$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: HtkYUIlJLrs+HZNvfyo91ZqmetGtmSCG1MEtfXxCT9E= Subject key identifier: 37:F8:F2:04:C5:64:BA:37:F2:06:DA:E1:CA:12:99:14:F1:B8:C7:8D Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 7A18D1F00BE34BAA0B62A2C98ADBB9485804165E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 020F Signing time: Sun 19 Oct 2025 20:31:10 +0000 Manifest this update: Sun 19 Oct 2025 20:26:10 +0000 Manifest next update: Wed 22 Oct 2025 20:50:10 +0000 Files and hashes: 1: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 2: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) 3: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) 4: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: CYi0UuLGkT/ecQJ1vSdEe5R+oQjPZFDtgIdWBnVydY4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 20:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:18:d1:f0:0b:e3:4b:aa:0b:62:a2:c9:8a:db:b9:48:58:04:16:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Oct 19 20:26:10 2025 GMT Not After : Oct 22 20:50:10 2025 GMT Subject: CN=37F8F204C564BA37F206DAE1CA129914F1B8C78D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fb:56:a0:27:70:14:29:78:06:23:e1:f6:5b: b3:37:97:f7:dd:3e:d6:34:9b:68:f3:09:c7:06:74: 8b:06:a1:83:97:ff:de:40:0d:2c:9b:34:b0:98:6a: 86:cc:89:ee:ed:99:3a:1f:4e:8a:1e:b8:12:a0:b1: 12:66:4e:e9:d3:c5:e3:8b:f8:88:7d:04:f7:98:2e: 5b:a4:f4:60:82:ae:3a:69:62:89:00:fd:08:83:5c: c9:dd:61:ed:e1:ae:76:2f:e2:54:e1:23:a7:e9:9c: dc:6b:ee:cd:57:86:fb:a5:6c:aa:af:20:47:91:10: ae:1e:00:22:d3:a9:17:80:bb:8f:e2:da:a1:29:0f: 79:40:4e:91:2d:6d:01:c8:43:4b:9c:44:9b:4e:f7: 9f:a5:4f:70:73:35:2e:96:c4:a7:66:8f:74:dc:ed: 9e:5c:c0:c4:1a:31:93:7c:1c:be:2c:22:7c:bf:2b: 96:a3:fc:66:a3:21:77:e1:2b:f4:fe:82:ca:24:88: e7:c4:a8:76:31:e4:ec:1b:65:36:53:a4:c0:5a:f0: 6d:72:f9:72:8d:5d:fb:0f:97:73:36:11:61:bd:a9: 20:ae:e1:9b:18:1a:68:ba:71:41:60:c2:90:23:04: ab:6b:9a:6e:8e:a9:18:1e:10:cc:df:b8:a2:2e:73: 07:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F8:F2:04:C5:64:BA:37:F2:06:DA:E1:CA:12:99:14:F1:B8:C7:8D X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:14:69:35:57:5b:7a:5e:30:1c:fd:d8:5c:02:a1:f3:10:82: c0:a7:08:14:94:53:a5:d4:8d:ad:fa:6f:45:11:e7:86:38:8f: 93:f5:3d:02:46:30:d7:46:60:32:7c:54:49:1c:77:5b:ad:e7: 07:30:69:ac:ec:ff:5f:23:52:1c:64:72:66:2b:40:19:2d:20: d4:b9:ef:93:96:2f:62:f2:8d:dd:68:b3:b0:71:60:bc:66:46: c3:b2:71:b3:45:f8:cf:45:4a:2f:e5:a6:f3:20:db:28:08:41: f2:9d:9a:82:ed:01:f7:65:9f:f3:92:93:2d:03:55:e7:a4:64: b1:b7:dc:6d:00:2a:09:e7:92:2f:6d:81:1c:2e:98:0e:d4:aa: db:ce:60:4d:a7:e0:ae:61:92:2e:1b:0e:d6:1c:3f:35:8f:5a: 01:76:d7:99:61:4e:22:71:36:12:c1:af:4b:ad:14:91:56:86: 6a:0f:61:ad:4b:d7:b9:9c:14:09:79:fe:25:1d:28:1e:ee:37: 4d:6a:28:de:42:5c:1e:74:08:d7:74:e8:14:3c:b6:da:09:12: 56:51:d9:6c:5a:4d:0a:c6:3f:3d:aa:8b:1a:d2:52:f0:99:c2: 6c:32:f4:90:66:ec:ff:5a:0b:2c:4f:f6:2c:ce:85:01:1f:7b: 8b:c0:a4:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUehjR8AvjS6oLYqLJitu5SFgEFl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTEwMTkyMDI2MTBaFw0yNTEwMjIyMDUwMTBaMDMxMTAvBgNV BAMTKDM3RjhGMjA0QzU2NEJBMzdGMjA2REFFMUNBMTI5OTE0RjFCOEM3OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3+1agJ3AUKXgGI+H2W7M3l/fd PtY0m2jzCccGdIsGoYOX/95ADSybNLCYaobMie7tmTofTooeuBKgsRJmTunTxeOL +Ih9BPeYLluk9GCCrjppYokA/QiDXMndYe3hrnYv4lThI6fpnNxr7s1XhvulbKqv IEeREK4eACLTqReAu4/i2qEpD3lATpEtbQHIQ0ucRJtO95+lT3BzNS6WxKdmj3Tc 7Z5cwMQaMZN8HL4sIny/K5aj/GajIXfhK/T+gsokiOfEqHYx5OwbZTZTpMBa8G1y +XKNXfsPl3M2EWG9qSCu4ZsYGmi6cUFgwpAjBKtrmm6OqRgeEMzfuKIucwfzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUN/jyBMVkujfyBtrhyhKZFPG4x40wHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE0UaTVXW3peMBz92FwCofMQgsCnCBSUU6XU ja36b0UR54Y4j5P1PQJGMNdGYDJ8VEkcd1ut5wcwaazs/18jUhxkcmYrQBktINS5 75OWL2Lyjd1os7BxYLxmRsOycbNF+M9FSi/lpvMg2ygIQfKdmoLtAfdln/OSky0D VeekZLG33G0AKgnnki9tgRwumA7UqtvOYE2n4K5hki4bDtYcPzWPWgF215lhTiJx NhLBr0utFJFWhmoPYa1L17mcFAl5/iUdKB7uN01qKN5CXB50CNd06BQ8ttoJElZR 2WxaTQrGPz2qixrSUvCZwmwy9JBm7P9aCyxP9izOhQEfe4vApB4= -----END CERTIFICATE-----Generated at Mon Oct 20 09:20:04 2025 by rpki-client