$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: o1pjekIP5w5qc+ohcQrRCFvZuuayXveWjRDcfMog85c= Subject key identifier: 53:8E:6D:8E:34:5D:CD:FA:4F:B5:F9:51:BF:C9:1C:BC:57:F6:10:94 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 61862C1152C619CC6806848E9820D67BF17F8DD4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04CD Signing time: Fri 22 Aug 2025 02:21:55 +0000 Manifest this update: Fri 22 Aug 2025 02:16:55 +0000 Manifest next update: Mon 25 Aug 2025 11:59:55 +0000 Files and hashes: 1: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 2: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 3: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 5: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: CzAxVxliFMvx9TxHLjPcEor0uic7P5tCvp9iT4wVQDU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:86:2c:11:52:c6:19:cc:68:06:84:8e:98:20:d6:7b:f1:7f:8d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Aug 22 02:16:55 2025 GMT Not After : Aug 25 11:59:55 2025 GMT Subject: CN=538E6D8E345DCDFA4FB5F951BFC91CBC57F61094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8f:e6:7e:a7:62:df:17:eb:43:e3:a5:94:ba: 96:ab:9a:e0:3a:e4:20:6d:b1:b2:f3:e8:d4:11:21: be:06:d7:ef:8c:bc:49:27:77:76:9a:2c:a5:52:fd: 97:2d:46:cd:0e:0f:cc:7a:05:8c:49:18:75:bd:10: 60:52:a2:ce:36:c1:16:4c:51:da:b7:b5:5f:ca:d7: c6:0e:fb:ea:19:6f:37:b6:6e:08:74:6a:2f:a6:a5: d8:1c:3b:06:30:3a:b1:22:03:7b:19:2e:79:97:64: 3c:3a:86:b7:d7:cb:84:dc:8b:7e:70:17:0b:9f:be: ea:df:38:c1:ec:d9:b2:10:4e:45:cb:1c:26:ae:ff: 23:b6:34:18:dd:ba:ed:50:b7:b4:8b:6d:e8:f8:7e: cb:e9:2c:dd:5b:04:d2:b0:1e:37:b3:f3:1e:cb:76: af:f0:ea:d9:da:42:db:48:94:e1:7b:f2:23:0d:20: 21:83:88:aa:5c:2b:c9:99:1d:d5:2e:06:82:ab:9d: 52:46:27:50:1b:9c:f2:28:8f:e8:73:1a:6c:45:b5: ad:e6:39:df:d0:d9:37:3b:e9:cd:90:6d:df:36:4e: e6:2a:f8:91:b7:0b:35:ad:38:b7:b7:46:60:a1:43: 86:8c:e3:b4:c0:87:f4:50:35:40:48:45:36:53:97: 15:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8E:6D:8E:34:5D:CD:FA:4F:B5:F9:51:BF:C9:1C:BC:57:F6:10:94 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:54:4e:70:37:2a:68:29:7b:af:4f:23:b7:0f:7e:2d:90:af: ef:86:89:60:51:05:1f:b3:b8:f6:4c:d4:44:67:d9:dd:2f:84: e8:63:7a:98:bc:a8:4b:5b:f3:ca:15:b3:50:f8:2e:13:06:82: b9:c5:fa:96:1c:0e:78:cc:a4:19:bd:73:fd:01:4c:49:cd:a3: cc:f8:9f:43:8d:b7:a7:e8:69:7e:54:0e:16:50:17:42:e8:9a: d5:b2:18:22:7e:15:c2:c0:13:63:5f:0d:fe:72:63:b4:7e:a1: a7:89:80:fd:d0:9f:44:47:67:48:16:87:fa:8e:4e:93:23:d3: 65:00:df:90:d2:7c:a7:fb:36:9e:16:8b:fb:be:79:0f:0f:61: 9b:e0:42:d0:68:14:15:63:d4:b3:11:5e:77:80:57:b4:51:52: 4f:e7:92:83:49:74:c4:9e:bd:f5:8f:7c:81:01:ba:50:f4:8f: 84:43:17:1f:95:0d:5c:72:2b:a4:ae:8d:66:c6:40:b3:2e:6d: 38:f2:24:c7:f1:02:2e:85:30:b0:c1:55:6b:71:6b:60:83:d5: 2d:87:65:ed:d4:dc:21:b6:f4:6b:d5:45:df:a9:39:e3:ec:89: 05:da:18:19:8f:c8:ab:9f:c8:27:f9:0b:2b:6d:f0:cb:49:0c: 74:fc:9d:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYYYsEVLGGcxoBoSOmCDWe/F/jdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA4MjIwMjE2NTVaFw0yNTA4MjUxMTU5NTVaMDMxMTAvBgNV BAMTKDUzOEU2RDhFMzQ1RENERkE0RkI1Rjk1MUJGQzkxQ0JDNTdGNjEwOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgj+Z+p2LfF+tD46WUuparmuA6 5CBtsbLz6NQRIb4G1++MvEknd3aaLKVS/ZctRs0OD8x6BYxJGHW9EGBSos42wRZM Udq3tV/K18YO++oZbze2bgh0ai+mpdgcOwYwOrEiA3sZLnmXZDw6hrfXy4Tci35w FwufvurfOMHs2bIQTkXLHCau/yO2NBjduu1Qt7SLbej4fsvpLN1bBNKwHjez8x7L dq/w6tnaQttIlOF78iMNICGDiKpcK8mZHdUuBoKrnVJGJ1AbnPIoj+hzGmxFta3m Od/Q2Tc76c2Qbd82TuYq+JG3CzWtOLe3RmChQ4aM47TAh/RQNUBIRTZTlxVTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUU45tjjRdzfpPtflRv8kcvFf2EJQwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJpUTnA3Kmgpe69PI7cPfi2Qr++GiWBRBR+z uPZM1ERn2d0vhOhjepi8qEtb88oVs1D4LhMGgrnF+pYcDnjMpBm9c/0BTEnNo8z4 n0ONt6foaX5UDhZQF0LomtWyGCJ+FcLAE2NfDf5yY7R+oaeJgP3Qn0RHZ0gWh/qO TpMj02UA35DSfKf7Np4Wi/u+eQ8PYZvgQtBoFBVj1LMRXneAV7RRUk/nkoNJdMSe vfWPfIEBulD0j4RDFx+VDVxyK6SujWbGQLMubTjyJMfxAi6FMLDBVWtxa2CD1S2H Ze3U3CG29GvVRd+pOePsiQXaGBmPyKufyCf5Cytt8MtJDHT8nQI= -----END CERTIFICATE-----Generated at Sat Aug 23 12:09:58 2025 by rpki-client