$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: Q/tz4dcVRXPm7UT51lU8ORT5QwVIvp1bZaWVazLr3Mg= Subject key identifier: 51:51:9E:01:89:2A:24:2E:7F:14:23:C8:BF:2F:FA:4D:B0:1C:E8:ED Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 683B2E79A3B21BDEAC9F00A21E380200B146A620 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04E7 Signing time: Sun 19 Oct 2025 02:41:54 +0000 Manifest this update: Sun 19 Oct 2025 02:36:54 +0000 Manifest next update: Wed 22 Oct 2025 13:12:54 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 3: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 4: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: tatGt1M5Hu5Wz2J3P+rovwTRsIkpvuoK8t5HmOAeZtw=) 5: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 13:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:3b:2e:79:a3:b2:1b:de:ac:9f:00:a2:1e:38:02:00:b1:46:a6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Oct 19 02:36:54 2025 GMT Not After : Oct 22 13:12:54 2025 GMT Subject: CN=51519E01892A242E7F1423C8BF2FFA4DB01CE8ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5f:96:16:fb:72:73:06:27:f4:23:1a:17:4b: 66:b6:b8:fa:89:bb:3b:c9:ef:36:07:da:ba:e4:9d: dc:0e:08:f3:ad:fe:9d:65:8a:01:bf:ae:b5:54:e6: fc:24:3e:f9:b0:60:64:d4:1f:b1:0c:57:90:a3:11: 44:fe:05:31:5b:d1:8c:80:95:e7:d2:e0:63:6f:f3: 07:df:27:74:9c:c9:82:a6:b5:0a:99:73:25:43:b1: e7:0d:0a:48:a5:d0:83:19:2c:a9:ee:07:84:ac:8a: 30:5d:1d:ff:48:53:b6:3d:fa:b0:be:cd:1b:07:ab: 61:4e:07:18:db:b0:28:85:c8:5b:8f:93:38:c7:21: 6d:fb:f9:13:15:fa:6f:b7:f0:90:f7:a0:86:a5:b0: 59:a0:e5:4b:37:ff:cb:6c:71:a4:43:ff:87:c4:a8: 4e:d9:f1:7a:7b:51:b0:8f:b9:bf:2b:89:fa:9a:8c: 3a:bb:7e:3c:d4:2d:ba:58:93:95:80:2f:7e:7b:5e: 8a:01:28:82:94:fc:59:1c:31:09:59:16:fb:35:9e: 92:01:8f:63:9d:1c:5e:e8:b2:bb:82:74:4e:e7:3b: 6c:e3:fc:29:d8:4c:51:56:4d:86:d8:f9:c6:28:4b: ed:65:16:df:54:a6:51:0b:b7:cd:55:70:e0:20:44: c2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:51:9E:01:89:2A:24:2E:7F:14:23:C8:BF:2F:FA:4D:B0:1C:E8:ED X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:90:5a:6e:56:be:9d:cf:f3:51:fc:86:6b:df:b5:45:fa:d8: 8f:cc:17:92:c3:d5:95:f7:a7:89:62:5d:6c:6b:b2:1e:43:82: 3a:7f:bf:90:8a:65:0b:5c:1e:bc:74:a5:b1:91:cf:e0:9c:4c: f4:1e:e9:a5:90:dc:32:a0:43:fc:c5:66:73:6e:5e:d1:62:df: 10:98:cd:e4:0b:f4:8f:fb:d0:0f:c9:55:44:47:34:1a:5a:b6: 1a:1c:87:08:a7:29:33:d8:10:78:2b:0a:25:f8:31:5e:45:ef: 74:e6:12:0e:7d:6f:64:ec:52:26:46:8a:fe:31:d6:89:12:a6: ec:c8:35:ea:8e:17:e8:24:a4:ee:0c:e8:c8:0b:66:09:a0:7e: 0b:15:04:4a:cd:1e:bc:3a:6a:7b:47:6d:86:f5:4a:93:48:ce: d0:cf:64:f7:7b:df:ec:1c:3d:a0:9b:10:ca:27:8c:20:bd:37: d4:eb:ca:1c:03:60:db:19:2f:da:fc:5d:7d:78:73:6d:5c:d8: 0e:47:6e:38:fb:05:df:94:1d:cb:da:17:54:fd:33:93:13:78: 53:55:3c:25:8c:96:65:98:54:d2:54:7a:22:49:6c:10:27:20: 9a:44:8f:45:59:aa:f2:c9:54:39:ca:8e:a3:71:0d:39:58:32: 64:a8:4f:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaDsueaOyG96snwCiHjgCALFGpiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTEwMTkwMjM2NTRaFw0yNTEwMjIxMzEyNTRaMDMxMTAvBgNV BAMTKDUxNTE5RTAxODkyQTI0MkU3RjE0MjNDOEJGMkZGQTREQjAxQ0U4RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXX5YW+3JzBif0IxoXS2a2uPqJ uzvJ7zYH2rrkndwOCPOt/p1ligG/rrVU5vwkPvmwYGTUH7EMV5CjEUT+BTFb0YyA lefS4GNv8wffJ3ScyYKmtQqZcyVDsecNCkil0IMZLKnuB4SsijBdHf9IU7Y9+rC+ zRsHq2FOBxjbsCiFyFuPkzjHIW37+RMV+m+38JD3oIalsFmg5Us3/8tscaRD/4fE qE7Z8Xp7UbCPub8rifqajDq7fjzULbpYk5WAL357XooBKIKU/FkcMQlZFvs1npIB j2OdHF7osruCdE7nO2zj/CnYTFFWTYbY+cYoS+1lFt9UplELt81VcOAgRMKDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUVGeAYkqJC5/FCPIvy/6TbAc6O0wHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABmQWm5Wvp3P81H8hmvftUX62I/MF5LD1ZX3 p4liXWxrsh5Dgjp/v5CKZQtcHrx0pbGRz+CcTPQe6aWQ3DKgQ/zFZnNuXtFi3xCY zeQL9I/70A/JVURHNBpathochwinKTPYEHgrCiX4MV5F73TmEg59b2TsUiZGiv4x 1okSpuzINeqOF+gkpO4M6MgLZgmgfgsVBErNHrw6antHbYb1SpNIztDPZPd73+wc PaCbEMonjCC9N9TryhwDYNsZL9r8XX14c21c2A5Hbjj7Bd+UHcvaF1T9M5MTeFNV PCWMlmWYVNJUeiJJbBAnIJpEj0VZqvLJVDnKjqNxDTlYMmSoT4s= -----END CERTIFICATE-----Generated at Mon Oct 20 21:31:30 2025 by rpki-client