$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer File: 9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer (raw, json) Hash identifier: lQcU6oAVKAcSiRUpcgK3GFyKaWqUL6qyE1IPR27roQs= Subject key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F64F52602D8B4711329E3257C04F269946A3203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft caRepository: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 09:03:11 +0000 Certificate not after: Mon 29 Jul 2024 09:08:11 +0000 Subordinate resources: IP: 45.251.4.0/22 IP: 101.255.0.0/16 IP: 103.15.172.0/22 IP: 115.124.64.0/19 IP: 202.182.48.0/21 IP: 2404:cf00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 00:56:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:64:f5:26:02:d8:b4:71:13:29:e3:25:7c:04:f2:69:94:6a:32:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 09:03:11 2023 GMT Not After : Jul 29 09:08:11 2024 GMT Subject: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7a:57:f9:f4:f0:ab:d0:1c:fb:c1:ae:75:84: 46:c3:41:1a:d7:91:db:27:6f:c7:7f:79:66:ee:a8: 13:b0:79:42:08:0c:5a:2f:77:61:49:fd:6c:97:13: 36:83:f6:a2:49:4d:8c:31:44:e8:e7:4e:1e:b2:87: 4a:1f:be:3d:cc:6b:1c:ee:95:8a:07:28:ac:00:e4: 81:c0:84:86:f4:50:a6:0f:70:fb:9c:5a:f5:8d:d9: 69:f4:fc:79:2c:89:4e:47:e1:65:8f:b8:e7:f0:05: 31:4a:97:e9:a7:50:bb:35:bd:de:8c:40:ba:ff:3a: 9f:ec:21:6e:56:7b:5c:df:96:89:9a:8d:69:43:67: 91:d8:30:66:34:70:71:30:d1:ec:ee:09:ce:50:b3: 32:4f:e1:3e:77:d5:63:4d:51:e4:9d:ef:f9:b7:7c: 47:0a:80:50:21:af:d7:51:5a:cc:b6:c3:a4:5c:fe: 69:f2:f6:10:c6:fd:7a:da:78:67:bc:3b:24:1b:57: 5a:b9:9c:31:19:a4:99:f7:9e:26:2f:21:9b:97:04: 06:75:b7:05:36:06:ea:31:28:49:94:70:b4:21:7c: a3:38:a8:c6:23:47:09:f5:e4:7b:2d:11:31:89:c7: aa:a6:d6:43:c5:5f:8d:66:ef:af:03:18:e2:79:8c: 16:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.251.4.0/22 101.255.0.0/16 103.15.172.0/22 115.124.64.0/19 202.182.48.0/21 IPv6: 2404:cf00::/32 Signature Algorithm: sha256WithRSAEncryption 77:f2:4c:22:12:ab:df:26:60:63:21:bb:14:de:e8:36:19:de: 7d:38:85:28:43:e0:66:52:8c:3f:af:bf:9c:6e:dc:f2:79:8a: f8:21:d2:2e:d6:8c:a2:b8:a3:c1:fc:a2:1a:4e:b3:33:ab:fb: 00:41:8f:89:c7:24:a6:d9:23:df:6f:71:8f:4f:88:e2:d1:3c: a5:db:43:b4:0b:94:2c:08:ec:41:9a:b9:86:ec:34:b6:86:84: 75:41:0f:9b:0d:9b:23:6a:3b:33:09:89:ce:ed:b1:c4:b0:3b: 11:36:fc:42:01:4a:41:2f:db:b8:92:17:9b:cc:6b:29:9d:be: 75:c1:fc:f2:8f:40:46:99:0b:d1:69:92:0d:82:c0:47:9d:18: 5a:eb:33:ad:cf:23:4e:78:e2:07:88:fa:90:e0:74:54:08:fe: aa:18:dc:a6:a9:4f:50:3b:40:02:77:4a:7e:58:c2:d7:e0:1f: 20:21:17:46:0d:d9:7a:1c:70:3e:25:a1:04:17:d1:57:6e:9a: b6:04:2d:aa:c0:c0:2a:6b:ac:e3:e7:6e:97:db:37:e4:55:59: da:5a:28:15:08:f9:b8:a5:57:34:71:fc:e4:a3:7c:51:20:b8: 95:39:6a:35:98:6d:98:c8:da:a9:db:d7:11:8c:d9:db:82:ff: 95:71:14:a2 -----BEGIN CERTIFICATE----- MIIF6zCCBNOgAwIBAgIUL2T1JgLYtHETKeMlfATyaZRqMgMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA5MDMxMVoX DTI0MDcyOTA5MDgxMVowMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERF M0E0MkUyNEREOEZFN0FCQzE3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANB6V/n08KvQHPvBrnWERsNBGteR2ydvx395Zu6oE7B5QggMWi93YUn9bJcT NoP2oklNjDFE6OdOHrKHSh++PcxrHO6VigcorADkgcCEhvRQpg9w+5xa9Y3ZafT8 eSyJTkfhZY+45/AFMUqX6adQuzW93oxAuv86n+whblZ7XN+WiZqNaUNnkdgwZjRw cTDR7O4JzlCzMk/hPnfVY01R5J3v+bd8RwqAUCGv11FazLbDpFz+afL2EMb9etp4 Z7w7JBtXWrmcMRmkmfeeJi8hm5cEBnW3BTYG6jEoSZRwtCF8ozioxiNHCfXkey0R MYnHqqbWQ8VfjWbvrwMY4nmMFjcCAwEAAaOCAt4wggLaMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJFpubZSbNFJhN3jpC4k3Y/nq8F/MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4ZjI5MTVk LTE4YzktNGUwMy1iYmZiLTIwNzRjNTk4MDg5OC8wLzkxNjlCOUI2NTI2Q0QxNDk4 NERERTNBNDJFMjRERDhGRTdBQkMxN0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRQYIKwYBBQUHAQcBAf8ENjA0MCMEAgABMB0D BAIt+wQDAwBl/wMEAmcPrAMEBXN8QAMEA8q2MDANBAIAAjAHAwUAJATPADANBgkq hkiG9w0BAQsFAAOCAQEAd/JMIhKr3yZgYyG7FN7oNhnefTiFKEPgZlKMP6+/nG7c 8nmK+CHSLtaMorijwfyiGk6zM6v7AEGPicckptkj329xj0+I4tE8pdtDtAuULAjs QZq5huw0toaEdUEPmw2bI2o7MwmJzu2xxLA7ETb8QgFKQS/buJIXm8xrKZ2+dcH8 8o9ARpkL0WmSDYLAR50YWuszrc8jTnjiB4j6kOB0VAj+qhjcpqlPUDtAAndKfljC 1+AfICEXRg3ZehxwPiWhBBfRV26atgQtqsDAKmus4+dul9s35FVZ2looFQj5uKVX NHH85KN8USC4lTlqNZhtmMjaqdvXEYzZ24L/lXEUog== -----END CERTIFICATE-----Generated at Thu May 2 14:39:46 2024 by rpki-client on console-ams.rpki-client.org