$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: RdEGCohU9LKKLtkPkW+S0a6fG/EBH+bZsIhZ3ZSZf2o= Subject key identifier: 23:D7:7B:D9:AE:04:CB:56:43:94:3F:5B:18:9D:9E:B2:3E:80:81:67 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 7B90E0E901389CE728014AE4FC7CD25121DDB607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 95 Signing time: Tue 17 Mar 2026 02:36:31 +0000 Manifest this update: Tue 17 Mar 2026 02:31:31 +0000 Manifest next update: Wed 18 Mar 2026 02:49:31 +0000 Files and hashes: 1: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: BVDDax9BGs4mlypPcEAu+ea2gjCYgQHN3fVnc1+5TZo=) 2: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) 3: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 02:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:90:e0:e9:01:38:9c:e7:28:01:4a:e4:fc:7c:d2:51:21:dd:b6:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Mar 17 02:31:31 2026 GMT Not After : Mar 18 02:49:31 2026 GMT Subject: CN=23D77BD9AE04CB5643943F5B189D9EB23E808167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:05:44:8a:69:4a:97:08:cf:0d:4d:98:52: 3a:f7:86:96:b2:ba:6a:b6:96:16:a3:77:b4:fb:48: df:97:34:f4:1c:49:23:a6:23:e5:5e:d1:0e:87:d2: 76:5b:4f:72:ff:d1:b5:67:92:39:d5:4f:05:e2:9c: 9b:b7:1b:3d:d6:b5:5f:e3:64:65:86:2f:8f:f3:0d: 33:24:ff:b0:7a:09:03:f0:5b:00:f0:e3:aa:8d:f0: 22:d1:9b:4c:3d:84:b1:2c:3f:27:a9:dd:e9:83:91: 58:7a:a7:d3:b4:82:f0:fd:9e:8f:78:b4:41:16:8e: 6e:9a:cc:b4:8a:b8:8b:c6:19:84:5a:46:c1:54:a4: 5b:45:5c:3d:8d:22:2b:92:74:e2:f8:06:52:19:5f: 54:73:81:a5:a4:65:01:86:54:bf:74:80:a5:80:29: 56:39:d0:34:01:8f:84:98:a0:2d:19:7c:e2:3b:22: e1:a0:ba:ef:34:44:cd:17:d6:99:04:37:a0:a1:e9: 62:bb:4a:26:9d:b3:3b:45:7c:5f:77:ad:58:61:d2: 1d:aa:29:c6:f8:24:10:96:16:55:94:92:91:36:ea: 0f:36:b8:74:f0:4c:07:6d:42:8f:3c:df:d3:96:c9: 32:9f:96:3e:f7:bd:d4:d7:28:bb:3e:09:09:47:d3: dd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D7:7B:D9:AE:04:CB:56:43:94:3F:5B:18:9D:9E:B2:3E:80:81:67 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:01:f2:7b:f9:5d:d4:8f:9f:ee:7d:13:68:0b:d8:29:8a:67: 44:65:e1:ef:8b:f6:ad:01:5d:7e:5e:75:2f:fe:59:83:23:eb: 85:d8:3b:15:b0:50:87:a7:2b:1b:ad:92:24:5d:d7:5a:01:c7: c2:1b:b4:2c:1d:4f:cb:7e:07:cf:50:c4:53:ed:79:78:ec:0a: 3a:01:d7:5e:4b:51:fb:82:01:6d:c4:ec:dd:74:e9:71:0c:6c: 60:f2:d0:6e:01:76:fe:b0:20:f8:30:5e:15:0e:0f:95:7e:3b: e0:b4:7c:b5:35:88:71:b8:82:ad:be:10:c8:f4:b2:d4:62:80: 45:cc:42:0b:ff:4b:08:42:af:ac:82:ce:d0:92:24:c9:44:cd: 71:5f:d7:54:63:a2:a1:9e:62:63:75:f0:da:50:4c:60:8e:9f: 0c:54:68:e5:df:20:e8:33:af:97:9d:bd:da:89:92:0a:3a:44: 3f:bb:20:4e:fe:ed:7b:24:6e:64:58:e5:ce:71:41:89:84:87: 58:7a:76:c1:8f:52:49:15:a4:4a:53:74:5d:03:2e:0d:d1:af: 78:93:d2:08:f8:9f:82:3e:e9:96:b9:48:59:b7:7f:e8:f0:cf: bf:ff:46:49:41:22:18:cf:58:e6:3c:41:90:a0:b4:b9:40:81: bf:6f:51:62 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUe5Dg6QE4nOcoAUrk/HzSUSHdtgcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDMxNzAyMzEzMVoX DTI2MDMxODAyNDkzMVowMzExMC8GA1UEAxMoMjNENzdCRDlBRTA0Q0I1NjQzOTQz RjVCMTg5RDlFQjIzRTgwODE2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfTBUSKaUqXCM8NTZhSOveGlrK6araWFqN3tPtI35c09BxJI6Yj5V7RDofS dltPcv/RtWeSOdVPBeKcm7cbPda1X+NkZYYvj/MNMyT/sHoJA/BbAPDjqo3wItGb TD2EsSw/J6nd6YORWHqn07SC8P2ej3i0QRaObprMtIq4i8YZhFpGwVSkW0VcPY0i K5J04vgGUhlfVHOBpaRlAYZUv3SApYApVjnQNAGPhJigLRl84jsi4aC67zREzRfW mQQ3oKHpYrtKJp2zO0V8X3etWGHSHaopxvgkEJYWVZSSkTbqDza4dPBMB21Cjzzf 05bJMp+WPve91Ncouz4JCUfT3RUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQj13vZ rgTLVkOUP1sYnZ6yPoCBZzAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKYB8nv5XdSPn+59E2gL2CmKZ0Rl4e+L9q0B XX5edS/+WYMj64XYOxWwUIenKxutkiRd11oBx8IbtCwdT8t+B89QxFPteXjsCjoB 115LUfuCAW3E7N106XEMbGDy0G4Bdv6wIPgwXhUOD5V+O+C0fLU1iHG4gq2+EMj0 stRigEXMQgv/SwhCr6yCztCSJMlEzXFf11RjoqGeYmN18NpQTGCOnwxUaOXfIOgz r5edvdqJkgo6RD+7IE7+7XskbmRY5c5xQYmEh1h6dsGPUkkVpEpTdF0DLg3Rr3iT 0gj4n4I+6Za5SFm3f+jwz7//RklBIhjPWOY8QZCgtLlAgb9vUWI= -----END CERTIFICATE-----Generated at Tue Mar 17 19:13:13 2026 by rpki-client