$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: ZQn/LtNaUNbumVOIK3HMIQRlB43yYkycLY31iYUb65k= Subject key identifier: 47:5E:99:C1:37:76:D1:FC:6E:CE:24:AC:7B:54:F9:75:5A:B1:E7:73 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 717752274E9813445D26C0C6587DAB00C0FDD3D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: E9 Signing time: Fri 01 May 2026 05:11:32 +0000 Manifest this update: Fri 01 May 2026 05:06:32 +0000 Manifest next update: Sat 02 May 2026 08:03:32 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: 50oCDHPkS4FXc2CMn74OJPloHkBSVm5nUbVuSv36BhQ=) 2: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) 3: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 May 2026 08:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:77:52:27:4e:98:13:44:5d:26:c0:c6:58:7d:ab:00:c0:fd:d3:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: May 1 05:06:32 2026 GMT Not After : May 2 08:03:32 2026 GMT Subject: CN=475E99C13776D1FC6ECE24AC7B54F9755AB1E773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7b:f2:14:59:6f:98:cd:ed:72:74:33:93:81: 0e:6d:d8:0e:e6:26:d3:8d:53:1f:6a:01:93:d3:64: 5c:b4:24:10:f9:b3:9a:2e:3e:64:d9:23:0e:b3:46: 7a:84:29:6a:8a:c5:e9:5f:f6:95:b1:a4:bc:15:cd: e2:8b:09:10:e3:82:a7:f3:eb:cf:fa:a6:94:2f:cc: b5:e4:34:db:50:85:08:a4:19:8d:85:45:98:c9:51: f9:1c:dc:9f:2a:53:a5:ee:8d:94:8a:7c:94:17:d0: 9c:49:43:99:a1:f7:e8:dd:68:e0:44:81:70:c1:f5: a3:b2:a4:c2:d9:9c:a7:f5:74:33:8d:d3:fd:69:91: 13:d3:38:8b:2e:1d:ea:9f:2c:cc:63:41:af:01:49: 4c:c4:5b:76:51:88:65:17:28:d0:c9:a0:8f:22:35: 94:a1:28:b4:86:b5:fd:1c:aa:13:09:8d:d7:05:11: d9:c2:b1:81:47:98:28:cf:38:c9:66:3f:2c:0b:2f: 7b:72:03:14:3c:c5:07:b8:d4:75:bb:bf:ed:5f:01: 47:00:95:b7:74:e7:11:1f:16:85:34:c7:46:83:60: 4b:c1:e8:80:b1:b4:55:06:9d:3a:d7:b6:d9:ed:08: 8a:01:c0:89:6a:fa:28:58:0c:fb:81:93:92:18:75: a6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5E:99:C1:37:76:D1:FC:6E:CE:24:AC:7B:54:F9:75:5A:B1:E7:73 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:a9:b0:35:dd:4b:04:45:7d:63:5e:8b:e3:62:77:ac:b9:e9: 34:63:a9:a5:64:07:95:9e:54:e2:7f:2f:23:fb:47:2d:44:48: c9:00:a5:84:67:ee:9c:49:50:2c:85:fe:a2:08:b0:18:cc:c1: 58:ab:5a:b6:cc:b4:b6:8f:f9:59:f6:a5:1d:d7:eb:64:3d:b9: 84:ac:da:90:06:dc:16:e1:5e:00:76:98:c6:e2:e6:3a:18:9c: 8e:be:83:64:9c:e0:d5:9b:80:37:79:76:4c:74:14:67:fa:57: 1d:1c:c9:cd:ce:47:b8:31:c9:74:96:9c:d7:c7:c0:70:c3:96: 58:96:84:21:83:63:f1:18:0a:e2:cd:07:2f:ee:58:75:15:98: 15:b5:b8:d7:6a:19:d8:bd:6a:99:2c:d9:04:6d:a1:1e:01:bf: cb:e5:f8:84:90:d5:21:5a:03:ae:e4:df:8b:13:99:d6:0d:2e: 23:b1:06:a6:6f:27:a3:4e:c7:4d:8a:5a:f4:04:bf:86:0d:20: 0e:55:11:7f:a3:62:ec:61:73:02:cf:a6:e5:10:fe:f6:a4:15: 92:60:66:b8:59:aa:83:bd:40:e8:f4:41:6d:de:3b:5a:27:5b: 4c:4d:f3:3f:c2:f6:5c:ea:6f:e3:db:70:89:a9:5d:67:e4:1b: a2:26:f2:27 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUcXdSJ06YE0RdJsDGWH2rAMD909MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDUwMTA1MDYzMloX DTI2MDUwMjA4MDMzMlowMzExMC8GA1UEAxMoNDc1RTk5QzEzNzc2RDFGQzZFQ0Uy NEFDN0I1NEY5NzU1QUIxRTc3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJZ78hRZb5jN7XJ0M5OBDm3YDuYm041TH2oBk9NkXLQkEPmzmi4+ZNkjDrNG eoQpaorF6V/2lbGkvBXN4osJEOOCp/Prz/qmlC/MteQ021CFCKQZjYVFmMlR+Rzc nypTpe6NlIp8lBfQnElDmaH36N1o4ESBcMH1o7Kkwtmcp/V0M43T/WmRE9M4iy4d 6p8szGNBrwFJTMRbdlGIZRco0MmgjyI1lKEotIa1/RyqEwmN1wUR2cKxgUeYKM84 yWY/LAsve3IDFDzFB7jUdbu/7V8BRwCVt3TnER8WhTTHRoNgS8HogLG0VQadOte2 2e0IigHAiWr6KFgM+4GTkhh1piMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBRHXpnB N3bR/G7OJKx7VPl1WrHnczAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABCpsDXdSwRFfWNei+Nid6y56TRjqaVkB5We VOJ/LyP7Ry1ESMkApYRn7pxJUCyF/qIIsBjMwVirWrbMtLaP+Vn2pR3X62Q9uYSs 2pAG3BbhXgB2mMbi5joYnI6+g2Sc4NWbgDd5dkx0FGf6Vx0cyc3OR7gxyXSWnNfH wHDDlliWhCGDY/EYCuLNBy/uWHUVmBW1uNdqGdi9apks2QRtoR4Bv8vl+ISQ1SFa A67k34sTmdYNLiOxBqZvJ6NOx02KWvQEv4YNIA5VEX+jYuxhcwLPpuUQ/vakFZJg ZrhZqoO9QOj0QW3eO1onW0xN8z/C9lzqb+PbcImpXWfkG6Im8ic= -----END CERTIFICATE-----Generated at Sat May 2 01:26:22 2026 by rpki-client