$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: oja9g5DmObqJE1lBfgVGzzRjqmhaWj2Cl/RcAojYXR8= Subject key identifier: DE:A8:1D:DE:45:C2:3C:72:EE:A2:C0:ED:C5:D6:B3:B1:78:31:16:5E Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 4169C6BAF9CE0D752FA0C6B7A1BC0B1228D5C691 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 048D Signing time: Fri 04 Apr 2025 14:31:52 +0000 Manifest this update: Fri 04 Apr 2025 14:26:52 +0000 Manifest next update: Mon 07 Apr 2025 19:47:52 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: FUJ+RMG9YSDJTD8vRV22PDRBpbkhlgfOTFbAwdk9GnM=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 3: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) 5: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:69:c6:ba:f9:ce:0d:75:2f:a0:c6:b7:a1:bc:0b:12:28:d5:c6:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Apr 4 14:26:52 2025 GMT Not After : Apr 7 19:47:52 2025 GMT Subject: CN=DEA81DDE45C23C72EEA2C0EDC5D6B3B17831165E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dd:f1:4e:e6:06:0c:a2:95:d5:0d:9a:8c:2c: 25:2b:d4:84:29:fd:32:9e:2d:be:d5:b3:12:c9:c8: 2a:7e:9e:f1:b0:98:ad:48:c3:60:94:fb:bb:be:a6: 5f:e5:29:98:d4:67:8a:a0:d3:8a:9f:f7:4f:fc:b6: d4:18:45:87:dd:63:a0:1c:4a:d2:08:d2:c1:bf:59: 87:6b:96:f9:92:a8:33:b9:ab:d2:52:90:51:b1:b8: 9d:20:b6:08:6f:6b:1a:e3:27:3e:b5:00:86:38:3c: 2b:4d:bf:97:19:65:4c:61:ea:52:83:4c:2d:11:a4: 90:98:95:74:f0:01:d3:0b:83:a2:e9:56:68:30:1f: d9:e0:ac:52:d3:0e:82:df:7b:50:1c:fe:54:c1:b8: 35:6c:06:d5:b6:88:ac:49:4a:22:88:46:73:18:82: 04:0e:4e:e1:26:3a:70:b9:b5:1f:3d:47:7f:37:a1: 8d:11:0a:a4:1b:86:82:c6:74:e9:5a:21:e1:b6:b8: cc:84:37:a8:54:54:32:ca:d0:52:c6:c4:0c:f7:48: 69:93:ef:fa:67:7d:46:f6:a2:65:7f:82:e4:aa:0f: 21:cb:b5:79:ea:65:ce:e1:de:8e:f9:c7:e1:40:65: 51:98:85:80:d2:a6:9a:07:87:49:94:d0:50:75:7a: 0c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A8:1D:DE:45:C2:3C:72:EE:A2:C0:ED:C5:D6:B3:B1:78:31:16:5E X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:a8:20:77:0f:71:42:1f:11:97:b8:8a:91:d4:f6:8a:fb:41: 89:6a:03:b3:f5:4e:d0:70:30:c7:3d:3b:21:1c:1d:a0:42:68: 79:73:b3:32:96:bc:cc:c9:f7:8d:77:d4:1f:55:f2:2c:a9:45: 59:44:e5:a6:8b:c9:4e:60:6b:a2:3d:42:99:fa:59:dd:86:43: f6:c5:8c:e7:21:2f:e9:af:b8:fd:05:f4:81:40:e4:3a:0f:b2: f6:0c:21:87:7d:c5:5d:17:16:e4:10:61:47:44:46:1c:f3:99: 3d:82:97:1c:00:33:aa:cf:9f:0c:d3:9a:4f:43:c2:c9:e0:13: ad:f0:13:42:1c:f3:ab:7c:51:0f:f6:00:9c:b8:88:52:86:14: a4:60:86:06:0e:aa:e7:88:ee:86:d0:4e:da:8b:06:ba:24:3b: 4c:d7:8c:17:a0:c7:37:ac:59:06:b7:93:0d:ce:a9:20:5b:d4: ac:23:8e:54:b8:81:a6:5a:63:01:40:fd:e3:6e:2c:7f:f0:b5: 54:25:b4:03:84:a2:20:5e:d5:2b:96:e7:26:a2:fc:23:b2:6c: 76:c9:d7:ed:22:f6:1e:de:f6:f0:b3:34:b0:e5:5a:e4:c1:a6: 09:7e:e7:5d:ed:8d:20:c1:0d:e2:39:41:38:ab:ca:b2:b4:e7: 0a:64:04:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQWnGuvnODXUvoMa3obwLEijVxpEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA0MDQxNDI2NTJaFw0yNTA0MDcxOTQ3NTJaMDMxMTAvBgNV BAMTKERFQTgxRERFNDVDMjNDNzJFRUEyQzBFREM1RDZCM0IxNzgzMTE2NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF3fFO5gYMopXVDZqMLCUr1IQp /TKeLb7VsxLJyCp+nvGwmK1Iw2CU+7u+pl/lKZjUZ4qg04qf90/8ttQYRYfdY6Ac StII0sG/WYdrlvmSqDO5q9JSkFGxuJ0gtghvaxrjJz61AIY4PCtNv5cZZUxh6lKD TC0RpJCYlXTwAdMLg6LpVmgwH9ngrFLTDoLfe1Ac/lTBuDVsBtW2iKxJSiKIRnMY ggQOTuEmOnC5tR89R383oY0RCqQbhoLGdOlaIeG2uMyEN6hUVDLK0FLGxAz3SGmT 7/pnfUb2omV/guSqDyHLtXnqZc7h3o75x+FAZVGYhYDSppoHh0mU0FB1egzhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3qgd3kXCPHLuosDtxdazsXgxFl4wHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD2oIHcPcUIfEZe4ipHU9or7QYlqA7P1TtBw MMc9OyEcHaBCaHlzszKWvMzJ94131B9V8iypRVlE5aaLyU5ga6I9Qpn6Wd2GQ/bF jOchL+mvuP0F9IFA5DoPsvYMIYd9xV0XFuQQYUdERhzzmT2ClxwAM6rPnwzTmk9D wsngE63wE0Ic86t8UQ/2AJy4iFKGFKRghgYOqueI7obQTtqLBrokO0zXjBegxzes WQa3kw3OqSBb1KwjjlS4gaZaYwFA/eNuLH/wtVQltAOEoiBe1SuW5yai/COybHbJ 1+0i9h7e9vCzNLDlWuTBpgl+513tjSDBDeI5QTiryrK05wpkBP4= -----END CERTIFICATE-----Generated at Sat Apr 5 16:40:18 2025 by rpki-client