$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: 3WAStiGLNz2X+AXWowquSllOP1I6gX3iCZK+35xerEg= Subject key identifier: BA:24:E5:4F:8F:BE:B4:30:ED:35:B6:1C:96:0D:E3:F2:CC:F5:00:9A Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 12BD97AE34E08D51725E65FA2ADC34183A6160D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04A7 Signing time: Sun 01 Jun 2025 18:41:53 +0000 Manifest this update: Sun 01 Jun 2025 18:36:53 +0000 Manifest next update: Wed 04 Jun 2025 22:29:53 +0000 Files and hashes: 1: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 2: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: qwZIw+KorHpFTZ9Z5PlK/n5uitUGTaCNfp/MI1LmgZ0=) 4: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) 5: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 22:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:bd:97:ae:34:e0:8d:51:72:5e:65:fa:2a:dc:34:18:3a:61:60:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jun 1 18:36:53 2025 GMT Not After : Jun 4 22:29:53 2025 GMT Subject: CN=BA24E54F8FBEB430ED35B61C960DE3F2CCF5009A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:26:ee:e0:40:68:54:08:54:08:db:6a:cc: d2:8f:6b:fd:d0:a3:cf:00:81:7d:a4:b2:6a:45:f1: 45:b5:d1:1d:ba:e5:7d:d4:fd:9a:e8:58:b2:6a:f0: 26:33:6a:43:b3:a5:9d:4a:a3:ed:51:6b:0f:9f:2a: 97:ce:1c:58:c7:1f:81:7e:02:1e:8c:c9:6d:7f:ef: 56:08:07:83:b1:ca:39:8f:24:0b:bf:30:1a:bc:a2: d7:01:cc:45:b9:3e:8b:85:fd:c8:38:9c:48:01:f5: 21:13:06:01:23:d5:15:d1:5c:b7:ac:0b:0d:6e:8a: 62:bc:33:85:94:76:32:bb:62:37:a5:84:db:18:7d: 57:d4:ed:d3:c0:0b:7b:31:04:cd:aa:83:1b:d8:dd: 50:68:03:61:97:a7:b4:87:53:65:c4:a2:ac:c7:5a: 09:25:78:af:69:5b:43:7c:6a:04:09:80:06:05:74: 9c:ed:94:02:9b:3f:be:e5:20:75:a5:94:39:1a:fe: e7:5b:86:f4:87:80:d8:b5:45:de:83:ec:c2:a1:0d: be:a5:8e:70:27:5c:fb:43:ac:f2:72:8c:fb:c7:33: df:62:6a:bf:d8:6c:f2:a3:65:87:fc:7f:96:4c:44: 0a:38:38:d0:21:9b:f7:98:8b:8f:ed:aa:90:cb:2e: 6d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:E5:4F:8F:BE:B4:30:ED:35:B6:1C:96:0D:E3:F2:CC:F5:00:9A X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:22:f2:53:32:c7:ae:0c:81:91:7b:65:72:5b:87:85:45:d5: a7:91:a3:7a:29:c9:65:cb:2d:1b:63:2f:c0:8f:19:a5:0a:ba: 24:f4:96:82:c1:50:fc:9c:33:0c:b8:66:20:61:bf:5a:2c:54: aa:ea:c0:f6:36:52:5e:47:35:66:b2:15:56:25:b4:8d:94:bf: 94:c0:cd:2a:56:e9:d5:46:ed:4d:ac:d9:83:16:58:8c:9e:d2: f5:e2:ae:ca:e6:66:c6:f4:ca:86:5e:0b:b4:be:0b:07:54:8d: 87:7b:ca:d8:0c:8f:f7:f3:23:c9:a4:7e:8d:76:e6:27:f8:58: 57:d2:dd:0d:ba:78:1c:8c:9c:50:56:cf:3c:f0:6e:d2:71:8f: 54:2c:74:8f:00:18:7e:04:5d:58:da:a9:ca:d9:07:50:c2:09: 51:eb:69:2b:87:13:54:2e:9b:ac:6b:5d:24:82:46:38:fb:bb: b6:53:8b:78:a0:ac:31:db:22:3a:ec:bc:54:39:36:0a:29:d5: 65:bf:33:f7:8a:ed:01:da:c0:47:8a:8f:c0:58:2a:02:85:b2: cb:ed:9b:a9:e9:6f:48:7a:56:03:dc:33:0b:b7:71:64:1c:d2: 6d:0a:89:49:fd:c8:3c:90:17:c8:04:2f:ac:d5:07:69:61:fc: 66:d9:50:fc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEr2XrjTgjVFyXmX6Ktw0GDphYNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA2MDExODM2NTNaFw0yNTA2MDQyMjI5NTNaMDMxMTAvBgNV BAMTKEJBMjRFNTRGOEZCRUI0MzBFRDM1QjYxQzk2MERFM0YyQ0NGNTAwOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGaibu4EBoVAhUCNtqzNKPa/3Q o88AgX2ksmpF8UW10R265X3U/ZroWLJq8CYzakOzpZ1Ko+1Raw+fKpfOHFjHH4F+ Ah6MyW1/71YIB4OxyjmPJAu/MBq8otcBzEW5PouF/cg4nEgB9SETBgEj1RXRXLes Cw1uimK8M4WUdjK7YjelhNsYfVfU7dPAC3sxBM2qgxvY3VBoA2GXp7SHU2XEoqzH WgkleK9pW0N8agQJgAYFdJztlAKbP77lIHWllDka/udbhvSHgNi1Rd6D7MKhDb6l jnAnXPtDrPJyjPvHM99iar/YbPKjZYf8f5ZMRAo4ONAhm/eYi4/tqpDLLm2vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuiTlT4++tDDtNbYclg3j8sz1AJowHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKAi8lMyx64MgZF7ZXJbh4VF1aeRo3opyWXL LRtjL8CPGaUKuiT0loLBUPycMwy4ZiBhv1osVKrqwPY2Ul5HNWayFVYltI2Uv5TA zSpW6dVG7U2s2YMWWIye0vXirsrmZsb0yoZeC7S+CwdUjYd7ytgMj/fzI8mkfo12 5if4WFfS3Q26eByMnFBWzzzwbtJxj1QsdI8AGH4EXVjaqcrZB1DCCVHraSuHE1Qu m6xrXSSCRjj7u7ZTi3igrDHbIjrsvFQ5Ngop1WW/M/eK7QHawEeKj8BYKgKFssvt m6npb0h6VgPcMwu3cWQc0m0KiUn9yDyQF8gEL6zVB2lh/GbZUPw= -----END CERTIFICATE-----Generated at Tue Jun 3 23:18:16 2025 by rpki-client