bp8llUlEICSPxNtKbyfKtyy0F8pBWD4VNjz8d4Tdrg+5hcYH+60WtrWOFzfi6fMX sokFgRwtiOpZOQYb077f665QozATQIPktkiWMzwcSXoIRbyNYyU= -----END CERTIFICATE-----Generated at Wed Jan 21 15:08:53 2026 by rpki-client