This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: IHMLQ4eEEkZ3hhJvAU5snfAFjv6OHVSj56y1TR9lT28= Subject key identifier: F4:F8:98:A6:02:4F:F6:27:1B:E7:37:D4:3D:6E:B2:0D:C0:21:83:88 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 42FAE0B68FA9BCB60A72F2A434D4F9BAD23105EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: 11 Signing time: Sun 07 Dec 2025 10:14:37 +0000 Manifest this update: Sun 07 Dec 2025 10:09:37 +0000 Manifest next update: Mon 08 Dec 2025 12:58:37 +0000 Files and hashes: 1: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: eyXV4jiF0BWahkzZyYXbg08wTynTtXVQQex7txI+WuY=) 2: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 3: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 4: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 5: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 6: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) 7: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 12:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fa:e0:b6:8f:a9:bc:b6:0a:72:f2:a4:34:d4:f9:ba:d2:31:05:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Dec 7 10:09:37 2025 GMT Not After : Dec 8 12:58:37 2025 GMT Subject: CN=F4F898A6024FF6271BE737D43D6EB20DC0218388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:8d:10:67:48:77:72:41:4d:61:7c:f9:39: 40:bb:7b:d3:27:19:d2:05:eb:d7:32:a4:b0:73:d6: bf:90:32:45:c9:18:ec:2c:b3:32:89:11:68:2c:80: cb:21:09:b6:21:29:73:71:48:b9:3b:59:f7:be:e7: d9:bb:92:30:e5:a5:c1:fe:bc:8f:3f:29:2b:0a:9e: a8:1e:64:ac:82:7a:9b:34:b2:93:b6:38:83:d5:d7: 20:1a:01:60:47:94:b1:76:25:87:5b:c8:ab:49:7b: 8b:74:ec:f6:ca:66:bb:7d:15:6b:4b:49:d3:33:17: 0f:bb:00:c4:90:01:92:74:f4:ca:a6:57:53:e6:a5: cb:e2:85:d4:4c:ab:c7:65:b4:20:7e:cd:e7:7b:af: d8:15:23:fd:25:04:e9:77:c7:88:b0:20:9b:92:76: de:fc:c4:9d:19:66:da:0f:11:e1:97:a1:81:0f:5f: e0:e5:b2:78:b1:28:e5:f1:46:dc:4a:57:38:06:ee: b8:2d:78:3a:c5:7e:79:07:b2:34:48:40:6b:b6:2c: 0a:e8:18:86:08:d3:26:56:c4:f7:5f:d7:a3:f5:a5: 72:88:51:4f:c4:b9:16:1c:43:49:e0:32:33:b2:a6: 50:8d:92:35:7c:9c:7a:52:fa:54:72:95:1f:bb:3d: ff:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F8:98:A6:02:4F:F6:27:1B:E7:37:D4:3D:6E:B2:0D:C0:21:83:88 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ca:d3:9c:23:35:70:0b:91:78:3a:3f:4a:72:aa:65:ed:5c: 0b:1f:0e:d8:32:51:1b:f6:73:5c:b9:8b:64:7e:ff:0c:13:12: dc:7e:36:d6:47:ff:79:51:8f:54:7c:27:e6:4d:79:fc:2f:7a: e2:c9:dd:57:fa:79:b0:f3:14:46:74:60:fa:86:d0:94:45:0e: 30:99:24:b7:51:f7:01:81:15:5f:9e:c1:68:e5:c6:fa:3c:e9: 52:6d:c1:00:f3:7a:bf:16:94:4c:61:e4:7d:5d:08:93:b8:43: 95:0c:ba:cc:d0:cc:42:cf:11:fa:73:26:72:2a:6f:08:33:a1: 48:e8:d8:e1:e8:04:28:30:0f:ed:78:c7:af:2e:ea:6b:54:90: 5f:84:50:fd:df:f8:aa:c0:c6:8a:dd:17:e6:6d:81:2c:df:eb: 77:9e:37:20:92:8f:72:37:1c:8f:a2:ab:c4:5a:33:c2:ad:7c: bc:59:87:3f:6d:0e:43:f6:47:22:14:94:7b:0b:ca:31:0b:c2: 40:c4:36:06:23:61:b7:d5:b8:ea:5d:91:03:9a:da:37:26:59: 77:6a:95:a9:fb:90:ab:8d:67:5e:1c:4f:58:7e:69:8a:a5:1b: 35:30:41:b3:6c:b4:23:bb:d6:50:97:6b:62:f2:f3:8d:24:7c: cc:5d:4f:f2 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUQvrgto+pvLYKcvKkNNT5utIxBewwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI1MTIwNzEwMDkzN1oX DTI1MTIwODEyNTgzN1owMzExMC8GA1UEAxMoRjRGODk4QTYwMjRGRjYyNzFCRTcz N0Q0M0Q2RUIyMERDMDIxODM4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZFjRBnSHdyQU1hfPk5QLt70ycZ0gXr1zKksHPWv5AyRckY7CyzMokRaCyA yyEJtiEpc3FIuTtZ977n2buSMOWlwf68jz8pKwqeqB5krIJ6mzSyk7Y4g9XXIBoB YEeUsXYlh1vIq0l7i3Ts9spmu30Va0tJ0zMXD7sAxJABknT0yqZXU+aly+KF1Eyr x2W0IH7N53uv2BUj/SUE6XfHiLAgm5J23vzEnRlm2g8R4ZehgQ9f4OWyeLEo5fFG 3EpXOAbuuC14OsV+eQeyNEhAa7YsCugYhgjTJlbE91/Xo/WlcohRT8S5FhxDSeAy M7KmUI2SNXycelL6VHKVH7s9/78CAwEAAaOCAfUwggHxMB0GA1UdDgQWBBT0+Jim Ak/2JxvnN9Q9brINwCGDiDAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFzK05wjNXALkXg6P0pyqmXtXAsfDtgyURv2 c1y5i2R+/wwTEtx+NtZH/3lRj1R8J+ZNefwveuLJ3Vf6ebDzFEZ0YPqG0JRFDjCZ JLdR9wGBFV+ewWjlxvo86VJtwQDzer8WlExh5H1dCJO4Q5UMuszQzELPEfpzJnIq bwgzoUjo2OHoBCgwD+14x68u6mtUkF+EUP3f+KrAxordF+ZtgSzf63eeNyCSj3I3 HI+iq8RaM8KtfLxZhz9tDkP2RyIUlHsLyjELwkDENgYjYbfVuOpdkQOa2jcmWXdq lan7kKuNZ14cT1h+aYqlGzUwQbNstCO71lCXa2Ly840kfMxdT/I= -----END CERTIFICATE-----Generated at Sun Dec 7 11:58:48 2025 by rpki-client