$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: rJPa3CjQFr1ImCtEjhh1u25Y3ZfDlLe8fIK1e+GttgU= Subject key identifier: 04:58:43:51:65:F4:3D:D1:44:30:BF:86:13:6D:3D:D9:71:E4:1F:62 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 31F541ABA3C8A6848E11AC81A5757933E0B63FD3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 0522 Signing time: Sun 01 Mar 2026 18:02:09 +0000 Manifest this update: Sun 01 Mar 2026 17:57:09 +0000 Manifest next update: Wed 04 Mar 2026 21:36:09 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: wC2jwJkKuwaAHy8WO1caLStKJ31M2dxHNuJOoiz7odY=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 3: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 4: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 5: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 21:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:f5:41:ab:a3:c8:a6:84:8e:11:ac:81:a5:75:79:33:e0:b6:3f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Mar 1 17:57:09 2026 GMT Not After : Mar 4 21:36:09 2026 GMT Subject: CN=0458435165F43DD14430BF86136D3DD971E41F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e9:99:cf:59:b3:af:f6:0d:f9:eb:7f:85:d6: c0:1c:d2:83:87:43:2e:d5:d9:b6:02:e9:58:25:d0: 13:fb:94:82:fc:3c:65:40:b6:41:d6:e1:b4:e6:a0: 6b:64:4f:70:57:83:02:5e:87:0e:f0:af:fb:63:03: 71:54:f3:9e:08:dd:16:86:d6:36:88:f2:31:18:7d: 7d:fd:0c:2c:dd:94:82:46:fd:78:cf:bb:8d:d7:64: 90:b7:d8:e1:5f:2e:2c:01:31:f8:5d:fb:b4:82:05: a5:b5:36:2b:67:00:39:4c:c2:21:a3:5a:a1:ed:ea: 47:3c:5f:9c:f6:75:8b:ae:ce:86:f6:46:57:41:49: 6e:e7:8e:07:c3:75:47:c3:02:18:f7:fb:55:0d:b8: 6b:84:91:f9:13:75:9b:fb:89:09:03:5a:6d:cc:e8: d8:1c:2d:b5:05:4c:d0:2c:be:92:d8:8a:cd:76:b1: c9:86:e2:17:d5:f8:8d:03:14:08:03:67:28:59:0a: fa:95:93:b9:5e:f8:8a:71:e6:f3:3e:fd:fe:a1:65: 53:b7:c9:14:72:f2:a8:ac:02:a4:18:b4:71:86:3f: 2f:15:7a:1b:34:b6:62:d0:24:a4:e3:86:ec:92:3a: 1a:06:f0:ce:4a:a3:d4:fb:96:17:49:2d:1a:c1:42: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:58:43:51:65:F4:3D:D1:44:30:BF:86:13:6D:3D:D9:71:E4:1F:62 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c5:58:c0:d1:1c:e2:88:a1:23:3e:2f:9b:98:c8:1e:0d:45: 72:74:dc:f1:ed:ca:cb:1a:54:51:08:51:df:96:f6:b8:03:3f: 6d:4b:50:d9:51:93:b4:dd:16:ac:64:3d:28:3b:05:23:2e:05: e1:70:e9:93:13:b8:7e:a9:14:5e:e7:79:fe:9e:78:88:c6:36: 65:ca:f1:ec:cd:7c:95:43:44:d5:f5:e7:78:3f:85:be:7c:6d: 31:64:68:e5:4f:fb:0d:47:1b:18:d9:46:02:70:01:e1:9f:c2: a7:a6:77:30:ef:7a:12:dd:7c:2f:3b:fa:73:c1:db:a9:8e:6b: ce:df:2f:02:e4:00:16:32:65:e9:d5:86:a6:53:4b:b8:d1:74: 86:58:6e:34:d0:11:36:7c:c1:26:2d:a3:8b:cd:01:86:7b:09: cb:ee:7a:d7:08:72:62:dc:84:77:e1:45:66:2d:18:57:74:98: 06:4a:7e:03:5b:33:7d:87:af:0d:c5:7a:4a:21:fd:62:30:58: 99:04:0a:4a:23:bf:19:bb:0c:c3:f0:d2:2a:62:57:8e:fd:93: 51:b4:43:3a:86:2b:60:62:69:44:54:34:ec:b4:8c:4f:99:2a: 6c:1d:9c:9d:cd:2f:10:13:7d:79:26:21:7f:1c:95:4d:f7:34: 6e:2e:f1:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMfVBq6PIpoSOEayBpXV5M+C2P9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNjAzMDExNzU3MDlaFw0yNjAzMDQyMTM2MDlaMDMxMTAvBgNV BAMTKDA0NTg0MzUxNjVGNDNERDE0NDMwQkY4NjEzNkQzREQ5NzFFNDFGNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj6ZnPWbOv9g3563+F1sAc0oOH Qy7V2bYC6Vgl0BP7lIL8PGVAtkHW4bTmoGtkT3BXgwJehw7wr/tjA3FU854I3RaG 1jaI8jEYfX39DCzdlIJG/XjPu43XZJC32OFfLiwBMfhd+7SCBaW1NitnADlMwiGj WqHt6kc8X5z2dYuuzob2RldBSW7njgfDdUfDAhj3+1UNuGuEkfkTdZv7iQkDWm3M 6NgcLbUFTNAsvpLYis12scmG4hfV+I0DFAgDZyhZCvqVk7le+Ipx5vM+/f6hZVO3 yRRy8qisAqQYtHGGPy8Vehs0tmLQJKTjhuySOhoG8M5Ko9T7lhdJLRrBQknnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBFhDUWX0PdFEML+GE2092XHkH2IwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI3FWMDRHOKIoSM+L5uYyB4NRXJ03PHtyssa VFEIUd+W9rgDP21LUNlRk7TdFqxkPSg7BSMuBeFw6ZMTuH6pFF7nef6eeIjGNmXK 8ezNfJVDRNX153g/hb58bTFkaOVP+w1HGxjZRgJwAeGfwqemdzDvehLdfC87+nPB 26mOa87fLwLkABYyZenVhqZTS7jRdIZYbjTQETZ8wSYto4vNAYZ7CcvuetcIcmLc hHfhRWYtGFd0mAZKfgNbM32Hrw3Fekoh/WIwWJkECkojvxm7DMPw0ipiV479k1G0 QzqGK2BiaURUNOy0jE+ZKmwdnJ3NLxATfXkmIX8clU33NG4u8Vs= -----END CERTIFICATE-----Generated at Mon Mar 2 01:10:30 2026 by rpki-client