$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: kzg8cD60Vn28FGFn2rWl3zbcHPHHJ0BiwOTNiACDWa8= Subject key identifier: 1C:55:E8:37:3F:8F:46:BF:51:B2:61:16:9C:68:3C:D4:F3:A1:69:16 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 1B7CC096F13B25ADD55B667AD385B556D7067E01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04EF Signing time: Wed 05 Nov 2025 19:41:56 +0000 Manifest this update: Wed 05 Nov 2025 19:36:56 +0000 Manifest next update: Sat 08 Nov 2025 23:22:56 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: FiBN2uJwJmjieRKXoNtZxSjvjhaT0nFOBLmO8CcPe+s=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 5: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Nov 2025 23:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7c:c0:96:f1:3b:25:ad:d5:5b:66:7a:d3:85:b5:56:d7:06:7e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Nov 5 19:36:56 2025 GMT Not After : Nov 8 23:22:56 2025 GMT Subject: CN=1C55E8373F8F46BF51B261169C683CD4F3A16916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:34:d4:7f:b7:c2:1e:67:99:c1:f9:6f:72:05: 7f:90:a8:dd:ee:f2:1c:a7:5c:f7:f4:a8:86:26:7c: c5:74:00:43:fd:8a:5f:2a:9a:34:44:fb:c2:01:9d: 23:4a:8a:56:40:3d:d4:56:d2:47:e2:d6:48:cd:e5: d5:3f:50:eb:f0:70:33:5f:51:11:4a:fd:d1:57:91: bd:48:60:ef:6c:23:e4:8c:06:e0:95:24:7f:54:e3: c1:5d:d8:f2:c1:ab:94:dc:e2:1b:9e:d3:9f:f4:32: c1:2f:dc:e1:6d:48:24:37:b8:2f:b8:db:1e:9e:21: 8d:2f:24:7b:29:f0:21:30:6f:9f:cd:62:bd:1d:00: f2:95:25:ba:2b:6a:c3:bf:79:7d:88:f8:f3:c6:ab: ad:0b:28:65:80:a8:4d:8b:4e:ed:2c:cb:a0:b9:9c: 58:e7:04:56:21:54:d0:ef:71:a1:61:46:a1:56:e7: ea:47:d5:c3:4a:e1:06:87:67:a7:11:7a:94:f2:9a: 84:a3:24:31:a6:5f:07:b3:9b:02:65:83:b4:02:91: 55:01:7f:63:3a:17:ee:7f:16:ca:74:91:57:27:91: b9:bc:df:45:b5:fc:73:2e:d0:32:61:72:b1:13:04: c5:8f:04:c0:00:3f:32:9b:e9:68:ac:d9:1b:da:60: 04:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:55:E8:37:3F:8F:46:BF:51:B2:61:16:9C:68:3C:D4:F3:A1:69:16 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:94:1b:a9:5d:db:f4:33:97:29:c5:a3:41:63:03:c7:36:c7: e6:47:c7:b7:9d:9e:d2:72:7a:f4:0d:7b:a6:54:09:74:1c:2f: eb:44:d6:f0:b7:9b:e5:29:12:03:95:8a:08:94:9f:69:35:45: c5:d7:e0:69:18:8b:2e:24:cb:98:c6:3c:5c:04:a0:10:6d:d8: 32:00:84:22:82:92:3c:a7:3c:74:89:9b:59:1e:7c:95:df:f0: 49:4b:f2:bf:01:3d:00:fb:9e:53:5b:14:e7:8e:7f:86:8d:fd: 59:0f:a6:76:91:d3:09:88:c8:70:01:9f:58:a9:71:af:54:a5: 03:f4:66:c9:60:db:69:0e:7b:22:77:15:06:3e:7c:7f:c3:44: 5f:5d:b2:73:7d:4c:df:88:e3:4c:29:8b:37:f7:55:bf:58:06: 06:f1:c7:e8:b1:36:cc:45:61:5b:23:bd:67:ad:d9:e9:0d:d4: 31:21:b9:17:65:dc:7f:97:d6:2e:50:1b:a4:3b:dd:06:81:9e: 5d:7b:1e:62:e0:e3:10:fd:23:2a:68:b0:51:8a:6e:97:5c:a0: f8:88:8a:03:a4:05:3d:b5:6d:8d:f8:76:ca:c7:e3:34:e2:9b: fe:e2:79:b8:7d:a5:42:07:aa:27:22:75:be:3f:0d:7c:d3:34: 07:2f:25:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG3zAlvE7Ja3VW2Z604W1VtcGfgEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTExMDUxOTM2NTZaFw0yNTExMDgyMzIyNTZaMDMxMTAvBgNV BAMTKDFDNTVFODM3M0Y4RjQ2QkY1MUIyNjExNjlDNjgzQ0Q0RjNBMTY5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgNNR/t8IeZ5nB+W9yBX+QqN3u 8hynXPf0qIYmfMV0AEP9il8qmjRE+8IBnSNKilZAPdRW0kfi1kjN5dU/UOvwcDNf URFK/dFXkb1IYO9sI+SMBuCVJH9U48Fd2PLBq5Tc4hue05/0MsEv3OFtSCQ3uC+4 2x6eIY0vJHsp8CEwb5/NYr0dAPKVJborasO/eX2I+PPGq60LKGWAqE2LTu0sy6C5 nFjnBFYhVNDvcaFhRqFW5+pH1cNK4QaHZ6cRepTymoSjJDGmXwezmwJlg7QCkVUB f2M6F+5/Fsp0kVcnkbm830W1/HMu0DJhcrETBMWPBMAAPzKb6Wis2RvaYAS/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHFXoNz+PRr9RsmEWnGg81POhaRYwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACmUG6ld2/QzlynFo0FjA8c2x+ZHx7edntJy evQNe6ZUCXQcL+tE1vC3m+UpEgOVigiUn2k1RcXX4GkYiy4ky5jGPFwEoBBt2DIA hCKCkjynPHSJm1kefJXf8ElL8r8BPQD7nlNbFOeOf4aN/VkPpnaR0wmIyHABn1ip ca9UpQP0Zslg22kOeyJ3FQY+fH/DRF9dsnN9TN+I40wpizf3Vb9YBgbxx+ixNsxF YVsjvWet2ekN1DEhuRdl3H+X1i5QG6Q73QaBnl17HmLg4xD9IyposFGKbpdcoPiI igOkBT21bY34dsrH4zTim/7iebh9pUIHqicidb4/DXzTNAcvJaI= -----END CERTIFICATE-----Generated at Fri Nov 7 12:57:46 2025 by rpki-client