$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft File: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft (raw, json) Hash identifier: OzkikrW6N7BYk3ngz9g57sAPzNhKaZTx2idbpHGFEMM= Subject key identifier: 01:07:72:1B:AB:C9:28:7A:35:3E:05:87:1D:6B:EF:FF:4D:BB:3C:19 Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 6306960BA7351E2DE169CF82F7EFB5447A294B05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft Manifest number: 04C6 Signing time: Fri 22 Aug 2025 19:31:30 +0000 Manifest this update: Fri 22 Aug 2025 19:26:30 +0000 Manifest next update: Tue 26 Aug 2025 00:09:30 +0000 Files and hashes: 1: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl (hash: bE5n96Fg2NXt2ihiMOLQ5nDYpPPv7YIGj1o3JmTopjY=) 2: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (hash: z4oYCZWDew+XBZrkivYPBIEa8esU/2et9t2LDZPakkY=) 3: 3130332e3133382e3132372e302f32342d3234203d3e20313338383531.roa (hash: 8uluz9oQUOC33A/yP5J6qEWwFa5BN6LUXooNJ8KA6Pw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 00:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:06:96:0b:a7:35:1e:2d:e1:69:cf:82:f7:ef:b5:44:7a:29:4b:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Aug 22 19:26:30 2025 GMT Not After : Aug 26 00:09:30 2025 GMT Subject: CN=0107721BABC9287A353E05871D6BEFFF4DBB3C19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fe:c1:c9:f4:f2:d6:ab:4a:f2:92:40:52:40: c7:fc:8b:63:e8:a1:6d:15:ab:4c:ff:0b:d0:b9:71: aa:a1:e3:c2:11:64:08:06:e8:a7:39:07:e0:67:48: 92:21:91:c9:37:b5:20:07:3d:a0:0c:a1:cd:d4:cb: f9:32:90:57:dc:16:f8:28:7f:9d:e6:b9:c4:62:d4: d1:8b:3c:09:17:62:5f:8f:07:79:61:23:cd:3f:a2: ed:e1:04:01:f0:d6:7d:5d:e3:a5:4b:fa:41:be:96: d6:65:1f:e7:ff:c6:07:45:d3:2a:94:4d:65:56:ee: 89:71:a6:a0:43:0a:1d:e2:8d:c6:a3:37:94:0f:df: 6a:2e:0b:7a:73:8e:b8:d2:2d:97:49:35:19:7c:be: 8c:a5:81:c4:5d:1a:41:8a:ae:f0:52:be:09:ad:ff: b7:40:b9:78:22:fd:57:b1:38:94:18:72:0d:80:a8: c7:d6:43:0d:29:fd:95:de:7e:f4:41:7b:cd:f0:2c: 91:cc:53:db:5c:69:0c:77:04:79:a1:dc:ee:2f:b9: 5c:9d:b6:0e:32:66:ab:02:4f:bd:a5:e5:3c:b4:95: c9:a3:ef:5d:f9:c8:d0:87:4c:c3:7c:c9:bb:d2:bd: c9:67:ff:5b:71:ff:09:23:c5:af:c2:74:14:18:c4: 7a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:07:72:1B:AB:C9:28:7A:35:3E:05:87:1D:6B:EF:FF:4D:BB:3C:19 X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:a5:93:66:e0:82:75:65:3f:fd:bf:2e:21:8f:f7:29:47:07: 65:6c:65:c3:45:10:73:cb:16:90:77:17:42:3e:21:6c:bd:57: 25:c3:e3:c0:21:9f:a0:3b:8f:eb:6b:41:22:77:22:fb:c5:f4: bf:3d:55:ec:43:f2:47:4c:72:94:52:ac:b6:0d:ad:72:38:8b: 8a:6b:65:6d:bf:85:11:e1:41:48:ef:30:b0:e1:00:19:51:bf: 0d:22:58:65:b3:aa:e7:af:f1:ec:2d:3d:54:f0:c2:a7:a6:d2: 59:dd:15:e9:e5:03:89:e8:a0:fb:af:8c:d1:a6:74:87:02:0e: 19:7f:2e:64:e3:27:d7:83:4f:d2:ca:18:f8:4f:df:3e:bb:08: 02:e4:a3:f6:8a:cb:e6:0b:d7:35:8c:71:8b:7c:2a:e3:89:10: eb:b5:36:d5:da:07:e5:90:1b:9a:63:6c:60:83:89:4d:df:2a: 6d:4a:d6:8e:e4:84:51:e7:80:d1:00:76:8c:45:d5:ff:80:8b: 8d:e1:4a:bb:3d:ba:e2:eb:31:92:d7:c5:bd:b2:37:35:f2:8a: 8d:2f:9d:e0:82:20:5e:c2:2c:12:c9:ad:d4:76:8f:98:62:d4: 3b:8c:e1:61:57:79:e2:9c:b9:94:c5:fc:5e:fd:b2:50:10:d6: 14:f2:1e:24 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYwaWC6c1Hi3hac+C9++1RHopSwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNTA4MjIxOTI2MzBaFw0yNTA4MjYwMDA5MzBaMDMxMTAvBgNV BAMTKDAxMDc3MjFCQUJDOTI4N0EzNTNFMDU4NzFENkJFRkZGNERCQjNDMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR/sHJ9PLWq0rykkBSQMf8i2Po oW0Vq0z/C9C5caqh48IRZAgG6Kc5B+BnSJIhkck3tSAHPaAMoc3Uy/kykFfcFvgo f53mucRi1NGLPAkXYl+PB3lhI80/ou3hBAHw1n1d46VL+kG+ltZlH+f/xgdF0yqU TWVW7olxpqBDCh3ijcajN5QP32ouC3pzjrjSLZdJNRl8voylgcRdGkGKrvBSvgmt /7dAuXgi/VexOJQYcg2AqMfWQw0p/ZXefvRBe83wLJHMU9tcaQx3BHmh3O4vuVyd tg4yZqsCT72l5Ty0lcmj7135yNCHTMN8ybvSvcln/1tx/wkjxa/CdBQYxHrbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAQdyG6vJKHo1PgWHHWvv/027PBkwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmMwNzJkYjctMDEyNy00NTY0LThk MjAtYmNlZDUyNWExNGI4LzAvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRB NEIwM0Q1MzVERi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFWlk2bggnVlP/2/LiGP9ylHB2VsZcNFEHPL FpB3F0I+IWy9VyXD48Ahn6A7j+trQSJ3IvvF9L89VexD8kdMcpRSrLYNrXI4i4pr ZW2/hRHhQUjvMLDhABlRvw0iWGWzquev8ewtPVTwwqem0lndFenlA4nooPuvjNGm dIcCDhl/LmTjJ9eDT9LKGPhP3z67CALko/aKy+YL1zWMcYt8KuOJEOu1NtXaB+WQ G5pjbGCDiU3fKm1K1o7khFHngNEAdoxF1f+Ai43hSrs9uuLrMZLXxb2yNzXyio0v neCCIF7CLBLJrdR2j5hi1DuM4WFXeeKcuZTF/F79slAQ1hTyHiQ= -----END CERTIFICATE-----Generated at Sat Aug 23 16:50:22 2025 by rpki-client