$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: eqWw8VChFW4jBNx/oKkxHs2xRqngx9U/miwDZOHD/yQ= Subject key identifier: 18:67:F2:74:DD:34:BC:F1:E0:81:6A:FB:A6:F1:CA:6F:8D:81:D7:51 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 089FF12099A038DFE686E5B9EB50428937338799 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 0536 Signing time: Wed 15 Apr 2026 20:42:09 +0000 Manifest this update: Wed 15 Apr 2026 20:37:09 +0000 Manifest next update: Sat 18 Apr 2026 23:51:09 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: 70iYJI7bqCO/5+TeIlNLbwAy4aSCAfLVY3nzWn7ZiUw=) 2: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 3: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 5: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:9f:f1:20:99:a0:38:df:e6:86:e5:b9:eb:50:42:89:37:33:87:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Apr 15 20:37:09 2026 GMT Not After : Apr 18 23:51:09 2026 GMT Subject: CN=1867F274DD34BCF1E0816AFBA6F1CA6F8D81D751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:6c:bb:33:c9:1b:c4:68:38:21:0b:86:79: 20:ee:2b:a7:40:a7:ca:f8:39:fe:43:00:10:9a:ac: 9f:7d:a4:e6:64:29:6d:80:d1:ed:b4:0f:58:36:da: 6a:6a:33:1b:c2:db:6b:83:c9:04:67:28:5e:05:f3: 39:44:7b:de:43:42:d9:c5:48:4c:ef:91:88:57:16: 13:64:12:6b:56:57:b2:15:e6:40:32:24:94:c8:23: 94:92:82:ff:ce:30:50:79:27:f5:e8:16:51:a4:8e: ae:91:5c:8f:ed:d3:4b:01:bf:77:d7:d4:e5:ac:57: bf:f8:ea:7c:07:4a:14:1b:cb:d3:ee:53:4a:1c:c1: 3c:e3:c0:96:e6:a2:d7:95:70:4f:78:1a:ff:06:ad: e7:a3:e2:03:dc:5d:3e:51:8d:96:f8:26:a1:01:8a: 10:c0:93:be:e4:21:02:c0:3b:5c:26:29:47:19:a2: d3:94:53:9f:b6:3f:6c:11:9a:ed:01:4a:7d:81:ff: 3c:1e:0d:9c:9f:32:ec:ca:a9:3d:c9:42:a6:91:3c: f0:c3:48:54:b4:51:d8:8a:b8:69:69:97:cf:47:e3: 1c:0c:4d:cc:c3:2b:f3:75:d1:cd:f1:95:33:0d:ac: 9d:4d:bd:0d:25:91:94:ec:33:99:c2:a7:96:2d:8e: b1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:67:F2:74:DD:34:BC:F1:E0:81:6A:FB:A6:F1:CA:6F:8D:81:D7:51 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1d:b6:67:8d:ca:8c:31:b4:6e:41:48:c4:2a:2d:e8:38:6f: 98:14:33:02:f6:b3:83:c7:0b:9d:52:7f:9f:84:ed:cc:4c:c7: a7:89:a2:47:50:c7:1c:75:39:bd:60:bd:21:2b:7e:40:0b:71: ba:5a:4e:ce:00:44:09:70:e8:59:9c:c3:f4:cb:e0:85:5d:1b: f9:ec:88:7c:22:e2:fe:f6:d3:2c:52:83:20:52:d0:e9:64:b2: 24:49:c8:ff:4c:53:e8:4f:5b:74:bf:21:66:1e:27:8a:20:e9: ac:a0:f6:1f:13:d9:52:9c:7b:75:73:74:44:49:66:93:ff:84: 00:ca:4d:22:5d:57:7f:fa:b3:5a:ad:8b:3d:4e:b8:61:4a:3d: 24:ce:01:a2:d9:8b:23:84:81:6a:0a:a6:1e:3a:6b:2b:86:c1: 7a:4d:1b:84:33:11:a4:9b:0a:40:70:a9:4c:6f:6a:5a:15:59: 86:04:b0:8d:e6:3b:32:03:c6:07:a8:db:62:cc:e5:2f:8f:8c: d4:a3:d0:e7:47:56:25:3e:c2:7b:fc:6b:30:09:9d:12:ef:6a: 82:74:ba:0a:13:4e:00:46:a3:ed:5e:5b:a3:b6:e6:3d:12:1f: a4:49:55:a8:60:01:23:d5:58:1d:3c:79:8c:49:f8:27:29:ce: 07:f9:99:bd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCJ/xIJmgON/mhuW561BCiTczh5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNjA0MTUyMDM3MDlaFw0yNjA0MTgyMzUxMDlaMDMxMTAvBgNV BAMTKDE4NjdGMjc0REQzNEJDRjFFMDgxNkFGQkE2RjFDQTZGOEQ4MUQ3NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Dmy7M8kbxGg4IQuGeSDuK6dA p8r4Of5DABCarJ99pOZkKW2A0e20D1g22mpqMxvC22uDyQRnKF4F8zlEe95DQtnF SEzvkYhXFhNkEmtWV7IV5kAyJJTII5SSgv/OMFB5J/XoFlGkjq6RXI/t00sBv3fX 1OWsV7/46nwHShQby9PuU0ocwTzjwJbmoteVcE94Gv8Greej4gPcXT5RjZb4JqEB ihDAk77kIQLAO1wmKUcZotOUU5+2P2wRmu0BSn2B/zweDZyfMuzKqT3JQqaRPPDD SFS0UdiKuGlpl89H4xwMTczDK/N10c3xlTMNrJ1NvQ0lkZTsM5nCp5YtjrEvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGGfydN00vPHggWr7pvHKb42B11EwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACsdtmeNyowxtG5BSMQqLeg4b5gUMwL2s4PH C51Sf5+E7cxMx6eJokdQxxx1Ob1gvSErfkALcbpaTs4ARAlw6Fmcw/TL4IVdG/ns iHwi4v720yxSgyBS0OlksiRJyP9MU+hPW3S/IWYeJ4og6ayg9h8T2VKce3VzdERJ ZpP/hADKTSJdV3/6s1qtiz1OuGFKPSTOAaLZiyOEgWoKph46ayuGwXpNG4QzEaSb CkBwqUxvaloVWYYEsI3mOzIDxgeo22LM5S+PjNSj0OdHViU+wnv8azAJnRLvaoJ0 ugoTTgBGo+1eW6O25j0SH6RJVahgASPVWB08eYxJ+Ccpzgf5mb0= -----END CERTIFICATE-----Generated at Fri Apr 17 18:37:06 2026 by rpki-client