$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7D9E0EE5BE7273608101D93C5F7FB61CBC0404C7.cer File: 7D9E0EE5BE7273608101D93C5F7FB61CBC0404C7.cer (raw, json) Hash identifier: ILzlik3WRcPkr+pAaPMFqzjTRiLbOQJ5Uucttqt3o0Y= Subject key identifier: 7D:9E:0E:E5:BE:72:73:60:81:01:D9:3C:5F:7F:B6:1C:BC:04:04:C7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 42459D18A253144F876B434C3C9DAFDFCCB6C3D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a6de1a8e-c2b8-4996-9492-6f92c2dfec7a/0/7D9E0EE5BE7273608101D93C5F7FB61CBC0404C7.mft caRepository: rsync://repo-rpki.idnic.net/repo/a6de1a8e-c2b8-4996-9492-6f92c2dfec7a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 14 Jul 2025 14:57:19 +0000 Certificate not after: Mon 13 Jul 2026 15:02:19 +0000 Subordinate resources: IP: 103.169.143.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:45:9d:18:a2:53:14:4f:87:6b:43:4c:3c:9d:af:df:cc:b6:c3:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 14:57:19 2025 GMT Not After : Jul 13 15:02:19 2026 GMT Subject: CN=7D9E0EE5BE7273608101D93C5F7FB61CBC0404C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:de:1a:c4:d8:4a:b7:a6:b6:7b:ea:b9:fe:bf: df:af:bb:86:2a:b2:a9:e9:3d:8a:fd:33:34:1d:49: 3a:22:7c:7a:96:66:4e:8e:4b:53:ba:e0:ce:b3:76: 5e:c5:ae:61:c0:09:9f:ed:47:75:27:c0:28:1f:a8: 18:a5:4f:ca:3e:0f:b2:c8:11:00:bf:8b:ea:34:4c: ba:7f:05:dc:5d:13:59:ff:e3:d9:2f:dd:19:f3:59: c7:ac:76:b9:d2:eb:4b:cc:bf:0c:2c:14:46:ca:96: 98:df:93:98:9e:49:a8:6c:fe:bb:25:ae:1b:1d:5d: 40:d1:92:7e:8d:e9:82:76:3f:9e:bd:25:fb:13:92: ad:ca:63:0f:af:ca:78:52:ba:ce:55:7f:87:55:66: c4:8a:e5:95:b2:0a:63:f4:2d:4b:11:d3:21:47:b9: fc:58:36:3a:99:b9:1a:56:fd:01:07:5b:52:24:c3: 4d:0c:58:4a:43:bd:08:35:97:0d:fc:65:24:4a:1b: 7b:dd:48:61:b9:6b:c4:8f:2c:12:c5:0c:bc:70:86: f9:57:e2:7f:b0:51:dd:91:f6:f7:ad:f6:cd:f4:4c: c0:c7:8b:e0:e4:3f:7e:cf:4d:96:7c:27:50:d2:73: a4:5e:56:40:d3:79:7d:cf:93:5b:c7:a4:06:d1:3b: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7D:9E:0E:E5:BE:72:73:60:81:01:D9:3C:5F:7F:B6:1C:BC:04:04:C7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a6de1a8e-c2b8-4996-9492-6f92c2dfec7a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a6de1a8e-c2b8-4996-9492-6f92c2dfec7a/0/7D9E0EE5BE7273608101D93C5F7FB61CBC0404C7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.143.0/24 Signature Algorithm: sha256WithRSAEncryption 95:fc:63:7b:47:b3:e6:e9:e4:7d:1c:79:a5:fb:cd:7d:5d:24: 50:e6:05:51:4a:e2:e9:55:ca:8e:5f:c8:13:24:0c:d9:7c:28: 2d:28:64:f9:97:de:6a:4a:a8:40:5a:65:32:12:5c:3a:e9:c3: 71:43:d8:bf:e7:08:1f:b6:33:3b:01:64:a5:f6:16:10:e7:c5: 01:34:6c:2c:4a:df:f7:cb:be:3f:42:8f:2d:1e:80:41:f0:ab: f1:2d:1f:40:14:f1:8b:30:69:23:f7:c4:25:29:2c:a4:8b:fb: ed:9f:ec:cc:11:5a:d2:44:90:5d:32:c1:0a:10:ec:fb:0f:e9: 7b:47:1e:cc:59:1d:df:ae:60:03:f1:c0:07:d1:66:4a:57:d6: 41:0c:50:34:4c:fe:80:5f:62:18:4d:05:f9:a0:86:5c:4a:e2: 7c:cf:fb:61:a8:92:0b:27:ee:60:de:50:48:7d:ea:6c:05:ad: 8f:04:dc:11:b9:46:f0:4a:17:2a:43:ea:be:e8:68:3d:63:9c: 2f:31:2b:26:af:3e:ec:1a:92:f4:a0:8b:1e:7d:10:a4:7b:18: fa:ac:c6:da:19:84:b2:f4:1e:c9:20:ca:82:b4:7b:f4:86:e4: b4:b1:95:30:ca:49:df:78:ad:84:18:36:4d:6e:12:1c:f9:10: e5:06:82:88 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQkWdGKJTFE+Ha0NMPJ2v38y2w9gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNDE0NTcxOVoX DTI2MDcxMzE1MDIxOVowMzExMC8GA1UEAxMoN0Q5RTBFRTVCRTcyNzM2MDgxMDFE OTNDNUY3RkI2MUNCQzA0MDRDNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPeGsTYSremtnvquf6/36+7hiqyqek9iv0zNB1JOiJ8epZmTo5LU7rgzrN2 XsWuYcAJn+1HdSfAKB+oGKVPyj4PssgRAL+L6jRMun8F3F0TWf/j2S/dGfNZx6x2 udLrS8y/DCwURsqWmN+TmJ5JqGz+uyWuGx1dQNGSfo3pgnY/nr0l+xOSrcpjD6/K eFK6zlV/h1VmxIrllbIKY/QtSxHTIUe5/Fg2Opm5Glb9AQdbUiTDTQxYSkO9CDWX DfxlJEobe91IYblrxI8sEsUMvHCG+Vfif7BR3ZH29632zfRMwMeL4OQ/fs9Nlnwn UNJzpF5WQNN5fc+TW8ekBtE7FCcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFH2eDuW+cnNggQHZPF9/thy8BATHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNmRlMWE4ZS1jMmI4LTQ5OTYtOTQ5Mi02ZjkyYzJkZmVjN2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ZGUxYThl LWMyYjgtNDk5Ni05NDkyLTZmOTJjMmRmZWM3YS8wLzdEOUUwRUU1QkU3MjczNjA4 MTAxRDkzQzVGN0ZCNjFDQkMwNDA0QzcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqY8wDQYJKoZIhvcNAQELBQADggEBAJX8Y3tHs+bp5H0ceaX7zX1dJFDmBVFK 4ulVyo5fyBMkDNl8KC0oZPmX3mpKqEBaZTISXDrpw3FD2L/nCB+2MzsBZKX2FhDn xQE0bCxK3/fLvj9Cjy0egEHwq/EtH0AU8YswaSP3xCUpLKSL++2f7MwRWtJEkF0y wQoQ7PsP6XtHHsxZHd+uYAPxwAfRZkpX1kEMUDRM/oBfYhhNBfmghlxK4nzP+2Go kgsn7mDeUEh96mwFrY8E3BG5RvBKFypD6r7oaD1jnC8xKyavPuwakvSgix59EKR7 GPqsxtoZhLL0HskgyoK0e/SG5LSxlTDKSd94rYQYNk1uEhz5EOUGgog= -----END CERTIFICATE-----Generated at Sun Jul 20 18:46:13 2025 by rpki-client