$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer File: 9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer (raw, json) Hash identifier: xsEm1asV6PBH2kLti9bDIwt8mHFcCbi2wNlPE2McyUM= Subject key identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B828711D9C4182257788BF5E0897267ED493142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft caRepository: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Jun 2025 15:20:07 +0000 Certificate not after: Mon 01 Jun 2026 15:25:07 +0000 Subordinate resources: IP: 103.98.104.0/23 IP: 2001:df2:2100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Nov 2025 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:82:87:11:d9:c4:18:22:57:78:8b:f5:e0:89:72:67:ed:49:31:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 2 15:20:07 2025 GMT Not After : Jun 1 15:25:07 2026 GMT Subject: CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:00:18:79:40:d4:c5:0c:e4:05:b5:31:be: 1f:93:b7:85:ed:d0:3e:4b:52:39:0b:ef:5c:f8:06: 54:13:a8:5c:0a:b0:5b:3c:34:85:00:a5:d5:0d:a8: 0a:ba:80:db:b9:40:41:a9:ff:2e:60:a9:22:cc:d4: f6:0c:58:c7:13:5d:fb:4e:73:f0:92:2e:b1:d6:bc: 50:c3:e8:7b:ac:4a:d3:17:da:8e:ae:43:35:ce:42: 38:12:5a:f5:8c:5d:1c:28:4b:6d:02:d9:28:a6:a8: 33:1c:6f:11:04:43:7f:38:f8:de:f6:e7:b3:80:f4: 03:e2:59:e1:7a:70:00:40:4f:53:3a:05:56:a7:0b: 6e:e5:ef:4c:2e:27:c7:27:7c:f8:1f:31:5b:60:3d: 67:22:5d:ed:44:5a:6f:2c:91:ce:9a:30:51:5a:93: d9:d9:6b:e7:4d:98:ff:f8:3b:c5:8e:44:3c:15:33: 8a:37:f6:99:ce:af:4e:39:af:7b:b3:7d:c6:7f:5a: 9a:00:ab:b0:c8:0a:b0:3d:7b:3b:52:09:63:d7:07: c4:3b:17:7e:e7:22:23:a7:59:14:8d:34:93:15:47: 54:e9:44:eb:10:c1:75:1f:42:14:34:e5:42:bc:03: 05:ca:07:e6:c4:0f:fb:4b:d2:b6:a5:3a:61:8a:e6: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.104.0/23 IPv6: 2001:df2:2100::/48 Signature Algorithm: sha256WithRSAEncryption 89:01:f9:52:79:9f:c2:59:00:23:82:38:dc:90:05:13:01:06: cf:84:5d:f6:29:a8:ed:61:5d:06:9f:fa:64:1d:d7:23:51:dd: 77:42:9d:70:fe:a1:37:f1:4f:19:bb:1d:2e:82:d6:fa:b2:64: b0:52:84:20:57:fa:f5:e4:0f:16:a0:0b:45:d4:e9:c1:62:0f: 2b:c1:26:81:e7:09:ca:71:71:87:e2:a3:ec:5d:76:f3:34:5c: 28:de:e5:83:e1:7c:44:e3:e9:68:d6:a7:78:6c:35:f0:7e:55: 46:b4:e8:c7:d0:15:b1:80:2f:d8:e7:03:89:85:7a:18:e7:50: 71:61:37:18:e1:b7:3a:94:45:39:c6:d7:bc:62:a8:2f:9c:a2: ad:ff:49:58:20:fd:3e:9a:40:19:38:11:be:93:2a:2a:5d:fa: 49:ba:e5:26:4f:2f:51:cf:9e:ac:5f:fa:42:61:3b:2d:c7:7d: 7d:a1:5a:d0:51:73:8c:a1:c6:fc:6e:bd:37:90:5b:a2:9f:78: 40:eb:fe:a4:8a:be:37:70:d4:01:34:b5:8a:d4:73:66:47:73: ca:25:ca:30:80:c4:a2:0a:7d:67:b9:88:b6:4f:41:3b:ea:28: 29:09:3d:59:2a:d4:fe:20:80:b7:e8:86:13:a0:e1:ad:16:77: 9c:ae:ec:65 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUS4KHEdnEGCJXeIv14IlyZ+1JMUIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMjE1MjAwN1oX DTI2MDYwMTE1MjUwN1owMzExMC8GA1UEAxMoOUY2RDVENTY0OUQwMDFEMkI3QTMz NzhGOTkzMTRBOTkyRDQ4MkU0QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGaABh5QNTFDOQFtTG+H5O3he3QPktSOQvvXPgGVBOoXAqwWzw0hQCl1Q2o CrqA27lAQan/LmCpIszU9gxYxxNd+05z8JIusda8UMPoe6xK0xfajq5DNc5COBJa 9YxdHChLbQLZKKaoMxxvEQRDfzj43vbns4D0A+JZ4XpwAEBPUzoFVqcLbuXvTC4n xyd8+B8xW2A9ZyJd7URabyyRzpowUVqT2dlr502Y//g7xY5EPBUzijf2mc6vTjmv e7N9xn9amgCrsMgKsD17O1IJY9cHxDsXfuciI6dZFI00kxVHVOlE6xDBdR9CFDTl QrwDBcoH5sQP+0vStqU6YYrm1YECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ9tXVZJ0AHSt6M3j5kxSpktSC5KMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZmQzZmMyNC03NWEyLTQ3ZjYtOTI4ZS00ZTk4MDJiOTcwODUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDNmYzI0 LTc1YTItNDdmNi05MjhlLTRlOTgwMmI5NzA4NS8wLzlGNkQ1RDU2NDlEMDAxRDJC N0EzMzc4Rjk5MzE0QTk5MkQ0ODJFNEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnYmgwDwQCAAIwCQMHACABDfIhADANBgkqhkiG9w0BAQsFAAOCAQEAiQH5Unmf wlkAI4I43JAFEwEGz4Rd9imo7WFdBp/6ZB3XI1Hdd0KdcP6hN/FPGbsdLoLW+rJk sFKEIFf69eQPFqALRdTpwWIPK8EmgecJynFxh+Kj7F128zRcKN7lg+F8ROPpaNan eGw18H5VRrTox9AVsYAv2OcDiYV6GOdQcWE3GOG3OpRFOcbXvGKoL5yirf9JWCD9 PppAGTgRvpMqKl36SbrlJk8vUc+erF/6QmE7Lcd9faFa0FFzjKHG/G69N5Bbop94 QOv+pIq+N3DUATS1itRzZkdzyiXKMIDEogp9Z7mItk9BO+ooKQk9WSrU/iCAt+iG E6DhrRZ3nK7sZQ== -----END CERTIFICATE-----Generated at Sun Nov 16 13:20:04 2025 by rpki-client