$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: ICXaOlBymkEfy9/pdqAXp+Z1CczdOYOUmdjksm5kMSU= Subject key identifier: 30:36:3B:66:E3:72:3E:1C:E4:44:0B:4B:67:03:7C:E3:7C:AF:9B:F7 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 3516512B15573574B96461C0857CB986976FB714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 011B Signing time: Sat 06 Jun 2026 02:58:59 +0000 Manifest this update: Sat 06 Jun 2026 02:53:59 +0000 Manifest next update: Sun 07 Jun 2026 03:17:59 +0000 Files and hashes: 1: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 2: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 3: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: nq38/M/9la1ATw/29ieRNqk1NMIIkYj4fYpK2NlvD/s=) 4: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 5: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 6: 3230322e352e3232302e302f32322d3234203d3e2038383838.roa (hash: 8fu1VICLJqfb2qBAICSYNfZTWIi/AxU4hCyty2bGjds=) 7: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 8: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 9: 3130332e3230312e3132382e302f32322d3234203d3e2038383838.roa (hash: jroVYKFHmgPVzgsQ26TPXXr/n6bFbi/cJido3jfFoMg=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 03:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:16:51:2b:15:57:35:74:b9:64:61:c0:85:7c:b9:86:97:6f:b7:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Jun 6 02:53:59 2026 GMT Not After : Jun 7 03:17:59 2026 GMT Subject: CN=30363B66E3723E1CE4440B4B67037CE37CAF9BF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:53:38:a4:cd:79:c7:03:8a:32:bd:60:de:52: 65:66:69:68:b6:47:21:9d:95:ff:44:5c:32:c2:00: 4f:1f:5b:5f:5e:45:6f:99:68:89:62:d7:ca:f9:72: e3:b6:8a:ef:01:02:47:42:8d:54:f8:7b:1b:55:70: 77:cf:49:ea:d1:16:03:8c:52:72:c1:58:14:99:18: 8c:2b:12:75:19:dd:e5:8e:71:4d:72:20:b5:3a:ff: a4:22:f5:26:fa:e0:8b:e9:29:b1:78:84:a3:ef:2f: b4:f4:73:3c:3e:1f:95:4f:9f:d3:d8:df:e0:79:04: d0:91:92:37:2e:80:45:4c:dc:e2:0a:8a:50:d1:8b: b3:47:0f:0d:bd:8f:47:c0:97:85:25:5f:d2:ab:fc: f1:a0:2b:39:22:24:14:d4:f7:bf:e0:58:82:aa:18: 4b:58:e5:d8:f2:9e:28:44:c1:b6:9c:f5:35:54:b4: 73:38:40:52:a7:98:76:dd:b2:63:23:ec:0d:6b:1c: ca:58:39:53:37:2d:85:60:72:0f:2e:e8:82:9a:dd: 0b:2e:0d:df:0d:e2:cb:99:ad:7f:b5:cc:e9:7e:df: 63:35:8b:cf:59:26:56:fe:01:d4:85:70:a7:2d:13: 00:28:25:b9:58:03:10:77:16:9b:53:1f:7f:d8:5d: 74:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:36:3B:66:E3:72:3E:1C:E4:44:0B:4B:67:03:7C:E3:7C:AF:9B:F7 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c1:e1:e9:1d:5f:c3:63:1c:22:23:19:42:04:e4:ff:c2:9b: ef:dd:af:66:93:19:9b:1d:93:89:bb:8e:42:5d:8e:8f:83:59: 0f:88:83:9d:f8:ed:f2:60:d8:5c:68:21:ef:70:18:0d:e3:f4: 66:4d:7a:17:bc:a0:4b:c8:bd:7b:0f:cf:e4:a1:8c:03:36:43: e1:bf:ae:5b:41:83:1a:38:9e:29:d8:6e:d5:df:24:1b:41:de: 8d:30:46:9d:49:68:24:d5:6b:4c:b3:c8:00:77:63:01:13:fd: 5b:78:c1:f0:2b:91:85:bb:7b:cc:7d:ce:5c:09:99:23:7a:f1: 59:b9:6b:68:39:f1:ec:73:78:50:7f:c2:a5:1f:cb:ba:62:39: 5b:07:45:f0:82:c4:5d:1b:18:a8:f4:5b:0a:69:76:41:cc:da: 0b:a2:9a:5c:e8:7f:40:6f:77:89:7b:97:ba:df:6f:1b:d6:dd: 71:38:4e:d7:96:b4:54:6c:9a:2e:91:ca:da:ea:c5:bd:42:c6: 71:8a:b4:5d:1c:9b:9d:25:75:b8:03:d3:48:3c:d2:57:0a:dc: 63:28:f1:2f:22:a1:29:7d:08:36:5e:40:96:3d:7e:bc:01:7e: dc:e3:df:3d:59:99:42:fc:56:b6:b8:5a:02:62:3a:4d:3d:f2: 91:9d:b5:d1 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUNRZRKxVXNXS5ZGHAhXy5hpdvtxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDYwNjAyNTM1OVoX DTI2MDYwNzAzMTc1OVowMzExMC8GA1UEAxMoMzAzNjNCNjZFMzcyM0UxQ0U0NDQw QjRCNjcwMzdDRTM3Q0FGOUJGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJZTOKTNeccDijK9YN5SZWZpaLZHIZ2V/0RcMsIATx9bX15Fb5loiWLXyvly 47aK7wECR0KNVPh7G1Vwd89J6tEWA4xScsFYFJkYjCsSdRnd5Y5xTXIgtTr/pCL1 Jvrgi+kpsXiEo+8vtPRzPD4flU+f09jf4HkE0JGSNy6ARUzc4gqKUNGLs0cPDb2P R8CXhSVf0qv88aArOSIkFNT3v+BYgqoYS1jl2PKeKETBtpz1NVS0czhAUqeYdt2y YyPsDWscylg5UzcthWByDy7ogprdCy4N3w3iy5mtf7XM6X7fYzWLz1kmVv4B1IVw py0TACgluVgDEHcWm1Mff9hddG0CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQwNjtm 43I+HOREC0tnA3zjfK+b9zAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI7B4ekdX8NjHCIjGUIE5P/Cm+/dr2aTGZsd k4m7jkJdjo+DWQ+Ig5347fJg2FxoIe9wGA3j9GZNehe8oEvIvXsPz+ShjAM2Q+G/ rltBgxo4ninYbtXfJBtB3o0wRp1JaCTVa0yzyAB3YwET/Vt4wfArkYW7e8x9zlwJ mSN68Vm5a2g58exzeFB/wqUfy7piOVsHRfCCxF0bGKj0WwppdkHM2guimlzof0Bv d4l7l7rfbxvW3XE4TteWtFRsmi6Rytrqxb1CxnGKtF0cm50ldbgD00g80lcK3GMo 8S8ioSl9CDZeQJY9frwBftzj3z1ZmUL8Vra4WgJiOk098pGdtdE= -----END CERTIFICATE-----Generated at Sat Jun 6 14:57:36 2026 by rpki-client