$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer File: 9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer (raw, json) Hash identifier: BqFq9WqktyAbrTrFvWpY72MkDNZps+RO1ajYsAR8nEo= Subject key identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 07A579895FD27AE4265DBC7259D0D6D4F4118FB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft caRepository: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:39:44 +0000 Certificate not after: Mon 29 Jul 2024 06:44:44 +0000 Subordinate resources: IP: 103.98.104.0/23 IP: 2001:df2:2100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Apr 2024 07:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a5:79:89:5f:d2:7a:e4:26:5d:bc:72:59:d0:d6:d4:f4:11:8f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:39:44 2023 GMT Not After : Jul 29 06:44:44 2024 GMT Subject: CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:00:18:79:40:d4:c5:0c:e4:05:b5:31:be: 1f:93:b7:85:ed:d0:3e:4b:52:39:0b:ef:5c:f8:06: 54:13:a8:5c:0a:b0:5b:3c:34:85:00:a5:d5:0d:a8: 0a:ba:80:db:b9:40:41:a9:ff:2e:60:a9:22:cc:d4: f6:0c:58:c7:13:5d:fb:4e:73:f0:92:2e:b1:d6:bc: 50:c3:e8:7b:ac:4a:d3:17:da:8e:ae:43:35:ce:42: 38:12:5a:f5:8c:5d:1c:28:4b:6d:02:d9:28:a6:a8: 33:1c:6f:11:04:43:7f:38:f8:de:f6:e7:b3:80:f4: 03:e2:59:e1:7a:70:00:40:4f:53:3a:05:56:a7:0b: 6e:e5:ef:4c:2e:27:c7:27:7c:f8:1f:31:5b:60:3d: 67:22:5d:ed:44:5a:6f:2c:91:ce:9a:30:51:5a:93: d9:d9:6b:e7:4d:98:ff:f8:3b:c5:8e:44:3c:15:33: 8a:37:f6:99:ce:af:4e:39:af:7b:b3:7d:c6:7f:5a: 9a:00:ab:b0:c8:0a:b0:3d:7b:3b:52:09:63:d7:07: c4:3b:17:7e:e7:22:23:a7:59:14:8d:34:93:15:47: 54:e9:44:eb:10:c1:75:1f:42:14:34:e5:42:bc:03: 05:ca:07:e6:c4:0f:fb:4b:d2:b6:a5:3a:61:8a:e6: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.104.0/23 IPv6: 2001:df2:2100::/48 Signature Algorithm: sha256WithRSAEncryption 52:9e:33:3d:11:8d:be:18:c2:04:06:50:f7:31:75:41:14:a8: e8:54:ab:e1:56:d4:77:3e:cc:67:6f:9b:37:4d:91:c2:6e:c3: 43:e5:c0:00:75:62:10:c3:41:77:ae:88:b8:77:00:ed:52:88: b1:24:3a:eb:7f:7f:45:b5:11:0b:b2:3e:44:12:9b:7b:05:8d: f5:3b:66:ec:8e:12:c6:4e:54:be:52:d8:e7:9f:b3:53:bd:a6: de:97:72:1a:96:e3:71:31:fa:1e:07:57:5b:ac:e8:e5:3c:f9: ec:2f:df:c7:44:0b:11:66:61:6f:fe:85:9f:4a:ca:0c:f7:0a: 9c:8f:f1:81:d8:4b:91:3e:f1:ce:71:fc:01:66:c0:66:da:c7: 16:8d:8d:e4:d8:61:0f:6e:b8:94:ea:1c:07:75:3a:6d:94:43: 7e:d7:b7:e1:5c:03:d4:86:40:7c:61:99:9c:3a:f9:a6:64:f0: 42:ba:97:84:c3:7d:3c:c8:35:0d:52:1b:96:16:90:80:0e:45: a0:46:33:e9:cd:d4:48:38:d0:f6:92:c5:61:f2:2c:2b:8b:81: 8a:b8:d6:d9:ed:da:56:18:c0:a3:b2:9f:98:26:58:b3:cb:3b: 20:d5:83:1b:80:d0:7a:85:22:6a:61:21:22:6b:a7:77:2f:3f: f8:19:ba:a8 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUB6V5iV/SeuQmXbxyWdDW1PQRj7YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2Mzk0NFoX DTI0MDcyOTA2NDQ0NFowMzExMC8GA1UEAxMoOUY2RDVENTY0OUQwMDFEMkI3QTMz NzhGOTkzMTRBOTkyRDQ4MkU0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGaABh5QNTFDOQFtTG+H5O3he3QPktSOQvvXPgGVBOoXAqwWzw0hQCl1Q2o CrqA27lAQan/LmCpIszU9gxYxxNd+05z8JIusda8UMPoe6xK0xfajq5DNc5COBJa 9YxdHChLbQLZKKaoMxxvEQRDfzj43vbns4D0A+JZ4XpwAEBPUzoFVqcLbuXvTC4n xyd8+B8xW2A9ZyJd7URabyyRzpowUVqT2dlr502Y//g7xY5EPBUzijf2mc6vTjmv e7N9xn9amgCrsMgKsD17O1IJY9cHxDsXfuciI6dZFI00kxVHVOlE6xDBdR9CFDTl QrwDBcoH5sQP+0vStqU6YYrm1YECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ9tXVZJ0AHSt6M3j5kxSpktSC5KMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZmQzZmMyNC03NWEyLTQ3ZjYtOTI4ZS00ZTk4MDJiOTcwODUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDNmYzI0 LTc1YTItNDdmNi05MjhlLTRlOTgwMmI5NzA4NS8wLzlGNkQ1RDU2NDlEMDAxRDJC N0EzMzc4Rjk5MzE0QTk5MkQ0ODJFNEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnYmgwDwQCAAIwCQMHACABDfIhADANBgkqhkiG9w0BAQsFAAOCAQEAUp4zPRGN vhjCBAZQ9zF1QRSo6FSr4VbUdz7MZ2+bN02Rwm7DQ+XAAHViEMNBd66IuHcA7VKI sSQ6639/RbURC7I+RBKbewWN9Ttm7I4Sxk5UvlLY55+zU72m3pdyGpbjcTH6HgdX W6zo5Tz57C/fx0QLEWZhb/6Fn0rKDPcKnI/xgdhLkT7xznH8AWbAZtrHFo2N5Nhh D264lOocB3U6bZRDfte34VwD1IZAfGGZnDr5pmTwQrqXhMN9PMg1DVIblhaQgA5F oEYz6c3USDjQ9pLFYfIsK4uBirjW2e3aVhjAo7KfmCZYs8s7INWDG4DQeoUiamEh Imundy8/+Bm6qA== -----END CERTIFICATE-----Generated at Sat Apr 20 07:25:12 2024 by rpki-client on console-fra.rpki-client.org