$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: DmJ+xaoiQyiV6vI8UraY1ByNlPxICADxTpvJMYQfMtY= Subject key identifier: 30:A5:3D:3C:EF:B2:99:0D:F0:D7:DC:33:D5:29:75:10:27:1D:2D:6D Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 557DE2622E8DA3D492CDDF7C3256E4503705BFF8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04C6 Signing time: Wed 06 Aug 2025 19:22:00 +0000 Manifest this update: Wed 06 Aug 2025 19:17:00 +0000 Manifest next update: Sun 10 Aug 2025 01:48:00 +0000 Files and hashes: 1: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 2: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: zQZVDMedDcnSx/8F/u0ESsuJMoQuFT2SMgToL1PcRyA=) 4: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 5: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 01:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7d:e2:62:2e:8d:a3:d4:92:cd:df:7c:32:56:e4:50:37:05:bf:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Aug 6 19:17:00 2025 GMT Not After : Aug 10 01:48:00 2025 GMT Subject: CN=30A53D3CEFB2990DF0D7DC33D5297510271D2D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fd:55:6f:0b:40:d8:8a:7a:d1:74:95:1a:ea: 55:be:70:1f:2a:af:83:77:c0:e1:2c:48:9e:e5:a0: fc:21:39:5b:6c:5d:3d:70:d7:00:04:e1:be:64:be: 63:04:f0:8b:42:60:c7:2f:4d:bb:4b:88:fc:2c:f5: eb:73:83:15:35:e4:54:58:5b:76:43:01:ac:91:bb: 70:2b:db:78:05:17:45:f2:51:2d:9d:80:66:e9:68: 8f:5b:59:b6:f0:32:9d:b9:69:58:c0:6a:4d:77:f9: a1:a6:67:fe:75:37:ce:15:c0:96:ec:d3:de:5d:92: 39:77:f3:65:9b:18:8a:30:98:87:93:17:41:56:84: a7:d3:bf:29:5f:32:42:a7:dd:e1:5d:83:4f:c1:6b: 79:20:4b:91:f5:e2:57:40:e3:7a:0b:4d:f5:06:7f: be:2c:61:63:37:97:04:67:4f:aa:16:23:ae:9b:cf: 1f:fb:e2:63:1b:93:c4:87:a3:3f:e3:36:86:63:88: b3:05:88:24:10:8f:82:e2:b2:2b:f1:20:41:bb:24: a3:b3:52:71:8c:12:9b:21:ea:46:0e:2e:7a:f9:fe: 88:30:8c:10:81:f4:55:fe:a7:47:51:0a:fc:f5:8b: f2:6a:08:02:af:fd:a1:f6:c2:4b:61:30:fd:c1:27: 84:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A5:3D:3C:EF:B2:99:0D:F0:D7:DC:33:D5:29:75:10:27:1D:2D:6D X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4b:06:6e:be:8a:45:f7:4d:8e:da:7f:48:c7:54:3f:22:fa: 48:52:9a:22:95:0d:c6:a0:d3:e7:a5:d7:01:1a:9e:98:cd:5f: 15:fc:22:09:b8:22:30:ba:71:8e:16:72:9b:0b:a8:72:3c:26: 50:ea:d2:f9:7d:d8:b7:c9:06:b4:9f:c6:18:90:42:93:b7:3b: 77:0e:62:93:15:6c:6a:7c:16:4a:69:b7:79:52:19:09:bf:48: c7:80:6f:3a:2e:bd:68:9b:58:c7:47:83:75:47:b5:26:b5:99: 6c:24:89:0e:2c:f5:2f:b1:5e:95:06:7c:6a:b2:ff:a7:f3:4e: 61:b3:e1:92:d3:9e:ae:87:23:bf:a8:cf:6a:cb:1b:99:68:d9: e7:fd:3e:7f:46:d1:50:b4:91:53:26:7a:c1:13:fb:70:5e:f1: c9:72:10:6c:30:d2:22:21:dd:c7:a2:34:2f:5f:0c:98:fa:73: 6a:52:e4:bc:33:bb:ee:3d:48:cf:87:ad:ae:99:63:54:50:83: fe:d7:c2:e1:43:d5:4b:62:0d:9f:dd:63:43:e9:63:3f:a8:b9: 49:1a:a7:27:33:d0:5b:de:59:ff:61:63:0b:f9:00:02:81:3c: f2:80:8c:da:95:4b:02:d8:d8:74:cb:2d:a7:b7:3c:f7:e6:dd: 3c:98:e6:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVX3iYi6No9SSzd98MlbkUDcFv/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA4MDYxOTE3MDBaFw0yNTA4MTAwMTQ4MDBaMDMxMTAvBgNV BAMTKDMwQTUzRDNDRUZCMjk5MERGMEQ3REMzM0Q1Mjk3NTEwMjcxRDJENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ/VVvC0DYinrRdJUa6lW+cB8q r4N3wOEsSJ7loPwhOVtsXT1w1wAE4b5kvmME8ItCYMcvTbtLiPws9etzgxU15FRY W3ZDAayRu3Ar23gFF0XyUS2dgGbpaI9bWbbwMp25aVjAak13+aGmZ/51N84VwJbs 095dkjl382WbGIowmIeTF0FWhKfTvylfMkKn3eFdg0/Ba3kgS5H14ldA43oLTfUG f74sYWM3lwRnT6oWI66bzx/74mMbk8SHoz/jNoZjiLMFiCQQj4LisivxIEG7JKOz UnGMEpsh6kYOLnr5/ogwjBCB9FX+p0dRCvz1i/JqCAKv/aH2wkthMP3BJ4QFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMKU9PO+ymQ3w19wz1Sl1ECcdLW0wHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAApLBm6+ikX3TY7af0jHVD8i+khSmiKVDcag 0+el1wEanpjNXxX8Igm4IjC6cY4WcpsLqHI8JlDq0vl92LfJBrSfxhiQQpO3O3cO YpMVbGp8Fkppt3lSGQm/SMeAbzouvWibWMdHg3VHtSa1mWwkiQ4s9S+xXpUGfGqy /6fzTmGz4ZLTnq6HI7+oz2rLG5lo2ef9Pn9G0VC0kVMmesET+3Be8clyEGww0iIh 3ceiNC9fDJj6c2pS5Lwzu+49SM+Hra6ZY1RQg/7XwuFD1UtiDZ/dY0PpYz+ouUka pycz0FveWf9hYwv5AAKBPPKAjNqVSwLY2HTLLae3PPfm3TyY5qU= -----END CERTIFICATE-----Generated at Thu Aug 7 04:25:08 2025 by rpki-client