$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: icgJwEbVXqq7v81M+Etqb5N0PFFpu8iihv14fKUeVuc= Subject key identifier: 5A:06:F5:E4:C5:FE:F7:B5:8F:C1:AB:B0:28:1F:71:7E:57:7A:3D:CF Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 7E0F14D053B3AFCA8ABB3C5937D4436262E309D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 052D Signing time: Wed 25 Mar 2026 17:42:09 +0000 Manifest this update: Wed 25 Mar 2026 17:37:09 +0000 Manifest next update: Sun 29 Mar 2026 05:37:09 +0000 Files and hashes: 1: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 3: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 4: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: G/GgE25p5wqWz+T1ImJhLblMpXTGtwP3pe3kluh6QZ0=) 5: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 05:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0f:14:d0:53:b3:af:ca:8a:bb:3c:59:37:d4:43:62:62:e3:09:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Mar 25 17:37:09 2026 GMT Not After : Mar 29 05:37:09 2026 GMT Subject: CN=5A06F5E4C5FEF7B58FC1ABB0281F717E577A3DCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:27:7c:4a:da:2c:8a:25:d4:f5:e5:8f:39: 7f:9a:3c:5c:86:51:bb:d8:d1:33:64:0f:d4:d1:ff: 17:dc:fc:0a:c5:b0:47:7b:17:53:54:58:cc:cb:d1: 67:4c:cf:bd:a2:47:6e:f4:15:72:72:e2:b5:7f:d7: e3:d4:a3:ee:3a:15:32:49:53:6c:e5:a3:67:5e:f5: 0e:cb:84:0d:d6:94:de:de:f0:f0:66:6b:3d:ab:e4: 0d:15:d9:23:92:d4:74:c2:d5:57:ed:72:10:43:da: 2d:7e:4b:a0:d6:39:f1:3b:11:84:b9:b9:65:d6:49: 13:36:a4:ba:95:2a:8b:27:68:80:9b:48:ef:72:a5: 8e:57:18:38:d6:01:3c:31:b9:cc:37:61:6d:27:c3: 0b:04:c6:2e:22:b3:c2:dd:63:b0:b3:f4:c6:fb:c3: 3e:35:c3:18:eb:f3:16:c3:6c:8e:b1:d6:3c:a9:5d: 06:f8:7b:fa:1f:39:3f:48:09:29:d0:58:dc:37:b3: 74:73:9d:58:bb:4c:3b:79:41:7f:a8:3c:1c:f5:90: c0:7d:9b:b9:68:01:54:5f:59:c8:4c:41:69:e9:47: d8:2d:7f:66:15:1b:fd:5d:26:48:b5:2d:91:84:51: f7:7a:6b:ea:32:84:f9:81:8d:5b:14:c6:4e:a6:20: f1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:06:F5:E4:C5:FE:F7:B5:8F:C1:AB:B0:28:1F:71:7E:57:7A:3D:CF X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:09:03:b8:1f:2f:7f:4f:36:07:2d:ec:de:14:72:38:47:25: ec:54:77:79:08:3c:d1:76:d0:4d:a5:5c:35:21:39:19:5d:41: 9e:a0:04:6f:1b:ee:13:a5:bc:33:a9:db:c9:16:cb:e5:13:4b: bc:0a:9d:19:ad:06:a8:36:f0:96:a0:eb:10:9f:fa:a1:04:4a: 81:c4:ef:63:d4:32:c8:36:cc:bf:61:d7:74:63:44:8b:f6:a8: f8:35:e7:c7:29:9e:25:04:f9:44:95:b2:0c:2d:d4:80:21:a9: d4:db:83:ed:15:f2:e9:2e:69:e5:4e:dd:60:7a:0a:f5:a0:3c: 1d:96:6b:73:ed:95:38:a9:76:af:a4:79:9e:ff:9c:34:a3:c9: d7:af:a3:4d:66:67:c3:c9:55:64:0e:6b:88:17:3e:65:78:d8: ab:30:d5:59:76:f8:9c:98:52:78:65:be:97:ad:e7:20:c5:9f: bc:c2:ea:bf:cd:e2:10:0b:b7:0f:2b:39:66:de:24:e2:c9:28: 5a:35:a0:f1:ab:f9:b2:3c:ba:76:f4:92:76:d0:9b:4b:77:bf: 61:d7:69:f1:cc:53:06:18:85:fb:a3:54:67:53:36:1b:6c:aa: cf:bf:db:af:1a:da:7b:6c:62:42:8d:0d:38:a3:18:4b:66:d0: 46:5a:3f:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfg8U0FOzr8qKuzxZN9RDYmLjCdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNjAzMjUxNzM3MDlaFw0yNjAzMjkwNTM3MDlaMDMxMTAvBgNV BAMTKDVBMDZGNUU0QzVGRUY3QjU4RkMxQUJCMDI4MUY3MTdFNTc3QTNEQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVid8StosiiXU9eWPOX+aPFyG UbvY0TNkD9TR/xfc/ArFsEd7F1NUWMzL0WdMz72iR270FXJy4rV/1+PUo+46FTJJ U2zlo2de9Q7LhA3WlN7e8PBmaz2r5A0V2SOS1HTC1VftchBD2i1+S6DWOfE7EYS5 uWXWSRM2pLqVKosnaICbSO9ypY5XGDjWATwxucw3YW0nwwsExi4is8LdY7Cz9Mb7 wz41wxjr8xbDbI6x1jypXQb4e/ofOT9ICSnQWNw3s3RznVi7TDt5QX+oPBz1kMB9 m7loAVRfWchMQWnpR9gtf2YVG/1dJki1LZGEUfd6a+oyhPmBjVsUxk6mIPETAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWgb15MX+97WPwauwKB9xfld6Pc8wHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC4JA7gfL39PNgct7N4UcjhHJexUd3kIPNF2 0E2lXDUhORldQZ6gBG8b7hOlvDOp28kWy+UTS7wKnRmtBqg28Jag6xCf+qEESoHE 72PUMsg2zL9h13RjRIv2qPg158cpniUE+USVsgwt1IAhqdTbg+0V8ukuaeVO3WB6 CvWgPB2Wa3PtlTipdq+keZ7/nDSjydevo01mZ8PJVWQOa4gXPmV42Ksw1Vl2+JyY Unhlvpet5yDFn7zC6r/N4hALtw8rOWbeJOLJKFo1oPGr+bI8unb0knbQm0t3v2HX afHMUwYYhfujVGdTNhtsqs+/268a2ntsYkKNDTijGEtm0EZaP5c= -----END CERTIFICATE-----Generated at Thu Mar 26 07:37:19 2026 by rpki-client