This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft File: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft (raw, json) Hash identifier: 4CdjuOcuJH2Y5E7EEfdyPLLGFs2kGryYDI6vc3ukaJg= Subject key identifier: 0F:C3:AF:9B:35:A4:BF:55:31:9A:E5:82:8C:0A:69:1F:4D:53:B4:95 Authority key identifier: A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA Certificate issuer: /CN=A91FD4CC0000/serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Certificate serial: 28C0C40096F7758950E222D0D1189BFF55CA107B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft Manifest number: 55 Signing time: Fri 30 Jan 2026 07:42:07 +0000 Manifest this update: Fri 30 Jan 2026 07:37:07 +0000 Manifest next update: Sat 31 Jan 2026 08:27:07 +0000 Files and hashes: 1: 3130332e3132312e3230382e302f32322d3234203d3e2033323538.roa (hash: m8YqiID+Q725PKBIKrUauO2lTKAbZU016aARa/XfmOg=) 2: A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl (hash: Rj0m0oBK0QTc667A79WsW8+buEPwIt12VfHhuvOZ4ss=) 3: 323430333a373163303a3a2f33322d3438203d3e2033323538.roa (hash: A+n33m7aMq8dWmlNODuImDbmHluR0nRCgY8pOPk9SGU=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 08:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:c0:c4:00:96:f7:75:89:50:e2:22:d0:d1:18:9b:ff:55:ca:10:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4CC0000, serialNumber=A3CE6EB531A8951D24A37DF27A01EB39651D7ECA Validity Not Before: Jan 30 07:37:07 2026 GMT Not After : Jan 31 08:27:07 2026 GMT Subject: CN=0FC3AF9B35A4BF55319AE5828C0A691F4D53B495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:bc:98:1b:fb:b8:44:0d:97:0c:52:5a:28: 6a:13:74:09:72:73:da:3b:4b:91:bf:9c:72:cb:76: 04:a5:b4:9d:e3:c7:7d:95:5c:d4:7b:76:92:f2:31: 56:d7:ab:6c:54:a7:05:26:c3:0d:aa:95:63:86:b7: 75:d6:6a:60:1b:51:ed:95:df:71:cb:fd:c0:2d:a7: 59:64:26:18:d7:11:17:b2:d5:57:03:ff:83:ad:5c: d2:b4:ec:c8:da:35:6a:16:f5:89:38:9b:17:4f:3e: 2d:1b:ef:4b:71:a2:6e:36:4a:11:69:93:7d:e8:57: e3:b3:02:f0:97:e9:95:6a:97:77:61:45:07:76:11: 58:8d:03:2d:cf:0a:23:d8:db:19:bc:31:bc:84:28: 52:2c:68:e6:a9:b8:bf:91:60:e0:ee:db:c6:0d:7c: a8:74:f5:72:04:35:e1:41:82:13:bc:62:1c:5c:3b: 8f:76:15:19:6b:b5:b9:35:2b:9a:70:60:70:8c:81: 8b:89:d1:5f:cd:e0:9a:53:3a:fe:2e:bf:0d:d5:af: 69:8d:04:ad:69:f8:12:ae:2b:62:d1:76:56:41:c7: 23:93:26:ce:91:81:ce:a8:f4:b2:66:a1:9f:63:48: 6e:25:f0:9c:54:fd:93:0d:43:19:5c:d9:89:7d:ce: 7b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C3:AF:9B:35:A4:BF:55:31:9A:E5:82:8C:0A:69:1F:4D:53:B4:95 X509v3 Authority Key Identifier: keyid:A3:CE:6E:B5:31:A8:95:1D:24:A3:7D:F2:7A:01:EB:39:65:1D:7E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o85utTGolR0ko33yegHrOWUdfso.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/59/A3CE6EB531A8951D24A37DF27A01EB39651D7ECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a5:1c:78:d1:b8:d6:77:69:ec:45:2c:4c:59:b0:78:ce:0f: 5b:cb:9b:08:10:b8:a7:77:26:b8:0b:2b:90:e6:e8:26:bd:05: 96:ee:56:7f:30:bc:58:7e:8d:e9:6a:45:da:44:20:1a:d2:00: 89:c6:5e:58:cb:29:e1:6a:7b:4f:42:e6:43:11:6b:70:87:6f: 4f:ea:60:f7:06:c3:94:ad:56:05:36:37:67:88:63:82:78:dc: 7d:4b:c9:33:07:ff:c6:26:e9:6c:79:b4:2a:9f:1b:39:fb:59: cd:93:57:f1:82:20:ae:f0:b0:bf:8e:42:cc:03:1a:54:bb:2a: 8f:6d:48:1b:7b:67:8e:e4:60:ee:da:5c:9c:bd:ff:8b:d4:22: 8d:0e:94:e4:09:db:9e:55:56:1a:f5:e2:7b:13:49:a2:77:35: 12:10:5d:51:b6:0d:48:65:75:7d:6c:72:10:8d:84:54:48:68: cb:96:2a:0e:ea:76:cb:f8:3e:8b:f0:dc:54:a8:ad:8c:b8:bb: 54:0e:56:45:b4:d1:39:23:23:e9:e6:d5:51:62:d5:66:9f:9b: be:d9:3b:d4:3b:23:78:59:da:4b:a4:85:1f:c4:bc:a7:2f:87: f0:62:05:66:bc:1c:f3:09:94:bc:ae:2e:60:34:93:96:14:24: b4:f4:96:0c -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUKMDEAJb3dYlQ4iLQ0Rib/1XKEHswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRkQ0Q0MwMDAwMTEwLwYDVQQFEyhBM0NFNkVCNTMx QTg5NTFEMjRBMzdERjI3QTAxRUIzOTY1MUQ3RUNBMB4XDTI2MDEzMDA3MzcwN1oX DTI2MDEzMTA4MjcwN1owMzExMC8GA1UEAxMoMEZDM0FGOUIzNUE0QkY1NTMxOUFF NTgyOEMwQTY5MUY0RDUzQjQ5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANXivJgb+7hEDZcMUlooahN0CXJz2jtLkb+ccst2BKW0nePHfZVc1Ht2kvIx VterbFSnBSbDDaqVY4a3ddZqYBtR7ZXfccv9wC2nWWQmGNcRF7LVVwP/g61c0rTs yNo1ahb1iTibF08+LRvvS3GibjZKEWmTfehX47MC8JfplWqXd2FFB3YRWI0DLc8K I9jbGbwxvIQoUixo5qm4v5Fg4O7bxg18qHT1cgQ14UGCE7xiHFw7j3YVGWu1uTUr mnBgcIyBi4nRX83gmlM6/i6/DdWvaY0ErWn4Eq4rYtF2VkHHI5MmzpGBzqj0smah n2NIbiXwnFT9kw1DGVzZiX3OexMCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBQPw6+b NaS/VTGa5YKMCmkfTVO0lTAfBgNVHSMEGDAWgBSjzm61MaiVHSSjffJ6Aes5ZR1+ yjAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzU5L0EzQ0U2RUI1MzFBODk1MUQyNEEzN0RGMjdB MDFFQjM5NjUxRDdFQ0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL284NXV0VEdvbFIwa28zM3llZ0hyT1dVZGZzby5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNTkvQTNDRTZFQjUzMUE4OTUxRDI0QTM3REYyN0EwMUVC Mzk2NTFEN0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD6lHHjRuNZ3aexFLExZsHjOD1vLmwgQuKd3 JrgLK5Dm6Ca9BZbuVn8wvFh+jelqRdpEIBrSAInGXljLKeFqe09C5kMRa3CHb0/q YPcGw5StVgU2N2eIY4J43H1LyTMH/8Ym6Wx5tCqfGzn7Wc2TV/GCIK7wsL+OQswD GlS7Ko9tSBt7Z47kYO7aXJy9/4vUIo0OlOQJ255VVhr14nsTSaJ3NRIQXVG2DUhl dX1schCNhFRIaMuWKg7qdsv4Povw3FSorYy4u1QOVkW00TkjI+nm1VFi1Wafm77Z O9Q7I3hZ2kukhR/EvKcvh/BiBWa8HPMJlLyuLmA0k5YUJLT0lgw= -----END CERTIFICATE-----Generated at Fri Jan 30 21:26:36 2026 by rpki-client