$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: a+wrAARGjA03LMmrhCaUGtJ/IDgTw1iJynkBzBzvzyw= Subject key identifier: 5D:BF:BF:D3:30:D8:14:6F:B4:4C:EA:14:4E:36:B7:34:49:72:66:1A Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 66D2AE2E10A3BC44AE97220BEE23A3943C438A5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 01F6 Signing time: Sat 23 Aug 2025 18:51:07 +0000 Manifest this update: Sat 23 Aug 2025 18:46:07 +0000 Manifest next update: Wed 27 Aug 2025 01:06:07 +0000 Files and hashes: 1: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: EqB+0R6CNDDGP4pA/duyQzzpkz++jdAYx2nr5kwZwJ0=) 2: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 3: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) 4: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 23:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d2:ae:2e:10:a3:bc:44:ae:97:22:0b:ee:23:a3:94:3c:43:8a:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Aug 23 18:46:07 2025 GMT Not After : Aug 27 01:06:07 2025 GMT Subject: CN=5DBFBFD330D8146FB44CEA144E36B7344972661A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:32:06:f6:fe:36:aa:df:17:06:65:ce:3a:40: 1e:8b:d7:a4:51:45:28:ae:8d:f8:7a:0c:c4:3b:6b: a9:2e:eb:4a:bf:0e:f9:53:7f:82:84:40:0c:0f:29: 25:a8:89:8b:7a:b5:f1:fb:5a:a1:5f:d0:62:55:8b: c9:b6:65:68:38:42:90:24:a0:82:40:4a:04:9d:6e: 30:f9:ed:e8:dc:ec:91:04:02:d6:f7:cf:26:47:bf: db:4c:0a:0f:6d:25:09:e7:4d:d0:99:bb:5e:fb:be: a2:36:95:61:da:df:6e:40:0c:1f:3a:84:f8:11:00: c1:56:9c:01:f3:b8:48:e2:cd:a8:5a:1d:31:10:94: 80:e9:1f:58:5e:35:27:91:9a:eb:d1:44:45:58:e4: 9e:62:48:0b:1f:e5:b5:ed:20:d5:73:c8:76:28:07: ef:b7:f4:52:dd:45:18:86:2e:f3:6a:46:b5:61:a6: 98:cb:87:41:21:00:d0:e3:68:db:0f:e0:56:a1:fd: 9b:6a:c6:88:fa:a5:26:bb:2a:76:d3:66:fc:9c:10: dc:e6:59:71:6c:ce:5a:73:fc:cf:7c:2e:08:43:b8: 83:b3:87:f4:0c:b8:1f:31:88:fd:1a:82:0e:a3:e0: eb:1b:3a:b8:f1:3f:28:26:a4:57:13:45:5e:b5:aa: 6c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BF:BF:D3:30:D8:14:6F:B4:4C:EA:14:4E:36:B7:34:49:72:66:1A X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b5:52:00:91:2b:7f:3f:12:68:93:3b:e3:83:44:b6:4b:e5: f5:7d:3a:1d:5e:f9:cc:6c:94:de:88:a1:34:f2:59:89:a1:34: 4a:d0:46:f4:d4:dd:5c:67:81:19:22:62:97:7a:e4:a0:47:fa: 71:c0:a5:b1:7f:c0:cb:84:cc:9d:fe:1a:b2:42:6d:02:f6:dc: 6f:bb:65:93:6f:e6:fc:49:33:e8:2e:54:af:df:f0:4f:fd:54: c5:d9:fb:3c:3e:70:b7:4f:24:01:9f:9c:ee:57:fb:28:25:53: 4d:85:dc:13:a8:52:c0:cc:6a:e3:dc:82:11:b6:af:a3:0e:03: 79:cb:b3:01:48:71:bb:1a:03:38:c1:a4:da:94:50:01:df:e6: 2a:fe:cb:8f:9e:c1:85:9e:7b:8c:5f:b1:54:46:d9:8e:15:52: 26:0b:51:7a:74:86:89:ee:78:75:ad:2c:70:a8:62:01:75:70: 91:5e:ba:0c:b5:18:dc:54:3e:a6:9d:23:bc:21:c9:75:8c:5f: b6:25:cc:b1:67:55:7e:95:07:4d:a9:5f:2d:37:80:ba:d5:ba: 3e:7d:15:8e:43:2d:78:1e:79:41:f6:94:3f:97:78:72:57:14: 19:9a:01:7d:7b:5c:83:57:ce:3f:4e:b3:98:c0:48:05:72:78: 0c:17:ec:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZtKuLhCjvESulyIL7iOjlDxDilwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA4MjMxODQ2MDdaFw0yNTA4MjcwMTA2MDdaMDMxMTAvBgNV BAMTKDVEQkZCRkQzMzBEODE0NkZCNDRDRUExNDRFMzZCNzM0NDk3MjY2MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Mgb2/jaq3xcGZc46QB6L16RR RSiujfh6DMQ7a6ku60q/DvlTf4KEQAwPKSWoiYt6tfH7WqFf0GJVi8m2ZWg4QpAk oIJASgSdbjD57ejc7JEEAtb3zyZHv9tMCg9tJQnnTdCZu177vqI2lWHa325ADB86 hPgRAMFWnAHzuEjizahaHTEQlIDpH1heNSeRmuvRREVY5J5iSAsf5bXtINVzyHYo B++39FLdRRiGLvNqRrVhppjLh0EhANDjaNsP4Fah/Ztqxoj6pSa7KnbTZvycENzm WXFszlpz/M98LghDuIOzh/QMuB8xiP0agg6j4OsbOrjxPygmpFcTRV61qmw9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXb+/0zDYFG+0TOoUTja3NElyZhowHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI+1UgCRK38/EmiTO+ODRLZL5fV9Oh1e+cxs lN6IoTTyWYmhNErQRvTU3VxngRkiYpd65KBH+nHApbF/wMuEzJ3+GrJCbQL23G+7 ZZNv5vxJM+guVK/f8E/9VMXZ+zw+cLdPJAGfnO5X+yglU02F3BOoUsDMauPcghG2 r6MOA3nLswFIcbsaAzjBpNqUUAHf5ir+y4+ewYWee4xfsVRG2Y4VUiYLUXp0honu eHWtLHCoYgF1cJFeugy1GNxUPqadI7whyXWMX7YlzLFnVX6VB02pXy03gLrVuj59 FY5DLXgeeUH2lD+XeHJXFBmaAX17XINXzj9Os5jASAVyeAwX7Nc= -----END CERTIFICATE-----Generated at Sat Aug 23 21:44:51 2025 by rpki-client