$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: NfUYX+L/7pNDEqjA4aWaJraMZTXeoRrIVB4UdkkpsoE= Subject key identifier: 98:0B:96:E7:54:C8:AA:32:5D:C8:2D:A9:28:15:73:A9:5F:71:98:2D Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 0FCEFE52E44FCD37E9F015E00F54F8B18BE5E9F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04B4 Signing time: Mon 30 Jun 2025 04:21:55 +0000 Manifest this update: Mon 30 Jun 2025 04:16:55 +0000 Manifest next update: Thu 03 Jul 2025 05:38:55 +0000 Files and hashes: 1: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 2: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) 3: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 4: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: 8Zr4WMu2wme0yyap3aQfDAC9zhexFlruVQ/XNqTrR+0=) 5: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 05:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ce:fe:52:e4:4f:cd:37:e9:f0:15:e0:0f:54:f8:b1:8b:e5:e9:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jun 30 04:16:55 2025 GMT Not After : Jul 3 05:38:55 2025 GMT Subject: CN=980B96E754C8AA325DC82DA9281573A95F71982D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:37:c7:8d:e4:8d:3e:53:cb:6a:93:ae:f0:18: 5d:a2:bc:1a:d1:a3:1d:32:6f:df:d5:38:6b:ab:01: d7:be:81:d6:67:e3:de:78:44:13:5f:1b:12:8d:ce: 82:0e:08:71:89:25:f0:2f:71:47:de:1e:63:25:5b: 65:9a:df:a7:9f:9b:8d:99:df:b3:92:87:db:3d:bd: f3:e7:a1:7d:70:e4:e0:a6:84:56:3b:63:cd:cd:31: 0b:ad:32:05:22:ef:7d:d9:24:5d:37:11:c5:fe:a1: 31:24:4f:e6:34:db:3e:3d:90:a9:3e:38:35:4e:df: cd:6e:a7:da:ed:19:44:a4:a5:af:59:2d:b4:8e:e5: dc:57:7e:b8:46:64:cb:9d:d4:77:a5:b4:fd:79:af: 5a:78:e1:26:da:4e:07:c4:39:e8:11:b2:b0:c0:97: 91:4b:a2:cb:50:75:70:bc:d3:4d:ee:1a:5a:48:5f: 07:9d:f7:0e:74:5f:19:a1:91:8b:f9:4f:a6:41:7e: c1:13:cd:51:e5:5c:32:a6:4f:07:95:29:99:0c:15: 41:ab:18:d6:6c:2c:2d:62:23:47:c9:e1:c0:3e:0d: 65:54:5f:69:ef:1e:ef:62:e7:b9:7b:37:a7:ec:24: a0:b9:3c:61:7e:15:e9:3c:6b:75:0d:5d:01:a9:ae: b1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:0B:96:E7:54:C8:AA:32:5D:C8:2D:A9:28:15:73:A9:5F:71:98:2D X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:92:79:71:7d:b2:4c:f2:6b:13:0d:9e:93:14:ba:ea:92:70: c5:4b:32:e2:87:50:b8:e9:89:21:e8:d1:52:27:13:0d:6f:de: 31:12:4c:f5:93:58:7a:db:de:c9:f3:2d:46:45:38:de:27:25: c6:4c:7b:68:6f:85:df:b8:e9:b6:9a:6a:21:34:e4:c1:4f:61: f0:b4:5f:fc:89:f2:24:33:d2:88:0c:d8:43:14:43:0c:21:a6: 47:95:db:10:10:96:45:0d:b3:4a:34:22:95:cf:27:9b:24:9d: 87:a4:1c:9d:c1:42:a8:99:97:1e:01:8e:a7:4b:2f:c2:32:89: 9b:d4:6d:bf:1d:b8:8f:24:fd:73:7d:8e:94:6f:b4:12:c4:25: 14:09:33:57:62:0b:fb:9b:aa:d5:1f:0f:83:2a:e5:27:64:ad: 9e:18:23:6c:a2:44:9c:49:f7:e1:ba:91:a4:6e:e5:ae:17:66: 57:a1:fd:90:ef:f6:9e:58:83:6a:c8:c7:f5:52:aa:20:a0:4b: 4e:24:6e:3a:7b:6c:30:1d:5a:fa:c1:e3:71:95:e4:ad:9d:dc: cb:f7:7e:94:71:d0:ce:5c:ed:38:f3:00:bf:60:0b:3d:af:03: 72:61:89:20:5f:d4:1e:67:90:94:17:98:98:d4:73:b4:c4:4e: 61:08:4a:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD87+UuRPzTfp8BXgD1T4sYvl6fQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTA2MzAwNDE2NTVaFw0yNTA3MDMwNTM4NTVaMDMxMTAvBgNV BAMTKDk4MEI5NkU3NTRDOEFBMzI1REM4MkRBOTI4MTU3M0E5NUY3MTk4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjN8eN5I0+U8tqk67wGF2ivBrR ox0yb9/VOGurAde+gdZn4954RBNfGxKNzoIOCHGJJfAvcUfeHmMlW2Wa36efm42Z 37OSh9s9vfPnoX1w5OCmhFY7Y83NMQutMgUi733ZJF03EcX+oTEkT+Y02z49kKk+ ODVO381up9rtGUSkpa9ZLbSO5dxXfrhGZMud1HeltP15r1p44SbaTgfEOegRsrDA l5FLostQdXC8003uGlpIXwed9w50XxmhkYv5T6ZBfsETzVHlXDKmTweVKZkMFUGr GNZsLC1iI0fJ4cA+DWVUX2nvHu9i57l7N6fsJKC5PGF+Fek8a3UNXQGprrEtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmAuW51TIqjJdyC2pKBVzqV9xmC0wHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAmSeXF9skzyaxMNnpMUuuqScMVLMuKHULjp iSHo0VInEw1v3jESTPWTWHrb3snzLUZFON4nJcZMe2hvhd+46baaaiE05MFPYfC0 X/yJ8iQz0ogM2EMUQwwhpkeV2xAQlkUNs0o0IpXPJ5sknYekHJ3BQqiZlx4BjqdL L8IyiZvUbb8duI8k/XN9jpRvtBLEJRQJM1diC/ubqtUfD4Mq5SdkrZ4YI2yiRJxJ 9+G6kaRu5a4XZleh/ZDv9p5Yg2rIx/VSqiCgS04kbjp7bDAdWvrB43GV5K2d3Mv3 fpRx0M5c7TjzAL9gCz2vA3JhiSBf1B5nkJQXmJjUc7TETmEISjA= -----END CERTIFICATE-----Generated at Mon Jun 30 18:52:50 2025 by rpki-client