$ rpki-client -vvf repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft File: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft (raw, json) Hash identifier: /38CWJQZ1fI3z9d/BtsYEcIb2srQEN8iFJWFXHKzfwE= Subject key identifier: 66:8B:5E:CD:BE:50:51:F6:8E:C1:D4:FF:04:09:99:EC:7E:7F:29:DC Authority key identifier: 58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA Certificate issuer: /CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Certificate serial: 28ED3FCC5FDAE15BC13A2E69AF234B2787340308 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft Manifest number: 04DA Signing time: Sun 11 May 2025 21:41:04 +0000 Manifest this update: Sun 11 May 2025 21:36:04 +0000 Manifest next update: Thu 15 May 2025 05:22:04 +0000 Files and hashes: 1: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl (hash: uTHN8mkkAn6AhCpa6DgjRS71UgLTKd913JR6rJeiYgI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ed:3f:cc:5f:da:e1:5b:c1:3a:2e:69:af:23:4b:27:87:34:03:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Validity Not Before: May 11 21:36:04 2025 GMT Not After : May 15 05:22:04 2025 GMT Subject: CN=668B5ECDBE5051F68EC1D4FF040999EC7E7F29DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5e:3f:75:7a:4d:9a:93:b1:83:ee:97:3c:0c: 96:94:02:88:28:89:f2:51:fd:48:1f:12:d3:3c:c8: 78:57:b8:96:e3:6f:14:94:80:4c:10:c3:b0:e4:47: db:30:b9:7e:47:0e:91:69:e2:44:b6:bb:4d:77:9d: 2a:e7:45:dc:ce:50:f8:72:37:6d:3f:d8:26:8a:7b: 32:10:2f:c8:31:9f:e7:8a:40:2e:35:cc:53:ff:72: 03:98:eb:d0:35:c0:a3:89:93:c0:ca:e2:e4:46:ac: 1e:d3:3d:5d:78:94:5c:0b:0a:36:1b:0b:b7:4c:15: 75:2c:26:75:df:aa:2a:d9:3e:da:c9:a9:d1:f0:51: 0e:86:cb:4e:1b:b0:8c:78:5a:e1:19:ca:9e:67:32: d0:3d:e8:61:dd:70:ca:ab:d5:e6:5b:34:93:46:c9: 78:20:c7:3b:ec:45:2d:2f:3e:bb:7f:87:b4:03:0e: 18:3c:a0:5c:6f:ee:9e:b7:82:8c:04:88:1d:27:61: 62:2f:ae:3b:df:e8:a5:cf:f7:0a:1c:79:a2:ae:35: a8:38:5c:16:70:95:d8:01:1f:f9:a7:1b:27:d4:a5: 84:eb:4c:6a:56:cb:fa:f1:df:3a:5c:e7:a7:a7:f1: 93:ff:7e:46:65:ad:0d:a1:c0:68:42:44:c9:90:04: 26:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8B:5E:CD:BE:50:51:F6:8E:C1:D4:FF:04:09:99:EC:7E:7F:29:DC X509v3 Authority Key Identifier: keyid:58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2e:86:2d:91:f3:d0:f8:9a:8e:be:cf:a0:ec:8f:f0:e1:da: fc:b9:26:7e:da:5f:8b:5c:8e:6f:6e:f5:22:a5:16:92:01:47: d0:27:f5:07:0e:73:a3:3d:4c:ee:9c:82:91:a5:c4:a3:5a:ea: cb:53:54:4a:e7:93:22:ac:ba:29:82:da:63:15:48:10:2d:ea: 02:05:fd:ba:66:2c:1c:f2:07:bf:15:bb:d6:de:1f:6a:5d:02: a9:ca:5f:30:47:52:aa:e5:c7:8d:fa:e0:cf:d6:58:56:b2:44: 12:4e:9b:36:a0:d5:8c:65:5a:e9:a5:3a:3b:1e:ff:8e:6e:69: fe:cc:69:35:1c:01:a4:c0:da:25:55:60:a0:f3:74:14:e8:20: e6:18:04:a2:9f:8e:ac:da:ba:34:49:0b:ec:5e:75:e6:d8:8f: da:13:c8:97:9d:d5:31:22:4c:c1:2d:8c:56:a3:fa:17:ec:82: 9f:27:53:81:47:df:e7:0f:6a:3d:9e:c5:50:e7:66:91:86:d8: e6:23:03:5a:1b:12:02:81:3d:e6:7a:15:fa:1a:ba:d2:8b:9c: cd:5e:4e:b7:ca:51:12:80:90:43:7f:79:84:99:61:c2:45:74: e6:c4:0a:ae:6a:f1:b1:06:05:ff:17:e0:29:57:a4:55:60:aa: e8:58:18:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKO0/zF/a4VvBOi5pryNLJ4c0AwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFC NjdENjFFQTAeFw0yNTA1MTEyMTM2MDRaFw0yNTA1MTUwNTIyMDRaMDMxMTAvBgNV BAMTKDY2OEI1RUNEQkU1MDUxRjY4RUMxRDRGRjA0MDk5OUVDN0U3RjI5REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjXj91ek2ak7GD7pc8DJaUAogo ifJR/UgfEtM8yHhXuJbjbxSUgEwQw7DkR9swuX5HDpFp4kS2u013nSrnRdzOUPhy N20/2CaKezIQL8gxn+eKQC41zFP/cgOY69A1wKOJk8DK4uRGrB7TPV14lFwLCjYb C7dMFXUsJnXfqirZPtrJqdHwUQ6Gy04bsIx4WuEZyp5nMtA96GHdcMqr1eZbNJNG yXggxzvsRS0vPrt/h7QDDhg8oFxv7p63gowEiB0nYWIvrjvf6KXP9woceaKuNag4 XBZwldgBH/mnGyfUpYTrTGpWy/rx3zpc56en8ZP/fkZlrQ2hwGhCRMmQBCbDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZotezb5QUfaOwdT/BAmZ7H5/KdwwHwYDVR0j BBgwFoAUWNfcUw87pKzQSIBiFw4VgbZ9YeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmZhM2EzOS1lMGVjLTRmYzEtOWI1NC0zNTNlMDdmMDA1ZGQvMC81OEQ3REM1MzBG M0JBNEFDRDA0ODgwNjIxNzBFMTU4MUI2N0Q2MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFCNjdE NjFFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODJmYTNhMzktZTBlYy00ZmMxLTli NTQtMzUzZTA3ZjAwNWRkLzAvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1 ODFCNjdENjFFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD0uhi2R89D4mo6+z6Dsj/Dh2vy5Jn7aX4tc jm9u9SKlFpIBR9An9QcOc6M9TO6cgpGlxKNa6stTVErnkyKsuimC2mMVSBAt6gIF /bpmLBzyB78Vu9beH2pdAqnKXzBHUqrlx4364M/WWFayRBJOmzag1YxlWumlOjse /45uaf7MaTUcAaTA2iVVYKDzdBToIOYYBKKfjqzaujRJC+xedebYj9oTyJed1TEi TMEtjFaj+hfsgp8nU4FH3+cPaj2exVDnZpGG2OYjA1obEgKBPeZ6FfoautKLnM1e TrfKURKAkEN/eYSZYcJFdObECq5q8bEGBf8X4ClXpFVgquhYGBY= -----END CERTIFICATE-----Generated at Mon May 12 07:23:45 2025 by rpki-client