$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: dkoe1RiwTEHyiR4hnGDIP+sIb3ELNyldozcIvnNDaao= Subject key identifier: 9E:10:0E:8B:67:56:7E:8B:70:8B:1F:5C:7C:A8:43:9C:47:DE:3B:35 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 19BAB248645B1912BEEE0502F618406837A2FD94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 049C Signing time: Thu 08 May 2025 04:31:53 +0000 Manifest this update: Thu 08 May 2025 04:26:53 +0000 Manifest next update: Sun 11 May 2025 06:11:53 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: dhjE/vQ2aSTQaDySCqmTd3Fx39c+tJqho0FyeitIjTU=) 4: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 5: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ba:b2:48:64:5b:19:12:be:ee:05:02:f6:18:40:68:37:a2:fd:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: May 8 04:26:53 2025 GMT Not After : May 11 06:11:53 2025 GMT Subject: CN=9E100E8B67567E8B708B1F5C7CA8439C47DE3B35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:16:b9:f7:ae:46:f2:eb:ed:67:9a:f2:55:36: ac:33:89:ef:2b:f3:99:6d:d7:dc:4e:fa:c1:4b:30: 33:74:ab:84:08:82:af:a2:20:39:60:3f:3e:83:a2: 4c:04:28:3a:c3:5c:cd:db:78:63:6b:05:9b:a8:d4: 6a:72:dc:2d:eb:aa:16:27:0b:c1:d6:1e:7e:b0:4e: 97:00:30:ce:3f:ac:25:d2:52:70:df:50:76:5d:a1: 99:6a:f9:d6:7a:51:d9:53:11:93:5e:f2:66:0f:4e: e9:c7:df:46:43:59:24:c9:95:9e:c1:b2:de:13:90: 0c:7d:cf:ad:22:b6:d0:23:65:f2:40:e4:7a:64:4e: fc:f6:af:4b:0a:72:1e:7f:ef:ee:14:c0:63:a6:aa: 6f:f8:71:59:cc:24:0c:34:e9:65:ac:89:2e:a2:70: 85:4a:a4:61:44:1e:13:ab:fd:e8:c5:0d:34:25:bb: 1d:9a:d1:4c:b0:0e:4e:00:49:43:fb:92:7c:64:be: e9:ea:dc:a6:2c:ef:51:be:9b:6d:6d:a2:eb:35:42: d0:75:88:bb:02:c6:c2:24:f8:6e:4e:90:e4:cc:fc: 23:98:f6:22:61:fc:0d:b4:84:b7:74:ef:03:1e:d3: b8:0a:86:d9:c2:05:de:f2:e3:28:e5:86:dd:bf:f2: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:10:0E:8B:67:56:7E:8B:70:8B:1F:5C:7C:A8:43:9C:47:DE:3B:35 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:b7:70:e8:1e:c3:d4:38:a5:55:ad:f7:24:b4:28:d2:77:28: 04:16:ec:59:17:c5:43:20:cc:bf:4c:b2:fd:15:58:e0:0e:e2: 43:9e:db:ff:4a:02:a0:75:34:7d:e7:8e:56:60:41:58:b1:57: 1b:13:d1:71:de:89:07:4c:0f:ca:54:b7:92:86:95:79:7d:ae: 4a:6e:7b:1d:79:98:4b:9e:1d:9b:01:9e:6a:ff:ee:82:83:07: 38:9b:77:8e:00:6b:b7:2a:d4:71:02:3e:34:9a:30:a6:4a:7b: 10:b5:d7:35:f9:b1:de:7b:52:98:9e:a1:3b:cc:52:d0:a6:80: ea:79:6e:84:e7:2d:c8:50:3f:30:24:31:45:5b:af:80:73:b3: b2:af:62:fd:ba:39:d0:4c:7a:df:1c:d9:06:8d:a6:82:d7:21: a4:95:4c:3e:75:84:64:84:76:2b:e8:7b:a2:46:8b:01:cd:d8: 19:5b:81:6d:04:5a:a3:1c:06:df:4b:67:39:36:aa:54:ab:91: 1b:87:97:92:ba:99:b5:e5:3f:92:bf:15:4c:05:6e:37:19:e1: b6:79:06:4b:59:72:e6:fe:73:7c:13:55:16:9d:8f:1d:3b:97: cf:42:01:20:1d:9f:f8:db:8b:15:ee:e5:4d:b4:1d:90:46:72: d3:a8:03:d9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGbqySGRbGRK+7gUC9hhAaDei/ZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA1MDgwNDI2NTNaFw0yNTA1MTEwNjExNTNaMDMxMTAvBgNV BAMTKDlFMTAwRThCNjc1NjdFOEI3MDhCMUY1QzdDQTg0MzlDNDdERTNCMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKFrn3rkby6+1nmvJVNqwzie8r 85lt19xO+sFLMDN0q4QIgq+iIDlgPz6DokwEKDrDXM3beGNrBZuo1Gpy3C3rqhYn C8HWHn6wTpcAMM4/rCXSUnDfUHZdoZlq+dZ6UdlTEZNe8mYPTunH30ZDWSTJlZ7B st4TkAx9z60ittAjZfJA5HpkTvz2r0sKch5/7+4UwGOmqm/4cVnMJAw06WWsiS6i cIVKpGFEHhOr/ejFDTQlux2a0UywDk4ASUP7knxkvunq3KYs71G+m21tous1QtB1 iLsCxsIk+G5OkOTM/COY9iJh/A20hLd07wMe07gKhtnCBd7y4yjlht2/8gsPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnhAOi2dWfotwix9cfKhDnEfeOzUwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEG3cOgew9Q4pVWt9yS0KNJ3KAQW7FkXxUMg zL9Msv0VWOAO4kOe2/9KAqB1NH3njlZgQVixVxsT0XHeiQdMD8pUt5KGlXl9rkpu ex15mEueHZsBnmr/7oKDBzibd44Aa7cq1HECPjSaMKZKexC11zX5sd57UpieoTvM UtCmgOp5boTnLchQPzAkMUVbr4Bzs7KvYv26OdBMet8c2QaNpoLXIaSVTD51hGSE divoe6JGiwHN2BlbgW0EWqMcBt9LZzk2qlSrkRuHl5K6mbXlP5K/FUwFbjcZ4bZ5 BktZcub+c3wTVRadjx07l89CASAdn/jbixXu5U20HZBGctOoA9k= -----END CERTIFICATE-----Generated at Fri May 9 08:38:29 2025 by rpki-client