$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: KaJr1qGRmTaH6oljp4lR+BxoYA5OHwTt5ql1qEaL2qU= Subject key identifier: E2:8A:3B:2C:AE:52:52:53:1F:42:0C:28:1F:F1:46:16:30:6B:1C:BE Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 047AB7B217A4DE5B470A40C0A412FA4BEC60CE68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 0252 Signing time: Tue 17 Mar 2026 19:51:18 +0000 Manifest this update: Tue 17 Mar 2026 19:46:18 +0000 Manifest next update: Fri 20 Mar 2026 21:36:18 +0000 Files and hashes: 1: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) 2: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 3: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: kmz1Iz8ClZ6Naw4AZPXmn2kSRHw70c+OYOF3BYAb8Ks=) 4: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 21:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7a:b7:b2:17:a4:de:5b:47:0a:40:c0:a4:12:fa:4b:ec:60:ce:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Mar 17 19:46:18 2026 GMT Not After : Mar 20 21:36:18 2026 GMT Subject: CN=E28A3B2CAE5252531F420C281FF14616306B1CBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8f:82:ad:6f:b5:64:16:29:fa:25:17:b8:45: 3f:ff:9b:5d:38:4f:c9:08:af:a7:43:78:54:56:16: 7b:43:cc:ac:55:6c:2f:c7:12:4f:b4:b0:42:fb:57: 34:1f:54:c1:67:5d:e6:51:27:6b:7e:51:03:fa:6f: fb:53:9c:fa:9a:85:d6:b4:d3:f6:8a:5a:c6:bd:e0: 77:65:39:78:fd:09:cc:7f:ee:76:e5:e8:cc:e3:af: c4:30:82:1f:f6:93:f3:73:ff:43:c4:39:4f:04:2b: 49:73:d3:f6:87:ee:e0:cd:9f:8d:3e:c0:e2:47:55: 4f:9e:8c:5a:73:c0:5a:2b:2f:69:bd:2b:92:e4:2b: 86:2b:d1:b4:12:53:58:96:11:cd:63:5c:68:8d:b7: 7e:45:4a:b7:3c:67:cd:ea:49:16:77:9f:a2:82:6e: 90:cf:38:72:62:29:f6:8a:7c:eb:a7:ef:b5:f0:6b: 07:b8:1d:53:d5:fb:96:2c:3c:de:55:3d:0b:e0:59: d3:68:8a:df:b3:7e:4c:c2:05:68:f2:5a:4a:c2:ab: de:1a:f1:85:20:03:51:e4:5c:a8:43:ce:45:df:12: 3e:dc:54:bc:b1:61:99:02:c5:bc:eb:02:f5:c8:a0: cb:73:e3:0d:b4:99:11:bb:0c:ca:5d:03:94:f0:35: f8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:8A:3B:2C:AE:52:52:53:1F:42:0C:28:1F:F1:46:16:30:6B:1C:BE X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:04:1c:bd:ff:50:bd:37:2c:f1:9c:f1:5e:6c:84:7a:09:70: 24:e1:96:57:4e:e7:59:c3:aa:d8:12:16:fa:da:c9:85:f0:29: ac:32:b1:ea:1a:aa:f7:11:27:d4:89:ed:24:32:d0:e4:20:c7: 37:2c:59:f9:31:4a:44:3f:d5:53:e6:28:22:02:38:88:94:8d: b4:3f:4e:20:81:a7:e4:d4:01:2c:97:40:58:85:dc:c8:db:a9: e3:3d:ac:1a:c2:6f:57:21:22:22:3d:00:26:9d:e5:a9:0a:23: 68:35:0f:8f:b9:f4:20:49:8c:1e:1e:ad:97:78:94:ec:61:1b: 2f:84:c7:48:f2:5c:dc:20:c0:86:68:4c:a0:ea:c1:03:b4:6b: ce:21:1a:7d:03:66:fa:34:82:5d:56:d9:2b:32:a4:f1:bd:a3: 87:dd:54:12:4c:85:56:89:5c:f1:87:66:6d:03:f9:a4:bb:fa: 6f:a0:0b:31:56:e6:dd:d8:10:b2:fb:be:5b:c1:dd:26:a1:54: a6:3b:cb:94:21:61:b6:55:ea:78:b3:0c:0c:43:46:45:b0:f6: 45:cd:15:6b:40:29:04:5e:44:ab:b2:9b:ad:b8:2e:2b:23:70: 47:7e:cb:da:c7:a0:71:36:ee:44:05:9a:8e:f4:91:ab:79:40: a6:9f:dd:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBHq3shek3ltHCkDApBL6S+xgzmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNjAzMTcxOTQ2MThaFw0yNjAzMjAyMTM2MThaMDMxMTAvBgNV BAMTKEUyOEEzQjJDQUU1MjUyNTMxRjQyMEMyODFGRjE0NjE2MzA2QjFDQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAj4Ktb7VkFin6JRe4RT//m104 T8kIr6dDeFRWFntDzKxVbC/HEk+0sEL7VzQfVMFnXeZRJ2t+UQP6b/tTnPqahda0 0/aKWsa94HdlOXj9Ccx/7nbl6Mzjr8Qwgh/2k/Nz/0PEOU8EK0lz0/aH7uDNn40+ wOJHVU+ejFpzwForL2m9K5LkK4Yr0bQSU1iWEc1jXGiNt35FSrc8Z83qSRZ3n6KC bpDPOHJiKfaKfOun77Xwawe4HVPV+5YsPN5VPQvgWdNoit+zfkzCBWjyWkrCq94a 8YUgA1HkXKhDzkXfEj7cVLyxYZkCxbzrAvXIoMtz4w20mRG7DMpdA5TwNfg1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4oo7LK5SUlMfQgwoH/FGFjBrHL4wHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFAEHL3/UL03LPGc8V5shHoJcCThlldO51nD qtgSFvrayYXwKawyseoaqvcRJ9SJ7SQy0OQgxzcsWfkxSkQ/1VPmKCICOIiUjbQ/ TiCBp+TUASyXQFiF3MjbqeM9rBrCb1chIiI9ACad5akKI2g1D4+59CBJjB4erZd4 lOxhGy+Ex0jyXNwgwIZoTKDqwQO0a84hGn0DZvo0gl1W2SsypPG9o4fdVBJMhVaJ XPGHZm0D+aS7+m+gCzFW5t3YELL7vlvB3SahVKY7y5QhYbZV6nizDAxDRkWw9kXN FWtAKQReRKuym624LisjcEd+y9rHoHE27kQFmo70kat5QKaf3eQ= -----END CERTIFICATE-----Generated at Thu Mar 19 09:39:29 2026 by rpki-client