$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: gnnTMemC+acVgzV8YPfTqBXtHOs7FMKqqHqU4yCAimI= Subject key identifier: 7A:1B:38:83:EE:2C:28:6F:F0:15:F5:85:14:CE:94:54:54:0E:78:22 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 4318F29E76802A0389AF41833331AE6DECCF0366 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 052B Signing time: Sat 21 Mar 2026 06:42:11 +0000 Manifest this update: Sat 21 Mar 2026 06:37:11 +0000 Manifest next update: Tue 24 Mar 2026 14:28:11 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: 9GlackOIJcHFxDF06qNEd89OrmOrlVUxnAmxS1cu2iY=) 2: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 3: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 5: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 12:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:18:f2:9e:76:80:2a:03:89:af:41:83:33:31:ae:6d:ec:cf:03:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Mar 21 06:37:11 2026 GMT Not After : Mar 24 14:28:11 2026 GMT Subject: CN=7A1B3883EE2C286FF015F58514CE9454540E7822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c6:c8:67:ca:b4:ab:12:6b:b8:f4:12:5a:ab: ad:fe:a8:2d:3b:3f:1a:45:58:0c:78:f6:e5:09:d8: 0a:c1:84:59:fc:3c:c2:b0:22:ee:e7:0e:98:be:2a: e0:3c:10:c2:8e:9b:06:08:ff:51:ad:e6:4e:05:ed: a1:e1:94:eb:7f:8e:5e:74:65:b4:86:5d:e0:8d:d6: 82:97:bd:76:c3:cc:5a:26:30:c1:0b:ed:1a:69:07: bf:52:73:26:63:6e:7c:69:6d:17:3f:0f:2e:3a:1e: 82:ac:19:6f:c0:60:83:9f:70:7a:a9:e1:da:8a:6d: 30:af:b1:82:0d:fe:fa:d0:f1:8c:5f:08:28:b7:bf: 21:b2:36:32:34:3f:31:cb:eb:fe:62:eb:7b:1f:01: c9:62:b8:a0:2d:40:5e:84:33:f1:1a:67:39:cc:48: 44:8d:53:40:57:2a:69:e4:b3:93:77:0c:e1:c8:0e: de:fc:22:c5:9e:1c:6c:22:35:27:8c:d1:f8:67:ee: cf:27:f5:0a:9e:1e:51:b6:52:a1:98:f8:a7:64:8e: 56:8f:d9:58:50:9e:4a:4b:d4:56:d3:16:a0:d1:18: 11:6c:b6:b9:70:e6:b5:a2:27:42:8a:98:fa:55:f3: 36:9f:2e:97:85:48:01:fa:39:c0:12:ea:7e:d1:df: a3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1B:38:83:EE:2C:28:6F:F0:15:F5:85:14:CE:94:54:54:0E:78:22 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:5e:c4:82:8c:a8:a0:9c:b4:3e:5d:0e:c7:fd:d3:85:17:6e: ec:4b:71:ed:53:da:04:a7:c0:8c:3a:23:c7:10:c2:a9:d3:60: 49:52:20:66:10:0e:1d:4a:50:37:6d:e1:6f:eb:45:5e:a3:e6: dd:4c:68:ff:f3:e2:3a:98:8a:57:dc:b2:6a:5b:a2:ce:5d:04: 99:c3:8f:75:d5:ea:e5:1a:f6:90:43:ff:60:a1:74:e9:af:d0: d1:a2:fa:bd:83:76:49:b8:20:97:eb:f1:83:50:5a:58:68:92: 46:0e:74:77:c7:92:5f:51:a3:f4:bc:5b:1f:3f:16:4f:e4:1a: e0:74:20:9a:32:92:e3:dd:a0:96:c2:98:87:b2:2f:96:1d:4e: 88:e6:92:ce:39:6d:c6:3f:bd:67:92:5f:3f:28:35:9a:67:17: d5:1e:8a:7c:62:87:57:ca:c5:76:f3:88:03:df:ac:0c:af:39: d1:38:29:57:57:3b:6d:d6:37:ac:9d:ac:ce:59:88:8b:e7:44: c8:53:01:78:df:c8:be:7e:2e:80:84:8b:17:f6:6a:08:8a:e0: 2f:c9:48:e1:06:fb:b0:44:3e:38:a1:cb:84:0d:d9:ec:a4:d8: a1:b4:64:96:6f:d7:a0:1d:6e:57:d1:ec:e9:cc:bf:33:28:18: e0:80:05:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQxjynnaAKgOJr0GDMzGubezPA2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNjAzMjEwNjM3MTFaFw0yNjAzMjQxNDI4MTFaMDMxMTAvBgNV BAMTKDdBMUIzODgzRUUyQzI4NkZGMDE1RjU4NTE0Q0U5NDU0NTQwRTc4MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVxshnyrSrEmu49BJaq63+qC07 PxpFWAx49uUJ2ArBhFn8PMKwIu7nDpi+KuA8EMKOmwYI/1Gt5k4F7aHhlOt/jl50 ZbSGXeCN1oKXvXbDzFomMMEL7RppB79ScyZjbnxpbRc/Dy46HoKsGW/AYIOfcHqp 4dqKbTCvsYIN/vrQ8YxfCCi3vyGyNjI0PzHL6/5i63sfAcliuKAtQF6EM/EaZznM SESNU0BXKmnks5N3DOHIDt78IsWeHGwiNSeM0fhn7s8n9QqeHlG2UqGY+KdkjlaP 2VhQnkpL1FbTFqDRGBFstrlw5rWiJ0KKmPpV8zafLpeFSAH6OcAS6n7R36NrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUehs4g+4sKG/wFfWFFM6UVFQOeCIwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAdexIKMqKCctD5dDsf904UXbuxLce1T2gSn wIw6I8cQwqnTYElSIGYQDh1KUDdt4W/rRV6j5t1MaP/z4jqYilfcsmpbos5dBJnD j3XV6uUa9pBD/2ChdOmv0NGi+r2Ddkm4IJfr8YNQWlhokkYOdHfHkl9Ro/S8Wx8/ Fk/kGuB0IJoykuPdoJbCmIeyL5YdTojmks45bcY/vWeSXz8oNZpnF9Ueinxih1fK xXbziAPfrAyvOdE4KVdXO23WN6ydrM5ZiIvnRMhTAXjfyL5+LoCEixf2agiK4C/J SOEG+7BEPjihy4QN2eyk2KG0ZJZv16AdblfR7OnMvzMoGOCABfg= -----END CERTIFICATE-----Generated at Sat Mar 21 12:05:31 2026 by rpki-client