$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft File: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft (raw, json) Hash identifier: KIhMqBL2SNe0J3rwgd1hDi5LLZFhqFe9nAkzCRfJDBs= Subject key identifier: 34:86:AE:84:0A:C9:CA:2D:BC:FB:FC:F3:D8:82:89:FE:D8:A9:FA:FC Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 54700F3B3251CA3256B0866DA9154322256CB2C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft Manifest number: 04E0 Signing time: Mon 20 Oct 2025 08:41:24 +0000 Manifest this update: Mon 20 Oct 2025 08:36:24 +0000 Manifest next update: Thu 23 Oct 2025 12:23:24 +0000 Files and hashes: 1: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl (hash: jxbBGiqaVzNTTJF9WtfEuFAok+IfTM1K5xTZlIHAmr4=) 2: 3130332e3133382e3132372e302f32342d3234203d3e20313338383531.roa (hash: 8uluz9oQUOC33A/yP5J6qEWwFa5BN6LUXooNJ8KA6Pw=) 3: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (hash: z4oYCZWDew+XBZrkivYPBIEa8esU/2et9t2LDZPakkY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 12:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:70:0f:3b:32:51:ca:32:56:b0:86:6d:a9:15:43:22:25:6c:b2:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Oct 20 08:36:24 2025 GMT Not After : Oct 23 12:23:24 2025 GMT Subject: CN=3486AE840AC9CA2DBCFBFCF3D88289FED8A9FAFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:8f:07:dd:51:ed:c6:6d:e8:d9:cb:76:85: 32:36:31:7c:b8:6c:b1:7a:5a:c1:de:83:5a:97:1a: cf:06:68:07:1e:82:b4:d2:28:90:36:a6:dd:0e:fa: 54:e2:d2:fb:8b:2d:dd:06:64:13:1f:e8:35:03:f7: 29:c9:43:d2:91:2d:4c:ed:76:cf:cc:df:05:7b:c0: 72:72:92:5d:c5:84:94:51:ba:47:79:26:9f:5f:f2: 87:fc:85:96:cb:e7:86:53:02:a3:b9:88:3c:1f:fb: 4f:b2:36:31:82:90:41:ac:e9:8c:7a:f0:53:bf:d0: 80:79:f2:6a:69:ab:57:df:74:75:2a:6e:61:33:07: 09:1f:46:f1:59:82:c2:09:84:55:4c:5d:17:82:10: 8e:18:f5:5a:0a:6e:a9:88:17:f5:ae:e9:68:eb:e8: 72:62:40:22:65:41:51:43:80:02:1d:cf:30:91:47: 83:39:d9:d7:fb:97:85:10:40:0e:c6:5d:c7:79:d1: 08:17:c7:f1:45:c8:56:87:35:c4:12:f8:89:a5:40: c6:0a:b6:88:b2:19:43:90:9f:f2:79:06:59:77:48: 09:19:67:84:0a:e7:fa:51:33:dd:ef:de:c4:89:ff: 67:5a:1b:cc:af:b6:1c:e7:4b:f0:2a:58:84:05:be: f9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:86:AE:84:0A:C9:CA:2D:BC:FB:FC:F3:D8:82:89:FE:D8:A9:FA:FC X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:0a:a6:26:97:e4:70:a3:95:19:26:f3:ca:c0:23:22:ab:7f: 60:18:3f:aa:e6:87:37:ae:02:d5:28:9a:6c:e7:36:ec:66:92: 9d:bf:10:21:f1:ca:da:5a:82:63:bf:30:84:55:fb:67:cc:26: 44:fb:9c:6c:0b:86:b8:35:ed:2b:57:ff:83:20:ce:c3:fb:16: 8e:a0:1f:f3:d0:d3:59:cb:c7:90:dd:6f:81:88:da:30:4c:f3: 67:a4:f7:32:ea:9b:cb:18:36:e5:52:99:a3:91:2b:60:b2:12: 31:b0:94:59:72:57:6c:7c:fb:ad:6c:c4:f0:d9:14:0e:a3:aa: 82:a1:93:73:4d:d7:68:c0:63:0b:79:7f:a3:cd:3f:6b:56:e3: cc:ba:71:6f:72:d2:ba:3b:07:27:8e:6b:62:93:bc:ae:67:de: c0:c6:ee:f2:49:d4:c1:41:12:ba:82:83:66:89:16:4e:5b:69: fa:b2:ab:9c:30:c0:bd:14:3b:c6:41:c6:37:eb:72:42:96:66: 64:01:6f:65:45:69:44:49:94:5f:0c:7b:de:06:e4:23:86:76: c9:75:b3:9d:77:1f:4b:c8:75:90:09:da:eb:cf:3a:e1:1d:ce: c3:fd:76:8b:9b:0d:76:2a:79:8e:4b:86:d8:40:de:fd:2b:3d: 6b:76:99:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVHAPOzJRyjJWsIZtqRVDIiVsssYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNTEwMjAwODM2MjRaFw0yNTEwMjMxMjIzMjRaMDMxMTAvBgNV BAMTKDM0ODZBRTg0MEFDOUNBMkRCQ0ZCRkNGM0Q4ODI4OUZFRDhBOUZBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2M48H3VHtxm3o2ct2hTI2MXy4 bLF6WsHeg1qXGs8GaAcegrTSKJA2pt0O+lTi0vuLLd0GZBMf6DUD9ynJQ9KRLUzt ds/M3wV7wHJykl3FhJRRukd5Jp9f8of8hZbL54ZTAqO5iDwf+0+yNjGCkEGs6Yx6 8FO/0IB58mppq1ffdHUqbmEzBwkfRvFZgsIJhFVMXReCEI4Y9VoKbqmIF/Wu6Wjr 6HJiQCJlQVFDgAIdzzCRR4M52df7l4UQQA7GXcd50QgXx/FFyFaHNcQS+ImlQMYK toiyGUOQn/J5Bll3SAkZZ4QK5/pRM93v3sSJ/2daG8yvthznS/AqWIQFvvk9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNIauhArJyi28+/zz2IKJ/tip+vwwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmMwNzJkYjctMDEyNy00NTY0LThk MjAtYmNlZDUyNWExNGI4LzAvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRB NEIwM0Q1MzVERi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIwKpiaX5HCjlRkm88rAIyKrf2AYP6rmhzeu AtUommznNuxmkp2/ECHxytpagmO/MIRV+2fMJkT7nGwLhrg17StX/4MgzsP7Fo6g H/PQ01nLx5Ddb4GI2jBM82ek9zLqm8sYNuVSmaORK2CyEjGwlFlyV2x8+61sxPDZ FA6jqoKhk3NN12jAYwt5f6PNP2tW48y6cW9y0ro7ByeOa2KTvK5n3sDG7vJJ1MFB ErqCg2aJFk5bafqyq5wwwL0UO8ZBxjfrckKWZmQBb2VFaURJlF8Me94G5COGdsl1 s513H0vIdZAJ2uvPOuEdzsP9doubDXYqeY5LhthA3v0rPWt2mX0= -----END CERTIFICATE-----Generated at Mon Oct 20 11:59:46 2025 by rpki-client