$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: 3B9x1skrzB+RlKa10zlv9unHYBR4roDmZGrddcwpohw= Subject key identifier: 71:4F:8C:BA:87:44:B6:9B:11:DD:5B:E8:38:DE:4C:48:10:E5:94:CA Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 5F4DB1310929F0B32505697DE7178130FE982142 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 01E6 Signing time: Sat 19 Jul 2025 22:21:05 +0000 Manifest this update: Sat 19 Jul 2025 22:16:05 +0000 Manifest next update: Wed 23 Jul 2025 01:55:05 +0000 Files and hashes: 1: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: ZHzUIRy4nZYVajGdct7Oorl4xz1bGegJThKCS1yBqbI=) 2: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: PkGkbGi63zqmcVRyooBy49MaGDYbkLkl3eJnCTW15b4=) 3: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: lEs/WKd2HcYEye3FJfKRh1W7qOC7B+EUp+9m2m8vd7c=) 4: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: mOeMNdSXIouJLXdg2H2KNR/lETkTVaMFt6gn5NaH74s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 01:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4d:b1:31:09:29:f0:b3:25:05:69:7d:e7:17:81:30:fe:98:21:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Jul 19 22:16:05 2025 GMT Not After : Jul 23 01:55:05 2025 GMT Subject: CN=714F8CBA8744B69B11DD5BE838DE4C4810E594CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:16:3d:51:02:14:e7:b9:26:4e:d0:e3:b4:3c: 8f:28:ad:ef:cc:59:48:e4:cf:0c:2a:99:3a:cb:7e: 46:e7:72:51:43:38:00:74:22:11:3a:d2:6f:f0:62: 55:3c:f2:2e:7d:7c:b3:d3:64:dc:04:2d:35:83:ee: f7:0f:c6:07:60:56:0e:a7:af:52:c9:b6:29:c2:9d: b1:a4:4a:64:6d:95:30:01:76:d1:ba:f0:e9:ed:f7: 73:c3:08:42:d1:a8:f1:76:24:e2:87:f5:0d:84:59: 44:93:31:01:06:48:6a:be:3e:9f:d2:5f:83:1f:c7: 9e:27:60:80:d5:b3:3c:d0:d8:7d:13:a7:c3:66:00: f3:c3:17:6a:75:ac:3c:2a:d0:d3:75:85:3e:06:75: d7:10:2a:ec:33:66:c7:44:2c:50:c5:48:ce:50:7c: e7:bb:bb:75:3f:d8:dc:5c:c7:06:ec:e9:ec:eb:f8: 17:ca:de:0b:f5:ac:93:74:76:49:bf:26:c7:9f:f4: 05:66:d9:38:13:a7:cf:3a:03:29:c7:f2:10:8a:be: 86:80:70:57:51:e9:6f:fe:f5:e6:91:87:ab:b2:9e: 9d:47:26:e9:d5:5e:73:6a:a9:be:42:0f:fe:07:09: 67:7b:44:05:e4:94:ed:10:49:7b:21:82:b7:a9:41: 25:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4F:8C:BA:87:44:B6:9B:11:DD:5B:E8:38:DE:4C:48:10:E5:94:CA X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:ef:c5:aa:26:a5:cb:2b:b6:43:50:20:4d:e0:e4:32:fc:8f: 1f:d7:76:f0:7f:d2:b1:81:c5:d8:f1:95:a0:9d:ad:4c:78:d6: 06:7b:71:b6:87:cf:ae:9e:a3:97:9a:a7:57:16:88:5f:62:58: fb:c2:8c:ca:0d:ff:1e:51:04:7d:0d:73:6d:1e:4a:08:7d:f4: c1:b5:5e:54:2e:17:bc:28:0a:5f:97:0f:e6:38:7d:93:fd:b1: eb:0e:10:3a:2d:83:fe:9d:f6:33:8b:2c:9d:99:df:7f:d4:78: 3e:3f:1a:cf:16:8f:b2:c2:29:32:34:d2:af:a1:f1:ae:a0:72: 89:b3:15:96:61:69:52:b4:fb:1b:02:fc:37:07:34:08:b7:db: 7b:7a:c3:83:d9:10:92:28:8e:38:f1:5c:1d:6e:e2:66:92:d7: e6:60:ce:a3:b5:d7:11:76:49:7c:99:3b:21:b9:4c:3b:96:99: 53:8f:7e:0a:e2:1a:97:02:b7:b2:1e:74:21:fb:05:6e:d7:d9: 57:97:1e:b7:d9:22:89:f2:41:40:f6:32:be:39:0a:73:f3:66: 4e:ff:75:17:3a:cc:a9:0c:7f:9c:12:93:e0:7b:9f:ba:75:7e: d4:a6:65:e8:51:db:2b:40:57:9a:48:ce:b3:aa:ad:a4:11:c9: 82:5f:b8:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX02xMQkp8LMlBWl95xeBMP6YIUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA3MTkyMjE2MDVaFw0yNTA3MjMwMTU1MDVaMDMxMTAvBgNV BAMTKDcxNEY4Q0JBODc0NEI2OUIxMURENUJFODM4REU0QzQ4MTBFNTk0Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgFj1RAhTnuSZO0OO0PI8ore/M WUjkzwwqmTrLfkbnclFDOAB0IhE60m/wYlU88i59fLPTZNwELTWD7vcPxgdgVg6n r1LJtinCnbGkSmRtlTABdtG68Ont93PDCELRqPF2JOKH9Q2EWUSTMQEGSGq+Pp/S X4Mfx54nYIDVszzQ2H0Tp8NmAPPDF2p1rDwq0NN1hT4GddcQKuwzZsdELFDFSM5Q fOe7u3U/2Nxcxwbs6ezr+BfK3gv1rJN0dkm/Jsef9AVm2TgTp886AynH8hCKvoaA cFdR6W/+9eaRh6uynp1HJunVXnNqqb5CD/4HCWd7RAXklO0QSXshgrepQSVRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcU+MuodEtpsR3VvoON5MSBDllMowHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADLvxaompcsrtkNQIE3g5DL8jx/XdvB/0rGB xdjxlaCdrUx41gZ7cbaHz66eo5eap1cWiF9iWPvCjMoN/x5RBH0Nc20eSgh99MG1 XlQuF7woCl+XD+Y4fZP9sesOEDotg/6d9jOLLJ2Z33/UeD4/Gs8Wj7LCKTI00q+h 8a6gcomzFZZhaVK0+xsC/DcHNAi323t6w4PZEJIojjjxXB1u4maS1+ZgzqO11xF2 SXyZOyG5TDuWmVOPfgriGpcCt7IedCH7BW7X2VeXHrfZIonyQUD2Mr45CnPzZk7/ dRc6zKkMf5wSk+B7n7p1ftSmZehR2ytAV5pIzrOqraQRyYJfuA8= -----END CERTIFICATE-----Generated at Sun Jul 20 21:24:20 2025 by rpki-client