$ rpki-client -vvf repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft File: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft (raw, json) Hash identifier: aVYVBqjWQipG6XorHVf1YYGROuylZ2MIGeBCliPDoSY= Subject key identifier: 2C:D9:61:66:35:0A:DD:C4:FC:8A:4B:BB:A5:4D:56:39:3D:97:7E:0F Authority key identifier: 58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA Certificate issuer: /CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Certificate serial: 37D5E5FD19A3AD8D074A7379646ECBF1CD06BABC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft Manifest number: 0507 Signing time: Fri 22 Aug 2025 20:11:08 +0000 Manifest this update: Fri 22 Aug 2025 20:06:08 +0000 Manifest next update: Mon 25 Aug 2025 23:54:08 +0000 Files and hashes: 1: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl (hash: WbAw6h/bqLefHW09R/0+4+XM36NrMf31/nohqswV+q0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 23:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d5:e5:fd:19:a3:ad:8d:07:4a:73:79:64:6e:cb:f1:cd:06:ba:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Validity Not Before: Aug 22 20:06:08 2025 GMT Not After : Aug 25 23:54:08 2025 GMT Subject: CN=2CD96166350ADDC4FC8A4BBBA54D56393D977E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:10:22:f2:1a:8c:40:81:bf:09:5a:fe:4b:00: 29:fd:2b:ab:46:6d:20:49:80:20:6c:2e:ce:a8:90: 8b:a4:29:66:08:a3:ac:ea:3b:b4:17:f1:96:e8:2e: ab:5a:0a:7f:42:7f:ce:3c:f3:4f:c7:59:29:ec:ee: cc:ab:01:da:2c:4b:64:cf:ec:81:b8:42:3d:fa:4f: b6:54:e2:df:70:54:e7:75:4e:07:de:de:2e:a4:14: 08:48:27:3b:20:84:27:49:3d:00:7a:78:71:8b:f3: f3:de:97:2d:29:1f:47:63:d1:b4:20:3f:e7:b6:73: ed:0c:74:85:21:d7:7d:b6:cf:d3:0b:7f:c9:43:7d: f5:d7:2a:46:16:40:b6:70:fa:3f:41:86:8c:36:d0: b1:5b:bb:41:40:65:58:2f:4c:c8:b7:11:1b:37:6b: 8a:2d:40:66:b7:22:02:b3:ae:16:fd:3d:df:53:69: b3:47:8e:d8:30:71:9b:1c:d4:ee:95:4f:b6:0c:d7: bc:c3:ea:ef:50:48:98:89:29:48:a5:6a:ad:ec:43: 72:71:1b:a7:89:9e:a9:cb:a7:01:a9:e2:d7:98:cd: bd:ad:94:54:b9:6c:62:13:b0:19:11:77:1c:a5:d6: 6d:d2:09:5e:1a:2b:ce:79:9f:1c:ef:9a:1b:5e:60: 7f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D9:61:66:35:0A:DD:C4:FC:8A:4B:BB:A5:4D:56:39:3D:97:7E:0F X509v3 Authority Key Identifier: keyid:58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:de:1d:ec:e4:d4:17:41:47:19:c7:88:83:f3:19:8d:ce:21: 57:56:cd:5c:a0:cd:60:dc:d7:02:64:12:8c:1e:a2:70:78:fe: 56:9c:a8:44:ed:bb:e7:78:25:99:7d:e0:8d:e4:36:57:a6:27: ab:57:2b:f3:e2:44:16:36:20:18:78:1d:4a:61:e9:2f:17:d8: be:c1:89:cc:9c:4a:f6:6b:7f:34:c8:d3:29:d7:9a:c6:53:99: 29:bb:1f:1e:36:db:9f:75:0f:4d:b1:36:bc:86:8c:b5:41:da: 7f:da:f2:4c:33:c8:a3:27:a2:70:a1:9a:3d:1f:86:58:33:54: ee:3e:e1:ec:b1:cf:87:95:41:a1:9b:84:d4:d8:43:f8:59:ff: b9:91:99:d0:57:15:09:24:a2:d6:b1:eb:2d:a5:c0:c6:14:c3: f9:d8:41:b2:95:56:dd:65:2b:fe:f7:0f:3f:65:2e:85:e7:c1: 61:f0:cd:ca:05:b1:33:0d:63:31:04:9e:f6:03:d2:da:8d:e0: c9:fc:27:0f:04:9b:98:cf:01:a4:41:3e:d3:5b:06:01:9e:fb: 47:e7:63:7e:62:e3:27:fb:9f:f5:2a:8c:38:fb:4e:2d:64:50: 51:64:a1:70:49:16:a2:3b:6f:fa:27:33:14:09:63:87:c4:d1: 8b:c1:89:f4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN9Xl/RmjrY0HSnN5ZG7L8c0GurwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFC NjdENjFFQTAeFw0yNTA4MjIyMDA2MDhaFw0yNTA4MjUyMzU0MDhaMDMxMTAvBgNV BAMTKDJDRDk2MTY2MzUwQUREQzRGQzhBNEJCQkE1NEQ1NjM5M0Q5NzdFMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGECLyGoxAgb8JWv5LACn9K6tG bSBJgCBsLs6okIukKWYIo6zqO7QX8ZboLqtaCn9Cf84880/HWSns7syrAdosS2TP 7IG4Qj36T7ZU4t9wVOd1Tgfe3i6kFAhIJzsghCdJPQB6eHGL8/Pely0pH0dj0bQg P+e2c+0MdIUh1322z9MLf8lDffXXKkYWQLZw+j9Bhow20LFbu0FAZVgvTMi3ERs3 a4otQGa3IgKzrhb9Pd9TabNHjtgwcZsc1O6VT7YM17zD6u9QSJiJKUilaq3sQ3Jx G6eJnqnLpwGp4teYzb2tlFS5bGITsBkRdxyl1m3SCV4aK855nxzvmhteYH9FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULNlhZjUK3cT8iku7pU1WOT2Xfg8wHwYDVR0j BBgwFoAUWNfcUw87pKzQSIBiFw4VgbZ9YeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmZhM2EzOS1lMGVjLTRmYzEtOWI1NC0zNTNlMDdmMDA1ZGQvMC81OEQ3REM1MzBG M0JBNEFDRDA0ODgwNjIxNzBFMTU4MUI2N0Q2MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFCNjdE NjFFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODJmYTNhMzktZTBlYy00ZmMxLTli NTQtMzUzZTA3ZjAwNWRkLzAvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1 ODFCNjdENjFFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGHeHezk1BdBRxnHiIPzGY3OIVdWzVygzWDc 1wJkEoweonB4/lacqETtu+d4JZl94I3kNlemJ6tXK/PiRBY2IBh4HUph6S8X2L7B icycSvZrfzTI0ynXmsZTmSm7Hx422591D02xNryGjLVB2n/a8kwzyKMnonChmj0f hlgzVO4+4eyxz4eVQaGbhNTYQ/hZ/7mRmdBXFQkkotax6y2lwMYUw/nYQbKVVt1l K/73Dz9lLoXnwWHwzcoFsTMNYzEEnvYD0tqN4Mn8Jw8Em5jPAaRBPtNbBgGe+0fn Y35i4yf7n/UqjDj7Ti1kUFFkoXBJFqI7b/onMxQJY4fE0YvBifQ= -----END CERTIFICATE-----Generated at Sat Aug 23 10:37:00 2025 by rpki-client