$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: FJQWb/iVJXVaH7kQxxCyEOX75lUqB2mGDXpaFyb6LcM= Subject key identifier: 98:EC:D2:B9:9C:23:61:8B:C1:F7:8F:89:31:43:C6:E1:2B:5D:D5:37 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 4E18BBC0577682BD0D28EE885CE9183176DA808D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 012E Signing time: Sun 21 Jun 2026 02:53:59 +0000 Manifest this update: Sun 21 Jun 2026 02:48:59 +0000 Manifest next update: Mon 22 Jun 2026 03:21:59 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: E7H9cuQNDHXmo9qrQeGK01OleNbaNBdYUYN1rMgrcNs=) 2: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) 3: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Jun 2026 03:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:18:bb:c0:57:76:82:bd:0d:28:ee:88:5c:e9:18:31:76:da:80:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Jun 21 02:48:59 2026 GMT Not After : Jun 22 03:21:59 2026 GMT Subject: CN=98ECD2B99C23618BC1F78F893143C6E12B5DD537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ed:0c:45:db:e3:0b:3c:dd:f3:55:14:c9:89: ed:04:b4:ec:16:aa:51:c9:31:f5:52:7f:e5:be:39: 97:db:9b:0d:c8:80:b9:4c:06:6a:3e:9f:9f:40:fd: 2e:c1:dd:0d:e7:c9:82:e1:07:77:43:c1:5f:e3:aa: 33:32:f3:08:e0:3e:69:ec:bd:ea:12:16:7e:bb:9f: e1:d4:b0:05:0c:1a:0c:08:c5:a8:75:b9:02:1d:13: 2d:13:a4:30:a8:18:41:50:04:de:ce:fa:92:3e:38: 18:3b:8a:fc:cd:a4:b8:7c:ff:62:9a:f5:87:7b:2b: c2:57:f0:6e:02:cd:c3:23:28:37:83:fc:ba:e3:5f: 1f:f3:eb:7b:c3:0d:48:fa:1b:a1:86:6a:60:0d:42: ec:3f:2e:d8:42:b8:61:51:fb:aa:fa:31:e1:b3:a0: 16:75:ea:6c:21:fe:36:16:7c:78:30:a4:f7:37:39: ae:c7:98:5f:7a:1e:03:c2:bf:34:32:78:c7:4c:fa: 23:48:db:0d:2d:47:51:84:08:69:2a:f6:1d:6b:33: 77:60:3e:8e:2f:00:48:5a:dd:5d:4c:a8:16:24:68: f9:5a:3d:44:f7:de:e5:2e:7c:6a:1c:7c:32:5a:31: 1c:7c:ce:38:db:8c:88:e7:ae:e7:8d:2f:8f:77:7e: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EC:D2:B9:9C:23:61:8B:C1:F7:8F:89:31:43:C6:E1:2B:5D:D5:37 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:75:ca:d6:16:9b:d0:6b:35:c1:af:6d:31:23:43:6e:af:b0: 4c:24:14:cf:06:7f:3f:66:da:80:91:29:8b:1a:23:54:28:bd: c7:4c:ce:ee:a9:3a:96:01:53:16:cb:5b:ee:10:74:cd:20:13: f2:dd:19:34:24:e4:df:8c:f0:1b:c2:de:ce:e0:5b:0e:1c:df: 20:0a:5e:38:e2:fa:60:e6:75:b2:5f:4d:52:d3:fc:7d:af:70: 30:d0:79:bd:e8:64:c9:04:2d:55:5e:3f:f8:b6:7c:aa:25:5c: 9f:64:d2:d1:35:25:4a:f3:5f:8b:b5:f9:fd:21:74:0c:f4:58: 99:24:f9:a0:e1:f1:c4:05:35:48:1c:d9:ea:5b:a8:82:47:db: 4c:a5:54:b3:c2:65:8b:dc:c9:b5:d4:b3:6b:b5:a6:f5:ff:e6: ba:80:06:ef:7e:eb:ad:e6:2d:af:d2:d4:e7:fa:04:eb:31:97: 64:d8:45:8d:00:7c:e9:54:02:74:72:2d:76:c8:55:ff:01:a5: 77:3e:64:34:c1:d7:98:4a:fd:9d:af:a6:a6:94:f8:af:e2:60: 74:a4:3f:b3:e5:21:52:6e:d8:9e:fb:04:81:47:b9:95:4a:14: bf:c2:91:04:7b:10:a5:36:4f:a7:f2:b1:7d:bf:1e:6c:81:1c: 12:2e:d0:25 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUThi7wFd2gr0NKO6IXOkYMXbagI0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDYyMTAyNDg1OVoX DTI2MDYyMjAzMjE1OVowMzExMC8GA1UEAxMoOThFQ0QyQjk5QzIzNjE4QkMxRjc4 Rjg5MzE0M0M2RTEyQjVERDUzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLtDEXb4ws83fNVFMmJ7QS07BaqUckx9VJ/5b45l9ubDciAuUwGaj6fn0D9 LsHdDefJguEHd0PBX+OqMzLzCOA+aey96hIWfruf4dSwBQwaDAjFqHW5Ah0TLROk MKgYQVAE3s76kj44GDuK/M2kuHz/Ypr1h3srwlfwbgLNwyMoN4P8uuNfH/Pre8MN SPoboYZqYA1C7D8u2EK4YVH7qvox4bOgFnXqbCH+NhZ8eDCk9zc5rseYX3oeA8K/ NDJ4x0z6I0jbDS1HUYQIaSr2HWszd2A+ji8ASFrdXUyoFiRo+Vo9RPfe5S58ahx8 MloxHHzOONuMiOeu540vj3d+kGkCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSY7NK5 nCNhi8H3j4kxQ8bhK13VNzAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF91ytYWm9BrNcGvbTEjQ26vsEwkFM8Gfz9m 2oCRKYsaI1QovcdMzu6pOpYBUxbLW+4QdM0gE/LdGTQk5N+M8BvC3s7gWw4c3yAK Xjji+mDmdbJfTVLT/H2vcDDQeb3oZMkELVVeP/i2fKolXJ9k0tE1JUrzX4u1+f0h dAz0WJkk+aDh8cQFNUgc2epbqIJH20ylVLPCZYvcybXUs2u1pvX/5rqABu9+663m La/S1Of6BOsxl2TYRY0AfOlUAnRyLXbIVf8BpXc+ZDTB15hK/Z2vpqaU+K/iYHSk P7PlIVJu2J77BIFHuZVKFL/CkQR7EKU2T6fysX2/HmyBHBIu0CU= -----END CERTIFICATE-----Generated at Sun Jun 21 15:56:03 2026 by rpki-client