$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer File: 5335076B95F2978BE3ACDB39360AE5A22D0D4B55.cer (raw, json) Hash identifier: IPv908IQSZT5EM1uni4UaiJO1PVtMkx/ruj0FaftLL4= Subject key identifier: 53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40DF2F5077A77A93274404FB0D7649E087FE7E84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.mft caRepository: rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 14 Jul 2025 23:01:27 +0000 Certificate not after: Mon 13 Jul 2026 23:06:27 +0000 Subordinate resources: IP: 103.148.100.0/23 IP: 2405:ce40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:df:2f:50:77:a7:7a:93:27:44:04:fb:0d:76:49:e0:87:fe:7e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 23:01:27 2025 GMT Not After : Jul 13 23:06:27 2026 GMT Subject: CN=5335076B95F2978BE3ACDB39360AE5A22D0D4B55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1e:e8:1b:b7:20:30:51:12:44:10:db:54:99: 3d:1c:32:ff:5b:e8:bb:15:df:86:8a:b0:94:9c:de: da:59:f2:2a:f4:38:b6:f7:30:b6:39:c7:ea:79:a5: 07:ff:4f:d4:a0:77:8e:f7:b3:5c:26:6d:38:1b:4a: 29:35:e0:15:3c:07:d8:61:3e:13:36:c9:05:d1:a9: c8:c5:9a:04:f3:c5:6d:c1:63:4e:c7:8d:5f:40:bd: ea:2e:1b:be:d8:76:c1:8e:9b:e5:52:c0:51:a5:15: df:b1:3b:85:ae:98:87:be:6a:bc:b1:3c:cd:32:c6: fc:9b:19:d9:04:1c:3f:10:f7:b2:2a:29:d6:4a:76: 33:be:f8:a2:39:6c:67:b3:71:7e:f5:0a:22:db:2b: 49:5e:f0:a5:21:f0:ca:06:5f:1c:b9:d2:7b:70:13: 3c:2d:26:13:d1:7d:77:7d:6d:6e:cc:58:fe:20:95: 03:42:2a:43:f6:16:12:8e:7c:a7:79:14:d7:b4:57: cb:40:ef:9a:1b:44:e8:c3:58:84:c2:ee:3f:eb:ac: 63:4b:99:61:4f:61:4a:46:d1:48:13:3e:87:b0:b4: 87:ae:49:35:84:ad:34:05:68:17:f3:5d:e8:4a:34: b1:04:a3:93:4f:ed:93:da:42:82:b2:59:2b:9c:02: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 53:35:07:6B:95:F2:97:8B:E3:AC:DB:39:36:0A:E5:A2:2D:0D:4B:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f2d66d10-b857-4bef-9395-45d5ab2c44f9/0/5335076B95F2978BE3ACDB39360AE5A22D0D4B55.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.100.0/23 IPv6: 2405:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 6a:81:ac:c7:f9:3f:ee:30:0a:f0:77:bd:80:f9:38:b6:1d:ba: 44:a9:35:32:9d:dc:3d:6e:b6:ad:0c:31:ae:ee:5c:80:d7:1c: 56:56:d3:1c:11:81:a4:78:8f:9e:7a:47:0e:d0:6d:ed:a3:ad: 52:ff:f4:d2:b9:d1:13:5c:e7:dd:3a:03:08:e6:9f:da:86:34: be:a1:7d:96:dc:0f:91:84:f5:cf:64:96:e2:54:bf:82:af:62: 5c:8b:da:25:f6:64:ec:4c:23:b5:b3:e3:5a:84:fe:65:d3:23: 75:88:4f:d8:fa:dd:ca:3e:0a:0d:ad:56:df:47:27:8f:26:1c: e9:d2:b9:f0:aa:75:ce:04:b1:6e:f4:79:33:02:8e:b0:cb:a5: ae:91:d6:03:78:e4:ae:ad:c3:d3:d0:79:a8:44:1a:70:11:2c: f9:47:9f:22:dd:5b:59:2e:17:58:df:dc:e1:e9:6d:66:37:30: 92:93:b6:f8:7a:74:f8:95:1a:f7:5f:6d:e8:3e:38:b1:a3:9b: 96:39:fc:a3:2e:b7:5d:98:1b:b3:17:e3:33:13:e6:1b:21:37: b7:c0:32:4e:79:44:37:04:df:af:39:a6:8d:fe:0f:39:e6:b0: 10:ed:d5:12:d7:57:0c:da:be:9d:ac:fe:70:ea:0a:49:fd:cc: 0c:fb:99:69 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUQN8vUHenepMnRAT7DXZJ4If+foQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNDIzMDEyN1oX DTI2MDcxMzIzMDYyN1owMzExMC8GA1UEAxMoNTMzNTA3NkI5NUYyOTc4QkUzQUNE QjM5MzYwQUU1QTIyRDBENEI1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoe6Bu3IDBREkQQ21SZPRwy/1vouxXfhoqwlJze2lnyKvQ4tvcwtjnH6nml B/9P1KB3jvezXCZtOBtKKTXgFTwH2GE+EzbJBdGpyMWaBPPFbcFjTseNX0C96i4b vth2wY6b5VLAUaUV37E7ha6Yh75qvLE8zTLG/JsZ2QQcPxD3siop1kp2M774ojls Z7NxfvUKItsrSV7wpSHwygZfHLnSe3ATPC0mE9F9d31tbsxY/iCVA0IqQ/YWEo58 p3kU17RXy0DvmhtE6MNYhMLuP+usY0uZYU9hSkbRSBM+h7C0h65JNYStNAVoF/Nd 6Eo0sQSjk0/tk9pCgrJZK5wCfn0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFM1B2uV8peL46zbOTYK5aItDUtVMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMmQ2NmQxMC1iODU3LTRiZWYtOTM5NS00NWQ1YWIyYzQ0ZjkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyZDY2ZDEw LWI4NTctNGJlZi05Mzk1LTQ1ZDVhYjJjNDRmOS8wLzUzMzUwNzZCOTVGMjk3OEJF M0FDREIzOTM2MEFFNUEyMkQwRDRCNTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnlGQwDQQCAAIwBwMFACQFzkAwDQYJKoZIhvcNAQELBQADggEBAGqBrMf5P+4w CvB3vYD5OLYdukSpNTKd3D1utq0MMa7uXIDXHFZW0xwRgaR4j556Rw7Qbe2jrVL/ 9NK50RNc5906Awjmn9qGNL6hfZbcD5GE9c9kluJUv4KvYlyL2iX2ZOxMI7Wz41qE /mXTI3WIT9j63co+Cg2tVt9HJ48mHOnSufCqdc4EsW70eTMCjrDLpa6R1gN45K6t w9PQeahEGnARLPlHnyLdW1kuF1jf3OHpbWY3MJKTtvh6dPiVGvdfbeg+OLGjm5Y5 /KMut12YG7MX4zMT5hshN7fAMk55RDcE3685po3+DznmsBDt1RLXVwzavp2s/nDq Ckn9zAz7mWk= -----END CERTIFICATE-----Generated at Sun Jul 20 22:00:54 2025 by rpki-client