$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: 0pSpyd/vXMPErlULhfN6mwahuZQaJMjFTU7WSoBeUxI= Subject key identifier: 9D:87:E7:B7:93:2D:46:BA:30:48:F1:5B:25:EB:D5:70:74:44:EB:FA Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 382D505E192320627DBA9DBBB9386E6FC01BE7DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04D4 Signing time: Sun 07 Sep 2025 02:31:56 +0000 Manifest this update: Sun 07 Sep 2025 02:26:56 +0000 Manifest next update: Wed 10 Sep 2025 13:34:56 +0000 Files and hashes: 1: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 2: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: cDmXDmkQ+UYXaAKtYdkskhtf6JKKy9tNPoNzO6dkrFU=) 3: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 4: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 5: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 10:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2d:50:5e:19:23:20:62:7d:ba:9d:bb:b9:38:6e:6f:c0:1b:e7:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Sep 7 02:26:56 2025 GMT Not After : Sep 10 13:34:56 2025 GMT Subject: CN=9D87E7B7932D46BA3048F15B25EBD5707444EBFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:2e:2f:e1:ef:1e:d6:e1:15:ba:4a:1d:5e: 8a:2c:b9:8a:46:97:80:bd:98:0f:b0:a2:f8:2f:21: a3:92:34:9c:66:bf:f6:94:07:7c:b2:8d:ca:4c:64: 15:c9:c4:93:68:e2:d8:47:a8:5f:f6:46:5e:34:19: 53:ca:29:00:95:f6:f5:1f:55:7c:6f:cd:1a:62:18: f2:db:c1:66:27:bb:9d:78:65:cc:17:51:f7:08:e8: 71:33:e7:2d:e8:96:77:78:73:41:d7:3d:09:45:88: 14:0e:96:9b:80:e0:d2:b8:08:aa:d8:a9:39:96:31: d5:d6:c6:93:50:49:57:1d:c2:ab:89:65:48:fc:5b: 55:88:cf:41:96:81:dc:f3:4b:47:ce:5c:4e:be:54: 88:84:73:9a:0e:fe:c5:fd:31:fc:9c:13:41:9e:ba: a2:c2:87:ca:5d:8b:66:d5:b6:d3:b1:a1:01:e7:8b: 50:28:ee:4d:e5:40:e0:3f:a1:6b:df:5f:34:b8:c2: 30:c7:42:eb:31:47:14:7a:f9:1f:5a:9f:07:ca:17: 73:47:6c:df:06:7d:b8:1a:b3:f4:62:65:3f:d8:87: f3:74:ce:1b:73:2f:92:df:c5:5b:09:3d:bc:3a:4c: 6f:9e:e5:bc:b3:df:83:29:8d:4a:88:82:4a:9e:10: a6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:87:E7:B7:93:2D:46:BA:30:48:F1:5B:25:EB:D5:70:74:44:EB:FA X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:9b:59:27:4b:52:e5:8f:73:cb:e4:3a:48:2b:30:2c:77:a5: 5f:e0:9a:07:5f:c2:ce:ce:3b:44:d2:cd:80:51:5b:00:55:b3: df:2b:a9:34:48:cc:32:58:8f:7b:8c:d0:08:b8:8a:6b:17:f5: 3b:b2:26:5c:9e:fd:04:ba:9e:c3:f6:9b:eb:e4:ca:2e:9a:c0: a9:b8:08:28:56:1e:f9:f3:f8:b3:aa:5d:ab:47:a0:3d:1d:00: f6:47:19:f4:63:b6:46:7a:df:da:7c:08:22:76:0e:09:43:e3: b7:0c:37:d1:d4:27:ba:8d:33:d2:d6:85:69:73:4a:95:79:d0: 2f:4a:20:7c:84:72:2e:cf:9c:38:f4:d5:00:42:39:33:ba:f4: c2:dd:28:b0:e2:af:c7:cc:9c:cc:d6:96:cc:80:5b:e2:84:6c: 16:75:ab:4f:69:5d:a7:6b:fb:bf:43:cd:a8:42:62:9f:a1:2b: 22:24:4c:7c:11:a6:dc:01:64:ad:1b:02:73:5b:1b:ec:07:ff: dd:71:73:bc:d2:ed:07:60:5d:92:1b:8f:a0:80:5a:e8:43:2d: 8b:83:fb:5e:dd:50:09:c6:a9:cc:78:25:0d:05:c9:74:5c:50: 07:2f:a3:f2:cd:88:93:70:24:3c:b9:17:f9:96:d9:87:d3:60: 1b:e2:31:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOC1QXhkjIGJ9up27uThub8Ab59swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA5MDcwMjI2NTZaFw0yNTA5MTAxMzM0NTZaMDMxMTAvBgNV BAMTKDlEODdFN0I3OTMyRDQ2QkEzMDQ4RjE1QjI1RUJENTcwNzQ0NEVCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2i4v4e8e1uEVukodXoosuYpG l4C9mA+wovgvIaOSNJxmv/aUB3yyjcpMZBXJxJNo4thHqF/2Rl40GVPKKQCV9vUf VXxvzRpiGPLbwWYnu514ZcwXUfcI6HEz5y3olnd4c0HXPQlFiBQOlpuA4NK4CKrY qTmWMdXWxpNQSVcdwquJZUj8W1WIz0GWgdzzS0fOXE6+VIiEc5oO/sX9MfycE0Ge uqLCh8pdi2bVttOxoQHni1Ao7k3lQOA/oWvfXzS4wjDHQusxRxR6+R9anwfKF3NH bN8Gfbgas/RiZT/Yh/N0zhtzL5LfxVsJPbw6TG+e5byz34MpjUqIgkqeEKbBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnYfnt5MtRrowSPFbJevVcHRE6/owHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAmbWSdLUuWPc8vkOkgrMCx3pV/gmgdfws7O O0TSzYBRWwBVs98rqTRIzDJYj3uM0Ai4imsX9TuyJlye/QS6nsP2m+vkyi6awKm4 CChWHvnz+LOqXatHoD0dAPZHGfRjtkZ639p8CCJ2DglD47cMN9HUJ7qNM9LWhWlz SpV50C9KIHyEci7PnDj01QBCOTO69MLdKLDir8fMnMzWlsyAW+KEbBZ1q09pXadr +79DzahCYp+hKyIkTHwRptwBZK0bAnNbG+wH/91xc7zS7QdgXZIbj6CAWuhDLYuD +17dUAnGqcx4JQ0FyXRcUAcvo/LNiJNwJDy5F/mW2YfTYBviMXw= -----END CERTIFICATE-----Generated at Sun Sep 7 13:59:50 2025 by rpki-client