$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer File: 3703AC4154F05B1E642F31DEF71A238407E82D59.cer (raw, json) Hash identifier: 9urkIjFAy4YHHmN09uBda869Ot7CAqgnCVSwLlk3AGg= Subject key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F623110FB42AA6963F29DF54A141CB2F54C5D4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft caRepository: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 07 Aug 2025 23:33:14 +0000 Certificate not after: Thu 06 Aug 2026 23:38:14 +0000 Subordinate resources: IP: 103.160.40.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:62:31:10:fb:42:aa:69:63:f2:9d:f5:4a:14:1c:b2:f5:4c:5d:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 7 23:33:14 2025 GMT Not After : Aug 6 23:38:14 2026 GMT Subject: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:86:01:86:e8:f4:4a:02:e1:2d:03:b8:9b:a5: 4d:aa:cc:fd:5b:ba:cf:df:09:64:77:3d:83:4a:5a: 2c:71:b8:1b:7c:3b:0e:e9:b2:6a:a8:1f:89:73:30: d3:05:0f:8e:b2:56:a8:5e:01:74:11:e9:a3:f5:91: fc:3a:f3:6a:fb:27:f4:0c:0f:1c:92:32:d9:69:d1: 7a:ca:b8:bf:08:42:57:c9:5d:9e:0f:a3:07:35:46: da:92:41:1f:f8:73:06:d1:a2:e8:d1:4d:75:0b:5d: a2:ef:b9:6e:2b:6d:5f:51:6c:cf:f6:d7:62:79:e2: 35:d1:88:f5:dc:1e:73:c1:36:57:fb:92:e4:68:00: b1:dc:ff:d0:26:af:c3:f4:c8:df:df:15:51:c0:f9: bf:5f:ba:74:67:a1:04:e9:d6:54:10:60:f5:86:ab: f8:32:9e:10:e2:8b:37:0b:cb:b2:46:e6:40:3a:43: fb:d7:40:c4:b2:da:e9:33:01:e8:25:e8:91:5f:20: 68:02:3c:03:d6:d1:49:8f:8a:b6:5f:70:ca:86:e2: 48:39:5f:74:e4:d5:fc:61:33:74:2a:cd:13:65:04: 24:40:9e:8e:42:c9:06:3e:94:76:81:58:a4:e8:73: 4d:96:a3:24:42:3e:e5:35:c9:e8:2b:26:73:06:75: c0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/23 Signature Algorithm: sha256WithRSAEncryption 12:a3:3f:22:46:68:97:93:e6:a2:1d:4f:70:69:a3:a6:0d:ef: df:d3:c6:e0:82:f5:8d:ca:a9:20:32:49:2c:25:b8:c1:e8:af: 1e:73:59:2a:89:58:57:bd:a3:2b:a2:3f:de:49:b2:f1:22:64: 59:27:2f:eb:f8:2e:c1:4a:bd:3c:36:9e:89:f3:c3:01:32:a3: 8f:be:c4:82:c9:05:03:9d:c8:ce:26:14:04:9d:f5:98:8c:0e: a7:75:e2:11:69:34:66:19:89:08:8b:70:e2:f0:ec:46:d8:24: 08:f5:9f:a9:b8:a1:fb:f5:56:e4:ae:f9:e4:7c:bb:73:41:90: f5:6c:0f:3a:31:ab:e0:59:1e:d4:db:3b:a5:5e:53:e7:80:1d: 2a:96:37:f9:31:c6:0a:15:51:80:14:26:96:fa:fd:20:8d:af: e7:50:46:be:ef:20:94:ce:af:0f:25:01:7f:98:ea:aa:de:b8: 27:95:85:81:fb:0e:71:d0:7d:8d:97:9f:fd:95:d9:e5:34:67: 30:30:fc:f1:4b:b3:b2:a8:4b:e0:a8:b5:d5:47:bd:f5:37:3f: f3:9b:94:c3:e4:4e:1e:4b:8b:90:77:72:56:cb:00:86:9a:c4: 69:9c:ef:db:bb:b4:8a:db:e6:2c:dc:e4:e9:b9:56:d0:cf:5b: ce:e6:51:2c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUL2IxEPtCqmlj8p31ShQcsvVMXU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDgwNzIzMzMxNFoX DTI2MDgwNjIzMzgxNFowMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYz MURFRjcxQTIzODQwN0U4MkQ1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGGAYbo9EoC4S0DuJulTarM/Vu6z98JZHc9g0paLHG4G3w7DumyaqgfiXMw 0wUPjrJWqF4BdBHpo/WR/Drzavsn9AwPHJIy2WnResq4vwhCV8ldng+jBzVG2pJB H/hzBtGi6NFNdQtdou+5bittX1Fsz/bXYnniNdGI9dwec8E2V/uS5GgAsdz/0Cav w/TI398VUcD5v1+6dGehBOnWVBBg9Yar+DKeEOKLNwvLskbmQDpD+9dAxLLa6TMB 6CXokV8gaAI8A9bRSY+Ktl9wyobiSDlfdOTV/GEzdCrNE2UEJECejkLJBj6UdoFY pOhzTZajJEI+5TXJ6CsmcwZ1wM0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDcDrEFU8FseZC8x3vcaI4QH6C1ZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRm LTdlMTItNGU4My05NWMyLWRkN2Y3NzQ5NDc4OC8wLzM3MDNBQzQxNTRGMDVCMUU2 NDJGMzFERUY3MUEyMzg0MDdFODJENTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoCgwDQYJKoZIhvcNAQELBQADggEBABKjPyJGaJeT5qIdT3Bpo6YN79/TxuCC 9Y3KqSAySSwluMHorx5zWSqJWFe9oyuiP95JsvEiZFknL+v4LsFKvTw2nonzwwEy o4++xILJBQOdyM4mFASd9ZiMDqd14hFpNGYZiQiLcOLw7EbYJAj1n6m4ofv1VuSu +eR8u3NBkPVsDzoxq+BZHtTbO6VeU+eAHSqWN/kxxgoVUYAUJpb6/SCNr+dQRr7v IJTOrw8lAX+Y6qreuCeVhYH7DnHQfY2Xn/2V2eU0ZzAw/PFLs7KoS+CotdVHvfU3 P/OblMPkTh5Li5B3clbLAIaaxGmc79u7tIrb5izc5Om5VtDPW87mUSw= -----END CERTIFICATE-----Generated at Sat Nov 15 10:23:32 2025 by rpki-client