$ rpki-client -vvf rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft File: 5B1AD82F0E7DC771819A9A26674992A3951B9373.mft (raw, json) Hash identifier: uNlXPdTUS0G/gyZfH9c1byFIgCEZKD71R+j+lVjJFAk= Subject key identifier: 6A:EF:04:9F:42:D7:E4:63:6C:32:52:71:DC:F0:FE:B7:CE:01:C3:D5 Authority key identifier: 5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 Certificate issuer: /CN=A91FFE3F0000/serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Certificate serial: 53BF6218C40EB6D92216565B0443AEF6BC269FB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft Manifest number: CC Signing time: Tue 21 Apr 2026 16:51:32 +0000 Manifest this update: Tue 21 Apr 2026 16:46:32 +0000 Manifest next update: Wed 22 Apr 2026 18:05:32 +0000 Files and hashes: 1: 5B1AD82F0E7DC771819A9A26674992A3951B9373.crl (hash: xOgHaj9I7EC+rLDZmOVYELP5B8FRtYPlfzn+Ha36GVY=) 2: 3230322e352e3232302e302f32322d3234203d3e2033323538.roa (hash: RSC0gS7HCZeuxKb2QI8cI8b8M+MPUL5V2oXXelhZ2i4=) 3: AS138038.asa (hash: KKmPldYXt3ysMW1zmkDcuHEwZVj+9YLqpnHPpNiZ6wI=) 4: 3130332e3230312e3132382e302f32322d3234203d3e2033323538.roa (hash: v7yteh1WZLVmaCu2bY234mxu37OO1wWdr68ndeJ4RSk=) 5: 323430333a616338303a3a2f33322d3438203d3e2034373835.roa (hash: LFwJ6OFasHUXdxn7Pjd2blvuD4fgYwkNxMcSghbaXHE=) 6: 3230322e352e3232302e302f32322d3234203d3e2034373835.roa (hash: gMRDa6tXlNXXN9n511PW1vIGUannRwNsBy5I5ncCCYE=) 7: 3130332e3230312e3132382e302f32322d3234203d3e2034373835.roa (hash: HjkZEK+ijp+3GCC4izGKPCe8HT2XcT7uY3Y9S6FXiZQ=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 18:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:bf:62:18:c4:0e:b6:d9:22:16:56:5b:04:43:ae:f6:bc:26:9f:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFE3F0000, serialNumber=5B1AD82F0E7DC771819A9A26674992A3951B9373 Validity Not Before: Apr 21 16:46:32 2026 GMT Not After : Apr 22 18:05:32 2026 GMT Subject: CN=6AEF049F42D7E4636C325271DCF0FEB7CE01C3D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a4:c4:4a:4a:0d:de:67:ec:92:72:2d:ac:98: 8b:e8:74:7f:d1:7d:46:9e:9c:e7:b4:c5:57:fa:93: 9b:cb:fe:0a:37:83:26:39:d7:98:8c:ea:4c:d9:63: 98:43:45:92:19:53:ca:69:e3:ac:db:98:9d:e0:79: 3d:48:4f:c2:d4:46:6e:8e:dc:b8:10:8a:fc:60:f7: 52:c1:47:55:1e:a4:61:0a:59:f5:13:d8:0c:8d:7a: cc:83:eb:3d:fc:c8:49:23:78:f1:8b:54:3a:7a:35: 21:88:a5:52:a3:b3:83:e6:e1:16:84:3c:ab:1d:8e: 5f:66:2e:61:07:2c:86:5a:38:e2:3e:2a:80:5d:25: 07:aa:78:39:21:51:c0:06:08:07:c3:61:47:e1:0d: 51:3d:39:92:78:2a:01:47:6e:ce:e0:73:40:52:0c: 40:97:80:cc:33:78:32:11:a0:07:70:a0:b2:47:36: a6:37:2b:c5:ab:4f:5f:05:8b:be:d7:93:31:cd:b3: 2f:49:ff:6d:de:d0:34:62:0e:be:5c:12:3c:b6:b8: 5a:3d:80:f3:e0:72:ee:4c:e5:9d:a9:aa:ae:89:7f: 44:dd:54:fd:81:dd:1d:9d:82:24:e0:9f:bb:6f:1e: dd:f4:5e:39:7c:d0:3d:5a:b0:30:e7:94:27:aa:c2: 75:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EF:04:9F:42:D7:E4:63:6C:32:52:71:DC:F0:FE:B7:CE:01:C3:D5 X509v3 Authority Key Identifier: keyid:5B:1A:D8:2F:0E:7D:C7:71:81:9A:9A:26:67:49:92:A3:95:1B:93:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WxrYLw59x3GBmpomZ0mSo5Ubk3M.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/58/5B1AD82F0E7DC771819A9A26674992A3951B9373.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:16:91:03:23:a5:c2:93:49:69:fe:4e:72:0b:ad:47:60:79: d7:16:ce:55:14:e0:82:ce:d8:c1:8d:e8:50:97:67:0e:56:41: 95:e1:5e:c4:4e:66:10:48:7a:9a:25:29:06:30:c4:c8:c6:0b: 4f:d9:3e:1f:a9:16:b0:a3:4f:77:7e:af:4e:41:34:e6:7d:c4: f7:f3:43:45:ad:5b:30:64:e8:f2:4f:61:11:fd:e2:dd:3a:b7: 9f:6d:b0:a9:d1:2c:bc:6d:f5:7d:10:5c:79:f2:14:53:26:57: 1a:2c:52:6a:d2:52:c8:5d:ea:cd:14:ec:fd:7b:f0:6d:90:4a: a4:62:9d:eb:14:e5:38:fe:83:d4:d4:b4:cb:a5:a4:bb:af:70: 7e:42:84:92:0f:6e:ce:71:bb:59:d0:da:ef:60:3f:14:9b:84: 0e:f4:7e:86:29:88:06:f6:e8:1c:56:7e:83:c4:f8:ef:43:dc: 31:38:ae:6c:1b:97:7c:2f:b3:4b:28:f0:02:7b:9d:0d:22:45: e4:8f:9f:d9:e9:81:62:a1:3f:e7:c9:79:af:2a:4a:f8:02:3a: 23:1c:10:f5:5f:da:fa:87:f6:62:a9:79:82:26:7f:f9:73:35: a3:8f:3f:2f:99:ea:c9:06:b1:cc:61:cd:e9:84:39:e8:0f:f6: 1b:82:f8:17 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUU79iGMQOttkiFlZbBEOu9rwmn7cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxRkZFM0YwMDAwMTEwLwYDVQQFEyg1QjFBRDgyRjBF N0RDNzcxODE5QTlBMjY2NzQ5OTJBMzk1MUI5MzczMB4XDTI2MDQyMTE2NDYzMloX DTI2MDQyMjE4MDUzMlowMzExMC8GA1UEAxMoNkFFRjA0OUY0MkQ3RTQ2MzZDMzI1 MjcxRENGMEZFQjdDRTAxQzNENTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2kxEpKDd5n7JJyLayYi+h0f9F9Rp6c57TFV/qTm8v+CjeDJjnXmIzqTNlj mENFkhlTymnjrNuYneB5PUhPwtRGbo7cuBCK/GD3UsFHVR6kYQpZ9RPYDI16zIPr PfzISSN48YtUOno1IYilUqOzg+bhFoQ8qx2OX2YuYQcshlo44j4qgF0lB6p4OSFR wAYIB8NhR+ENUT05kngqAUduzuBzQFIMQJeAzDN4MhGgB3Cgskc2pjcrxatPXwWL vteTMc2zL0n/bd7QNGIOvlwSPLa4Wj2A8+By7kzlnamqrol/RN1U/YHdHZ2CJOCf u28e3fReOXzQPVqwMOeUJ6rCdZsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRq7wSf QtfkY2wyUnHc8P63zgHD1TAfBgNVHSMEGDAWgBRbGtgvDn3HcYGamiZnSZKjlRuT czAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU4LzVCMUFEODJGMEU3REM3NzE4MTlBOUEyNjY3 NDk5MkEzOTUxQjkzNzMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL1d4cllMdzU5eDNHQm1wb21aMG1TbzVVYmszTS5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTgvNUIxQUQ4MkYwRTdEQzc3MTgxOUE5QTI2Njc0OTky QTM5NTFCOTM3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGAWkQMjpcKTSWn+TnILrUdgedcWzlUU4ILO 2MGN6FCXZw5WQZXhXsROZhBIepolKQYwxMjGC0/ZPh+pFrCjT3d+r05BNOZ9xPfz Q0WtWzBk6PJPYRH94t06t59tsKnRLLxt9X0QXHnyFFMmVxosUmrSUshd6s0U7P17 8G2QSqRinesU5Tj+g9TUtMulpLuvcH5ChJIPbs5xu1nQ2u9gPxSbhA70foYpiAb2 6BxWfoPE+O9D3DE4rmwbl3wvs0so8AJ7nQ0iReSPn9npgWKhP+fJea8qSvgCOiMc EPVf2vqH9mKpeYImf/lzNaOPPy+Z6skGscxhzemEOegP9huC+Bc= -----END CERTIFICATE-----Generated at Wed Apr 22 07:24:11 2026 by rpki-client