$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: DN8fDr24dhh9H98iHgoRUSa1WVUsnceoXJ57h1cAymQ= Subject key identifier: CC:DF:F5:D2:3C:EA:EA:63:05:2E:AC:75:B8:B4:E8:EF:6D:12:1F:16 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 0BB2FB846BF9BDED77A01F34650C32890D0CEE83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04AD Signing time: Sat 14 Jun 2025 16:41:52 +0000 Manifest this update: Sat 14 Jun 2025 16:36:52 +0000 Manifest next update: Tue 17 Jun 2025 20:13:52 +0000 Files and hashes: 1: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 2: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: pdHmdKOUVgH2h/cUEerJBbgO4qUCZjdnoyvIFB0V5BA=) 4: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 5: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b2:fb:84:6b:f9:bd:ed:77:a0:1f:34:65:0c:32:89:0d:0c:ee:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jun 14 16:36:52 2025 GMT Not After : Jun 17 20:13:52 2025 GMT Subject: CN=CCDFF5D23CEAEA63052EAC75B8B4E8EF6D121F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a1:b9:30:e3:8b:52:6d:ac:a4:2b:16:39:5d: 7f:c1:c9:c9:d4:af:67:c5:be:b2:4a:8f:c7:c7:93: fd:40:cb:58:97:ee:38:d6:ea:99:2e:15:a1:a2:c7: a5:74:0f:64:7d:1b:e3:91:e3:f7:64:74:65:b8:a2: de:d6:cc:e6:1b:2f:f3:71:0b:9b:dc:7a:b9:86:68: d5:dd:8e:79:e6:d3:4b:60:62:21:a9:16:fa:22:53: c8:ec:0a:33:af:fb:6f:84:be:7a:22:9d:36:21:5a: 0f:7a:89:97:59:40:c5:db:39:01:c7:44:64:4f:2e: fa:8a:4f:65:15:ab:db:20:b3:82:5e:78:3c:a5:46: be:ad:cb:fa:33:1c:e6:39:49:86:16:57:ce:da:7f: 99:fb:8c:07:ca:ac:9e:06:ee:c3:2f:81:6f:07:d5: 76:db:dc:78:70:7a:eb:d0:76:cb:7a:da:e1:e6:0a: e6:f7:49:be:7d:51:cc:6b:51:fe:a7:ee:a1:0d:fc: 9b:f2:e2:15:ba:ca:c4:b4:00:e0:9f:f8:d6:a3:55: 21:54:65:af:6f:28:fb:fc:3c:99:d8:41:e7:67:d6: 5f:4b:31:ee:64:38:df:6f:02:07:7e:7e:be:62:cb: 53:b3:84:42:38:bb:18:c2:ea:7d:57:8a:f2:7c:d4: f2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DF:F5:D2:3C:EA:EA:63:05:2E:AC:75:B8:B4:E8:EF:6D:12:1F:16 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:be:16:24:cc:c0:b1:1e:19:af:02:86:bd:ca:b6:eb:a3:70: 18:20:8e:c7:b5:6e:c8:4b:b4:7f:86:57:60:63:f9:5f:dd:c2: b1:d1:dd:6d:54:91:8a:86:c8:09:1e:fc:c5:bc:98:97:e0:00: 13:e1:0e:dc:15:cd:2e:67:bd:f4:39:88:95:2e:9b:d0:a2:2d: ce:45:2d:d0:7a:4e:41:07:0a:2f:05:00:4b:23:38:28:a6:5d: 57:6e:77:c4:a1:9e:f7:3e:37:1f:b9:2f:3f:ed:2e:23:7a:30: 06:ff:99:38:b1:e7:f1:bf:d4:87:b4:8d:aa:e5:d9:90:2b:07: b9:a1:3f:84:e9:ce:86:18:e2:d1:5c:5c:c2:5d:ef:68:0c:e8: 8f:fb:22:5c:cc:61:f5:47:66:93:f6:85:0f:91:de:7e:1f:06: 56:55:83:6f:5a:a7:ec:74:c3:ce:a9:86:81:bb:69:64:e1:43: 54:de:12:d3:9a:5a:c0:65:3e:00:a4:0c:05:95:c6:c3:b0:35: db:0a:c3:cb:c6:c0:ef:90:40:11:db:ec:d6:71:b6:88:8d:af: c9:45:61:d0:8f:ab:3f:4b:91:17:b5:0e:ca:8d:0c:41:a5:0a: 37:56:cb:4f:86:e6:9f:33:f9:63:3b:fc:4f:62:0d:06:85:ef: 73:e7:c6:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC7L7hGv5ve13oB80ZQwyiQ0M7oMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA2MTQxNjM2NTJaFw0yNTA2MTcyMDEzNTJaMDMxMTAvBgNV BAMTKENDREZGNUQyM0NFQUVBNjMwNTJFQUM3NUI4QjRFOEVGNkQxMjFGMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGobkw44tSbaykKxY5XX/BycnU r2fFvrJKj8fHk/1Ay1iX7jjW6pkuFaGix6V0D2R9G+OR4/dkdGW4ot7WzOYbL/Nx C5vcermGaNXdjnnm00tgYiGpFvoiU8jsCjOv+2+EvnoinTYhWg96iZdZQMXbOQHH RGRPLvqKT2UVq9sgs4JeeDylRr6ty/ozHOY5SYYWV87af5n7jAfKrJ4G7sMvgW8H 1Xbb3HhweuvQdst62uHmCub3Sb59UcxrUf6n7qEN/Jvy4hW6ysS0AOCf+NajVSFU Za9vKPv8PJnYQedn1l9LMe5kON9vAgd+fr5iy1OzhEI4uxjC6n1XivJ81PIRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzN/10jzq6mMFLqx1uLTo720SHxYwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6+FiTMwLEeGa8Chr3KtuujcBggjse1bshL tH+GV2Bj+V/dwrHR3W1UkYqGyAke/MW8mJfgABPhDtwVzS5nvfQ5iJUum9CiLc5F LdB6TkEHCi8FAEsjOCimXVdud8Shnvc+Nx+5Lz/tLiN6MAb/mTix5/G/1Ie0jarl 2ZArB7mhP4TpzoYY4tFcXMJd72gM6I/7IlzMYfVHZpP2hQ+R3n4fBlZVg29ap+x0 w86phoG7aWThQ1TeEtOaWsBlPgCkDAWVxsOwNdsKw8vGwO+QQBHb7NZxtoiNr8lF YdCPqz9LkRe1DsqNDEGlCjdWy0+G5p8z+WM7/E9iDQaF73Pnxjw= -----END CERTIFICATE-----Generated at Mon Jun 16 11:19:12 2025 by rpki-client