$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: 4xZw2V/KwUTAsUcnQkCbOWx6hPxaq1TY9qF78mLa9AU= Subject key identifier: F8:53:19:43:2A:4E:CA:D8:78:D3:81:4A:62:2C:B6:1D:4D:C1:B5:3E Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 792FACC2344EE47D06D0CEAF6FE4098DBFF8468B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 01DD Signing time: Sun 29 Jun 2025 00:11:05 +0000 Manifest this update: Sun 29 Jun 2025 00:06:05 +0000 Manifest next update: Wed 02 Jul 2025 06:22:05 +0000 Files and hashes: 1: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: mOeMNdSXIouJLXdg2H2KNR/lETkTVaMFt6gn5NaH74s=) 2: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: ZHzUIRy4nZYVajGdct7Oorl4xz1bGegJThKCS1yBqbI=) 3: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: 7FuD52djB8G3nP6MjLi+Li8CsOmeQaboGGhULdV1X6o=) 4: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: lEs/WKd2HcYEye3FJfKRh1W7qOC7B+EUp+9m2m8vd7c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 06:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2f:ac:c2:34:4e:e4:7d:06:d0:ce:af:6f:e4:09:8d:bf:f8:46:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Jun 29 00:06:05 2025 GMT Not After : Jul 2 06:22:05 2025 GMT Subject: CN=F85319432A4ECAD878D3814A622CB61D4DC1B53E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:e2:aa:55:f0:23:84:2c:16:10:6c:ba:d3: 14:79:16:b7:d8:ae:4a:03:cc:19:69:be:9f:60:7d: b5:c2:1e:e2:5d:e4:2c:1f:99:1f:da:d2:d6:f7:0d: 48:b4:c9:a1:8d:d0:76:83:db:8d:d5:3d:3f:e0:17: f3:53:bc:20:11:ca:1d:33:89:f7:fb:3f:0a:90:5c: d5:f1:35:b4:01:90:5a:32:2c:b3:fc:ca:81:6e:bc: f6:01:b8:73:21:53:31:5b:f6:c7:c3:71:35:a1:9c: 2a:bf:9b:98:34:9e:d7:78:95:98:c8:0f:52:dc:93: 6d:1d:be:0b:7d:10:ae:ee:a3:f9:f0:8d:64:13:b4: 7b:b7:dd:77:ac:f8:15:8d:dd:60:44:3a:9e:9b:44: b7:4c:04:4c:6e:97:ec:59:9d:db:44:ec:bc:66:a3: 9e:ae:a9:0e:68:30:28:ef:f8:11:8d:0f:ba:3b:28: 58:79:c2:0c:ca:aa:8b:fd:d9:f9:95:47:2a:6b:5e: a3:98:a4:bb:1e:e5:83:e9:b4:2c:83:92:81:9d:68: 20:c3:69:e3:71:81:50:08:d5:aa:88:d2:27:22:bf: f6:8a:f5:e7:08:e4:31:04:da:18:ac:e1:1f:09:ef: 55:53:76:a5:f8:52:a9:a6:d5:61:76:bf:0d:78:b9: 28:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:53:19:43:2A:4E:CA:D8:78:D3:81:4A:62:2C:B6:1D:4D:C1:B5:3E X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:cd:b8:e6:26:9f:f0:05:2d:45:c3:7a:73:80:76:60:8d:8c: 8c:5d:48:21:17:0d:22:f8:73:a4:7c:96:62:ff:c6:bd:36:16: 47:02:4e:17:b5:cd:2e:68:ea:4b:35:6d:0a:ce:1c:a8:29:1d: dd:06:fa:e4:d8:e8:31:54:64:c7:f7:5e:e5:41:8b:24:37:e3: b4:3e:32:ae:ff:02:2d:95:33:0b:a9:69:88:6e:14:0f:59:e4: 70:e0:8d:8c:37:c9:3e:35:5b:0b:17:32:76:e8:03:8d:b1:4d: 61:56:03:24:de:f4:72:6c:6d:9b:bc:7f:a6:71:31:52:df:80: c1:f5:b3:01:71:96:ac:fb:df:75:7d:ed:ab:81:85:41:a4:3f: bb:52:2b:2f:65:ea:e2:7e:19:37:29:1c:62:76:fd:e2:54:49: c0:0d:ef:fb:ba:b9:b6:92:e5:cb:ca:48:63:f9:80:5b:9b:99: 5b:69:75:8d:b4:d2:24:bd:99:9d:3c:ea:82:35:e5:eb:9a:11: a9:4b:14:58:72:a4:d8:bf:be:00:20:1c:ec:9a:b3:85:7f:7e: 4f:08:e6:5f:3b:3f:29:76:3c:84:a2:a0:bc:43:fe:a8:35:bd: a0:05:7a:16:6f:d6:b5:cf:be:cf:84:64:6f:34:3e:4d:d7:78: 91:09:0a:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeS+swjRO5H0G0M6vb+QJjb/4RoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTA2MjkwMDA2MDVaFw0yNTA3MDIwNjIyMDVaMDMxMTAvBgNV BAMTKEY4NTMxOTQzMkE0RUNBRDg3OEQzODE0QTYyMkNCNjFENERDMUI1M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13uKqVfAjhCwWEGy60xR5FrfY rkoDzBlpvp9gfbXCHuJd5CwfmR/a0tb3DUi0yaGN0HaD243VPT/gF/NTvCARyh0z iff7PwqQXNXxNbQBkFoyLLP8yoFuvPYBuHMhUzFb9sfDcTWhnCq/m5g0ntd4lZjI D1Lck20dvgt9EK7uo/nwjWQTtHu33Xes+BWN3WBEOp6bRLdMBExul+xZndtE7Lxm o56uqQ5oMCjv+BGND7o7KFh5wgzKqov92fmVRyprXqOYpLse5YPptCyDkoGdaCDD aeNxgVAI1aqI0iciv/aK9ecI5DEE2his4R8J71VTdqX4Uqmm1WF2vw14uSi7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+FMZQypOyth404FKYiy2HU3BtT4wHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADjNuOYmn/AFLUXDenOAdmCNjIxdSCEXDSL4 c6R8lmL/xr02FkcCThe1zS5o6ks1bQrOHKgpHd0G+uTY6DFUZMf3XuVBiyQ347Q+ Mq7/Ai2VMwupaYhuFA9Z5HDgjYw3yT41WwsXMnboA42xTWFWAyTe9HJsbZu8f6Zx MVLfgMH1swFxlqz733V97auBhUGkP7tSKy9l6uJ+GTcpHGJ2/eJUScAN7/u6ubaS 5cvKSGP5gFubmVtpdY200iS9mZ086oI15euaEalLFFhypNi/vgAgHOyas4V/fk8I 5l87Pyl2PISioLxD/qg1vaAFehZv1rXPvs+EZG80Pk3XeJEJCnQ= -----END CERTIFICATE-----Generated at Sun Jun 29 21:33:39 2025 by rpki-client