$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: ARoxZ3nHb8CeZ108jy4Ts5UMR02gDVDzPdljePlZjrA= Subject key identifier: 6F:B7:D9:2D:9E:C6:EB:B1:14:78:C4:3B:94:55:EC:00:DB:02:C2:40 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 47CE89E6937E2C70544BE33C156780EDB37F9063 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 89 Signing time: Sat 07 Mar 2026 10:21:30 +0000 Manifest this update: Sat 07 Mar 2026 10:16:30 +0000 Manifest next update: Sun 08 Mar 2026 11:11:30 +0000 Files and hashes: 1: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: wbldk20XYKZUvMwJ9oD5ek9hEG3shkiBUEUMKc3/KAE=) 2: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 3: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 4: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 5: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 6: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 7: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 11:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ce:89:e6:93:7e:2c:70:54:4b:e3:3c:15:67:80:ed:b3:7f:90:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Mar 7 10:16:30 2026 GMT Not After : Mar 8 11:11:30 2026 GMT Subject: CN=6FB7D92D9EC6EBB11478C43B9455EC00DB02C240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d4:d1:41:15:47:05:26:52:15:51:25:bc:9f: 5a:40:9f:54:cf:fe:37:51:56:f3:ec:e6:f7:d6:11: a4:39:38:b9:3d:10:fe:4a:f7:5e:91:50:0c:fd:5e: 75:6e:58:c9:b7:3f:78:bd:55:82:46:96:98:f7:8c: 72:14:ac:d8:65:e1:f1:56:18:dc:69:62:b4:92:29: 8f:24:bd:90:eb:de:cf:28:a1:12:62:e9:07:eb:02: 75:65:f2:93:82:fc:05:e1:89:84:52:e2:20:ad:32: c9:2f:e8:dc:00:81:16:69:47:52:9c:d8:8f:d8:2a: 26:0a:a4:89:1d:9b:2e:67:aa:fc:42:6c:6d:17:bf: be:ea:1d:5f:b0:df:06:26:da:79:4a:a7:14:c4:f5: 9d:67:b3:ea:87:56:24:2c:64:53:f7:a8:91:0d:cc: f4:b7:ba:b6:64:6e:62:16:be:3b:1d:56:14:cb:3a: 48:f9:a0:cf:25:41:8a:d0:10:c8:6c:9e:52:f5:f7: 4d:d2:8c:3b:a7:f6:45:cc:9e:a9:98:81:cf:47:89: e4:ad:54:56:d5:53:48:e5:12:e7:67:6c:29:d9:2a: 12:82:d5:53:38:84:e4:56:61:a4:66:54:5d:43:e5: 66:dd:5c:93:e4:41:08:c5:9a:77:e6:19:c4:be:e9: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B7:D9:2D:9E:C6:EB:B1:14:78:C4:3B:94:55:EC:00:DB:02:C2:40 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:ac:2c:d9:eb:06:21:30:c9:9f:de:c6:05:a7:19:7f:34:13: 38:12:93:e3:64:6b:84:66:1d:64:d5:75:3b:72:6a:4b:7c:4f: e7:bc:c8:3f:18:e7:0f:4d:3f:48:21:08:8a:df:aa:cc:5a:0d: d1:2e:b4:4d:19:45:f5:30:83:3e:6e:dd:54:1c:eb:4b:c3:e2: 55:b3:16:0b:ad:cb:70:11:83:11:1c:f4:9a:9b:7d:fc:a8:29: 57:c8:b3:20:9c:41:c7:c8:ad:2d:c3:36:d4:57:e4:e2:e4:73: 3b:ec:ad:cd:2d:05:7b:88:4e:96:bd:9f:e1:6e:95:26:c9:07: 51:c8:4e:e1:f2:7b:14:7f:e3:40:a3:ac:e1:71:d9:bf:8d:71: 92:71:4e:8d:48:cc:e0:88:ce:ac:7d:57:6c:1b:8b:b9:de:56: e3:2f:b7:27:f7:1b:5d:3c:49:76:47:df:27:c2:98:21:5e:8f: 14:90:34:db:42:f7:b5:67:d2:70:75:fa:2e:85:a0:67:05:1e: dd:93:31:94:01:af:76:d3:a8:46:c4:af:7a:d4:53:c5:cf:0b: 0e:52:49:b8:1b:ec:c1:e6:8e:fd:b6:34:1d:ba:44:9b:21:99: 3f:c4:e9:95:a8:4f:c5:5a:65:33:fe:64:a6:1e:23:ad:0e:a7: b5:c6:bb:d0 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUR86J5pN+LHBUS+M8FWeA7bN/kGMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDMwNzEwMTYzMFoX DTI2MDMwODExMTEzMFowMzExMC8GA1UEAxMoNkZCN0Q5MkQ5RUM2RUJCMTE0NzhD NDNCOTQ1NUVDMDBEQjAyQzI0MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvU0UEVRwUmUhVRJbyfWkCfVM/+N1FW8+zm99YRpDk4uT0Q/kr3XpFQDP1e dW5Yybc/eL1VgkaWmPeMchSs2GXh8VYY3GlitJIpjyS9kOvezyihEmLpB+sCdWXy k4L8BeGJhFLiIK0yyS/o3ACBFmlHUpzYj9gqJgqkiR2bLmeq/EJsbRe/vuodX7Df BibaeUqnFMT1nWez6odWJCxkU/eokQ3M9Le6tmRuYha+Ox1WFMs6SPmgzyVBitAQ yGyeUvX3TdKMO6f2RcyeqZiBz0eJ5K1UVtVTSOUS52dsKdkqEoLVUziE5FZhpGZU XUPlZt1ck+RBCMWad+YZxL7pXusCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRvt9kt nsbrsRR4xDuUVewA2wLCQDAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHSsLNnrBiEwyZ/exgWnGX80EzgSk+Nka4Rm HWTVdTtyakt8T+e8yD8Y5w9NP0ghCIrfqsxaDdEutE0ZRfUwgz5u3VQc60vD4lWz Fguty3ARgxEc9JqbffyoKVfIsyCcQcfIrS3DNtRX5OLkczvsrc0tBXuITpa9n+Fu lSbJB1HITuHyexR/40CjrOFx2b+NcZJxTo1IzOCIzqx9V2wbi7neVuMvtyf3G108 SXZH3yfCmCFejxSQNNtC97Vn0nB1+i6FoGcFHt2TMZQBr3bTqEbEr3rUU8XPCw5S Sbgb7MHmjv22NB26RJshmT/E6ZWoT8VaZTP+ZKYeI60Op7XGu9A= -----END CERTIFICATE-----Generated at Sun Mar 8 00:29:16 2026 by rpki-client