$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/145856688D58EEB673E59CC02D21114CF78E87E5.cer File: 145856688D58EEB673E59CC02D21114CF78E87E5.cer (raw, json) Hash identifier: VZ5YXN/tA/XpVtrjqhE6F7cRZg3fixAyI+1GDLqheH8= Subject key identifier: 14:58:56:68:8D:58:EE:B6:73:E5:9C:C0:2D:21:11:4C:F7:8E:87:E5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 71DD430364226B2004DD858B15A2CED18AFEEC52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/145856688D58EEB673E59CC02D21114CF78E87E5.mft caRepository: rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 25 Aug 2025 12:56:12 +0000 Certificate not after: Mon 24 Aug 2026 13:01:12 +0000 Subordinate resources: IP: 157.66.58.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 14:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:dd:43:03:64:22:6b:20:04:dd:85:8b:15:a2:ce:d1:8a:fe:ec:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 25 12:56:12 2025 GMT Not After : Aug 24 13:01:12 2026 GMT Subject: CN=145856688D58EEB673E59CC02D21114CF78E87E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d6:16:cd:8b:d7:1a:01:f1:21:05:93:72:73: d3:41:3d:07:37:96:28:10:07:5c:5a:e0:af:8f:3b: 3a:4c:7a:fa:b7:f3:22:99:de:3b:de:d8:d5:91:20: b5:b2:9e:10:31:43:e3:72:63:e6:1b:34:d1:78:f5: ea:58:fd:d2:87:a4:c8:25:c0:fd:dd:13:1f:96:e2: 7b:16:ce:74:05:24:e5:4b:91:21:3e:ed:20:89:67: 29:3a:4b:87:2f:a5:51:02:b0:0d:2d:80:6b:e1:cc: a9:5c:dd:cb:a7:2d:f9:6d:5e:78:fc:8e:96:88:0a: cc:f2:37:f7:e5:19:1e:23:72:f1:bb:c4:82:ce:66: f5:a7:44:fe:58:21:9c:25:cf:fa:a1:3b:63:ef:5c: 7f:79:dc:e0:6c:e9:10:47:4a:54:d7:38:51:12:e5: 97:93:a1:2e:43:19:c5:20:88:ba:f3:e4:52:6a:bf: 9d:96:01:11:b2:7c:ab:1d:b7:e0:34:a5:77:f7:44: af:34:ac:45:e3:f7:02:39:e7:12:ee:74:7c:1e:d0: b2:ed:e3:e1:88:3a:99:1e:d9:fb:83:21:af:0d:12: 16:2e:e5:14:89:d3:6a:17:d5:ad:36:31:c7:2c:3c: 4a:af:fd:a8:d6:97:c5:0f:cd:3b:a7:25:a7:52:e3: 3d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:58:56:68:8D:58:EE:B6:73:E5:9C:C0:2D:21:11:4C:F7:8E:87:E5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/145856688D58EEB673E59CC02D21114CF78E87E5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.58.0/23 Signature Algorithm: sha256WithRSAEncryption 90:13:df:4d:a9:e6:d9:3d:54:1a:7a:1a:3c:6f:c1:da:65:f4: c6:97:70:de:49:0c:cf:26:7a:5c:60:17:ed:67:19:2e:41:43: f1:9b:9c:b6:5f:9e:ae:08:14:5f:d3:08:ff:ea:f2:98:f8:04: 30:f6:7b:6d:26:73:fb:79:8a:81:32:04:24:bc:c3:63:ae:54: 43:d9:eb:cd:cf:fc:08:d5:5a:c0:08:9f:18:1d:80:3f:4f:4c: 81:15:7b:8c:f4:93:e8:b4:ba:c5:09:a5:2a:5d:10:b5:39:9b: e7:ee:a1:e5:1a:b2:31:42:a5:aa:54:7a:ea:65:7d:2f:d8:1f: 5b:2f:c1:b1:e8:84:96:3b:54:32:81:36:6a:d9:0e:2d:40:60: 81:7e:e9:04:98:2f:81:fa:dc:11:48:b1:bf:b6:0b:05:c6:9c: cd:2b:4b:d2:5c:2d:3f:72:5f:9b:46:d0:b8:6a:4c:94:17:d1: 7e:7e:4d:91:15:3f:85:06:be:ee:5a:1b:2a:a0:d1:09:fe:46: 02:fe:08:1b:27:13:d2:b4:7a:20:52:30:98:9a:6f:b5:f9:90: 9a:8d:34:a4:03:af:3a:01:94:b3:63:b5:03:4e:49:45:28:21: 5a:63:fb:d7:e7:69:ac:e3:d6:0f:33:f2:92:c7:4a:b8:10:64: 97:89:6c:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcd1DA2QiayAE3YWLFaLO0Yr+7FIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDgyNTEyNTYxMloX DTI2MDgyNDEzMDExMlowMzExMC8GA1UEAxMoMTQ1ODU2Njg4RDU4RUVCNjczRTU5 Q0MwMkQyMTExNENGNzhFODdFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7WFs2L1xoB8SEFk3Jz00E9BzeWKBAHXFrgr487Okx6+rfzIpneO97Y1ZEg tbKeEDFD43Jj5hs00Xj16lj90oekyCXA/d0TH5biexbOdAUk5UuRIT7tIIlnKTpL hy+lUQKwDS2Aa+HMqVzdy6ct+W1eePyOlogKzPI39+UZHiNy8bvEgs5m9adE/lgh nCXP+qE7Y+9cf3nc4GzpEEdKVNc4URLll5OhLkMZxSCIuvPkUmq/nZYBEbJ8qx23 4DSld/dErzSsReP3AjnnEu50fB7Qsu3j4Yg6mR7Z+4Mhrw0SFi7lFInTahfVrTYx xyw8Sq/9qNaXxQ/NO6clp1LjPQsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBRYVmiNWO62c+WcwC0hEUz3joflMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NmIwNWYzNi1lMTc0LTRkYWQtYmMyYS0wODkyNmM1ZGQwNDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2YjA1ZjM2 LWUxNzQtNGRhZC1iYzJhLTA4OTI2YzVkZDA0Ni8wLzE0NTg1NjY4OEQ1OEVFQjY3 M0U1OUNDMDJEMjExMTRDRjc4RTg3RTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQjowDQYJKoZIhvcNAQELBQADggEBAJAT302p5tk9VBp6Gjxvwdpl9MaXcN5J DM8melxgF+1nGS5BQ/GbnLZfnq4IFF/TCP/q8pj4BDD2e20mc/t5ioEyBCS8w2Ou VEPZ683P/AjVWsAInxgdgD9PTIEVe4z0k+i0usUJpSpdELU5m+fuoeUasjFCpapU euplfS/YH1svwbHohJY7VDKBNmrZDi1AYIF+6QSYL4H63BFIsb+2CwXGnM0rS9Jc LT9yX5tG0LhqTJQX0X5+TZEVP4UGvu5aGyqg0Qn+RgL+CBsnE9K0eiBSMJiab7X5 kJqNNKQDrzoBlLNjtQNOSUUoIVpj+9fnaazj1g8z8pLHSrgQZJeJbFE= -----END CERTIFICATE-----Generated at Sun Sep 7 10:15:07 2025 by rpki-client