$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: ktxuVRY0mpDbT1AH+kjb6T5/mKiptvv9Tm6fpjZaH9s= Subject key identifier: DD:5B:31:28:1F:70:78:EB:06:FF:9B:B0:80:95:CC:B1:FE:CB:74:AA Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 1E054828370CD418F4E4C855C18E7B4F6AB6FD44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04EE Signing time: Mon 03 Nov 2025 12:11:54 +0000 Manifest this update: Mon 03 Nov 2025 12:06:54 +0000 Manifest next update: Thu 06 Nov 2025 19:32:54 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 2: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: 2hVvzD/7rVC143FyggQjRQ69EUa8Zd7RFw7p0YjFR0Q=) 3: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 4: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 5: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 19:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:05:48:28:37:0c:d4:18:f4:e4:c8:55:c1:8e:7b:4f:6a:b6:fd:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Nov 3 12:06:54 2025 GMT Not After : Nov 6 19:32:54 2025 GMT Subject: CN=DD5B31281F7078EB06FF9BB08095CCB1FECB74AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ed:9c:95:19:34:c9:8b:f3:f6:b3:dd:01:0c: 35:18:af:03:a8:11:8a:5e:88:6a:05:b5:b7:a5:2b: 32:25:3a:ef:ce:7c:07:5c:0f:d3:3a:e2:cf:e5:f4: 4c:38:ba:a0:bc:a9:de:05:2e:1c:27:09:39:5d:39: 88:02:59:a5:22:e3:03:4c:c7:25:96:f9:89:f1:75: e6:98:ec:73:51:b0:63:98:a6:0e:ae:2e:58:1c:2d: 19:6b:29:9c:60:f1:df:01:7f:00:13:15:68:6d:ca: 2a:c7:ae:61:43:7f:3a:5b:2f:03:02:69:d5:56:ac: d5:19:2f:51:7c:6f:c1:01:5f:10:76:9c:1a:44:f2: cb:76:a8:d6:1a:29:cc:5e:f5:30:d3:7a:d4:a1:46: 80:fe:fa:ad:e2:8c:41:c6:dd:1e:59:a3:9c:1e:cb: 51:5e:ca:9b:5e:79:7d:31:5b:b2:1c:77:bb:bd:da: aa:62:35:86:f4:7c:45:cb:ae:bb:97:ba:de:0a:b6: 28:fc:07:7a:ba:72:a0:96:c1:bb:df:cf:7e:5a:53: b7:4c:5d:a9:c4:5f:3f:1c:26:8b:e7:b7:59:f6:9b: 45:08:b1:f1:62:27:0e:57:1a:5c:2b:4e:e4:19:a4: 3c:07:51:c2:3c:e1:d0:9e:57:89:90:93:ce:1b:eb: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5B:31:28:1F:70:78:EB:06:FF:9B:B0:80:95:CC:B1:FE:CB:74:AA X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:bb:51:89:e1:ae:3d:b6:02:78:52:74:29:15:73:72:36:10: 04:10:cc:c8:ee:93:60:48:e1:ac:cc:dd:2e:84:24:8b:9b:56: b9:ce:42:3b:82:69:99:c9:a2:31:72:7a:74:87:d6:3c:91:23: 66:23:4b:b6:09:cd:eb:3d:97:33:96:40:8a:4a:a4:35:10:44: 52:e4:ee:a5:b8:6c:71:f5:1a:3d:50:d7:6a:28:eb:be:9b:8f: 67:43:77:4d:b2:34:28:8a:da:b6:0d:1d:83:29:ab:67:45:af: 79:b5:e0:c6:b7:13:0a:c1:6d:46:83:d7:e4:3b:3c:58:6d:01: 1f:12:82:cf:c8:ed:42:f0:e3:0f:a5:7a:08:5f:c4:39:d0:c1: 61:4e:5f:2f:98:d7:62:f9:80:09:83:08:7e:72:92:51:15:24: 7a:09:ce:ad:f7:f2:18:11:d9:62:10:92:c5:37:c4:7f:a5:16: 5b:6b:64:89:9f:41:84:51:5e:a7:a5:91:02:f1:92:47:1f:1e: 52:34:f6:7c:10:85:04:6a:30:4a:06:66:15:36:d8:fe:5e:a8: aa:d1:40:63:85:b8:8f:ed:82:51:1e:c1:e9:0f:ef:97:1f:1d: 8e:7c:f6:88:64:83:0d:02:8b:a7:e4:c8:68:28:6e:34:91:8a: 69:38:2b:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHgVIKDcM1Bj05MhVwY57T2q2/UQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTExMDMxMjA2NTRaFw0yNTExMDYxOTMyNTRaMDMxMTAvBgNV BAMTKERENUIzMTI4MUY3MDc4RUIwNkZGOUJCMDgwOTVDQ0IxRkVDQjc0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr7ZyVGTTJi/P2s90BDDUYrwOo EYpeiGoFtbelKzIlOu/OfAdcD9M64s/l9Ew4uqC8qd4FLhwnCTldOYgCWaUi4wNM xyWW+YnxdeaY7HNRsGOYpg6uLlgcLRlrKZxg8d8BfwATFWhtyirHrmFDfzpbLwMC adVWrNUZL1F8b8EBXxB2nBpE8st2qNYaKcxe9TDTetShRoD++q3ijEHG3R5Zo5we y1FeypteeX0xW7Icd7u92qpiNYb0fEXLrruXut4Ktij8B3q6cqCWwbvfz35aU7dM XanEXz8cJovnt1n2m0UIsfFiJw5XGlwrTuQZpDwHUcI84dCeV4mQk84b6zaDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3VsxKB9weOsG/5uwgJXMsf7LdKowHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKi7UYnhrj22AnhSdCkVc3I2EAQQzMjuk2BI 4azM3S6EJIubVrnOQjuCaZnJojFyenSH1jyRI2YjS7YJzes9lzOWQIpKpDUQRFLk 7qW4bHH1Gj1Q12oo676bj2dDd02yNCiK2rYNHYMpq2dFr3m14Ma3EwrBbUaD1+Q7 PFhtAR8Sgs/I7ULw4w+leghfxDnQwWFOXy+Y12L5gAmDCH5yklEVJHoJzq338hgR 2WIQksU3xH+lFltrZImfQYRRXqelkQLxkkcfHlI09nwQhQRqMEoGZhU22P5eqKrR QGOFuI/tglEewekP75cfHY589ohkgw0Ci6fkyGgobjSRimk4K88= -----END CERTIFICATE-----Generated at Tue Nov 4 12:54:29 2025 by rpki-client