$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: GxW9wwRcd2RZJ574+ndAFmpXH1jU/mfAYO+WNxsZ9Zs= Subject key identifier: 3C:54:DC:B1:D3:7E:70:D5:1A:CB:D8:33:B5:B7:FC:AF:51:3F:64:2A Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 61E7ED85CCCB571BA6175D5097ABCA2BE9472257 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 0255 Signing time: Tue 24 Mar 2026 12:41:16 +0000 Manifest this update: Tue 24 Mar 2026 12:36:16 +0000 Manifest next update: Fri 27 Mar 2026 17:01:16 +0000 Files and hashes: 1: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) 2: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: EIeLA0bMcwhQeKkxttQUgwQ+bZWpKqOiwkpVZdpsvNA=) 3: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 4: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 17:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e7:ed:85:cc:cb:57:1b:a6:17:5d:50:97:ab:ca:2b:e9:47:22:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Mar 24 12:36:16 2026 GMT Not After : Mar 27 17:01:16 2026 GMT Subject: CN=3C54DCB1D37E70D51ACBD833B5B7FCAF513F642A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:33:00:09:7d:f1:dd:0d:85:0a:b7:1d:4c:e0: 92:14:10:36:ac:e8:f3:c3:cd:f5:81:83:b5:3a:2c: 70:37:81:93:84:c8:f5:5d:3e:92:e0:a7:72:12:6f: e4:0c:e3:8d:91:20:19:25:f4:52:1b:c0:d3:ea:bc: 28:f2:22:fd:7b:b0:40:41:82:1b:8e:87:07:d7:20: 96:45:bf:00:34:1f:77:c3:a5:b4:b8:79:c5:75:90: 5a:ad:1a:c8:b2:f4:04:76:40:dc:89:3f:b6:2e:fb: 85:a9:91:26:c4:6f:38:d0:d9:01:b2:36:36:ea:75: 2a:5e:30:35:c6:9b:c4:1f:af:39:f6:6f:a5:ab:c8: 22:e2:4c:df:1a:4a:98:db:c9:cd:79:52:a9:0c:fc: 8c:e6:cd:c7:3b:50:77:a7:75:8a:e9:3d:97:6a:7e: d2:a3:fa:aa:ce:e9:99:40:19:5a:7d:49:64:e7:7c: 82:30:47:0f:ca:f1:d4:87:f0:cb:5e:7d:be:79:44: f6:16:c1:02:34:ce:9e:a3:d0:cf:07:2a:bd:f1:11: 7a:aa:cb:4a:10:6d:f8:45:bf:ca:8f:66:6d:ca:ca: e9:d0:07:15:5b:89:df:54:dc:c4:f7:93:44:36:34: b2:c7:57:5e:25:ec:ce:87:58:54:7f:29:e2:20:2d: be:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:54:DC:B1:D3:7E:70:D5:1A:CB:D8:33:B5:B7:FC:AF:51:3F:64:2A X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:99:3e:9d:8d:54:25:c8:71:e2:26:80:6c:75:90:43:56:65: 61:0f:3f:48:f4:f0:40:1c:fc:75:a1:e7:23:49:4e:d2:04:9c: 5a:42:05:83:23:ab:fa:fe:94:50:f4:a1:7e:1a:19:5d:06:34: 54:a6:db:48:dd:d9:f6:c7:9d:fd:ee:cb:81:77:1e:b3:b9:16: 4f:21:1f:0a:2e:70:6b:e3:fb:96:8a:66:d2:f0:0f:86:55:1d: e7:2b:41:a5:d1:15:44:c4:1f:ef:99:24:3c:f2:7c:30:7b:a7: 77:ba:6c:a6:da:d6:11:30:a5:e6:68:fa:ba:bd:de:9c:c6:2c: 59:9f:23:e2:48:f1:73:9e:24:cf:7e:4f:58:4f:44:00:68:5a: 88:05:77:1b:49:87:b0:f1:ac:b1:cf:6c:34:59:2e:0f:20:7c: 59:7f:f0:36:f3:94:70:60:d1:d0:6c:51:c5:42:d3:f6:e1:8f: b5:d8:f4:2b:a3:5d:81:34:0a:f8:f4:8a:50:85:08:d8:c3:8a: b5:e2:89:1c:48:ca:26:91:f5:60:ab:c9:39:df:0b:5e:24:02: fb:34:8d:32:af:9f:af:b0:64:8f:69:bb:87:df:60:ac:ab:b1: 3f:5d:7d:9c:ef:69:ae:c0:c2:fa:5e:a1:1f:cd:4a:57:30:54: 6d:37:bc:3c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYefthczLVxumF11Ql6vKK+lHIlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNjAzMjQxMjM2MTZaFw0yNjAzMjcxNzAxMTZaMDMxMTAvBgNV BAMTKDNDNTREQ0IxRDM3RTcwRDUxQUNCRDgzM0I1QjdGQ0FGNTEzRjY0MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeMwAJffHdDYUKtx1M4JIUEDas 6PPDzfWBg7U6LHA3gZOEyPVdPpLgp3ISb+QM442RIBkl9FIbwNPqvCjyIv17sEBB ghuOhwfXIJZFvwA0H3fDpbS4ecV1kFqtGsiy9AR2QNyJP7Yu+4WpkSbEbzjQ2QGy NjbqdSpeMDXGm8Qfrzn2b6WryCLiTN8aSpjbyc15UqkM/Izmzcc7UHendYrpPZdq ftKj+qrO6ZlAGVp9SWTnfIIwRw/K8dSH8Mtefb55RPYWwQI0zp6j0M8HKr3xEXqq y0oQbfhFv8qPZm3KyunQBxVbid9U3MT3k0Q2NLLHV14l7M6HWFR/KeIgLb4BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPFTcsdN+cNUay9gztbf8r1E/ZCowHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFuZPp2NVCXIceImgGx1kENWZWEPP0j08EAc /HWh5yNJTtIEnFpCBYMjq/r+lFD0oX4aGV0GNFSm20jd2fbHnf3uy4F3HrO5Fk8h HwoucGvj+5aKZtLwD4ZVHecrQaXRFUTEH++ZJDzyfDB7p3e6bKba1hEwpeZo+rq9 3pzGLFmfI+JI8XOeJM9+T1hPRABoWogFdxtJh7DxrLHPbDRZLg8gfFl/8DbzlHBg 0dBsUcVC0/bhj7XY9CujXYE0Cvj0ilCFCNjDirXiiRxIyiaR9WCryTnfC14kAvs0 jTKvn6+wZI9pu4ffYKyrsT9dfZzvaa7AwvpeoR/NSlcwVG03vDw= -----END CERTIFICATE-----Generated at Thu Mar 26 05:46:05 2026 by rpki-client