$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer File: 2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer (raw, json) Hash identifier: Eql6BU5vYmEWSj/nId5BTSlWk0ImVzxLIu8eZ+lQ37g= Subject key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 146DB3786FE3BECABE91AED2AAD4D8409A4E8218 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft caRepository: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Mar 2025 17:07:50 +0000 Certificate not after: Mon 30 Mar 2026 17:12:50 +0000 Subordinate resources: IP: 157.15.144.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6d:b3:78:6f:e3:be:ca:be:91:ae:d2:aa:d4:d8:40:9a:4e:82:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 31 17:07:50 2025 GMT Not After : Mar 30 17:12:50 2026 GMT Subject: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:e8:d2:aa:e0:65:53:8f:33:72:5d:49:e2: 8a:2e:8b:8a:69:9e:5b:c1:d3:7a:fd:00:44:d2:37: 7b:be:ff:cc:7a:b4:74:8a:a2:ad:fa:8b:70:05:06: b6:1d:8b:e9:a8:59:50:64:2b:06:e6:f0:ba:0e:33: 3f:a2:9b:a2:75:db:f9:46:08:cb:48:fc:25:3f:e2: 51:77:43:59:b7:8e:e4:8a:9b:22:ef:89:5a:ff:ab: 91:97:a6:3b:da:58:ad:bc:b2:39:37:ea:a6:46:3d: 26:18:bc:53:1c:6b:c7:ec:5d:ea:bf:99:b1:84:37: d0:25:a5:ba:eb:e4:ea:2b:ca:0c:30:63:50:a0:da: 29:bc:7f:16:e9:db:cf:26:21:d1:19:db:a0:ba:8b: 81:fa:14:e7:12:22:31:47:a0:0c:aa:40:83:a4:a4: ab:5e:d5:af:5c:b5:9c:2b:e5:81:d7:d7:17:f1:01: 3e:7b:58:b1:24:f0:9c:b4:c3:e4:f1:7d:91:8c:ea: 7f:4a:8a:02:fe:84:4a:ae:ad:7b:18:df:93:2a:67: ed:f1:fa:2c:af:db:4f:4f:33:eb:01:02:2d:c3:5f: bb:c6:2a:50:89:0d:38:1a:aa:46:e1:18:7e:63:e7: ee:16:a7:aa:26:8b:cf:7b:50:d2:76:4d:f0:59:e3: 67:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/23 Signature Algorithm: sha256WithRSAEncryption 19:9c:1f:e2:31:a6:35:8d:79:85:cd:0c:ef:2d:af:84:b7:99: 39:7a:b3:28:db:db:18:ca:4e:0c:31:96:fd:e5:fd:51:a5:e1: 83:ae:3c:58:54:f1:f6:5a:31:14:43:10:3e:de:1b:6c:73:43: f5:dc:8b:50:ad:c5:49:dd:fe:a0:ae:ff:b5:33:c2:0e:a8:cb: 36:43:0d:b3:31:2a:2b:c6:16:c6:07:ae:35:ac:df:09:00:66: b2:9b:a3:37:7c:c6:83:97:f2:87:68:f2:9e:d7:4b:b8:95:46: 67:31:cf:49:7f:64:9d:c6:73:79:39:13:a8:86:ae:9b:ba:1b: a7:4a:35:eb:71:8c:63:35:c7:a9:5f:f7:c2:7f:27:98:aa:5f: 73:e3:11:66:4d:e2:9d:d6:b1:00:ff:62:61:09:9a:eb:57:8a: 2b:91:02:f1:8d:fb:f2:49:94:75:3a:45:94:88:cd:b3:20:6a: 85:90:46:e0:2a:90:3e:a5:4e:fe:e3:0a:8f:69:d9:43:e7:e6: 01:cc:be:1e:27:3a:11:1d:4f:46:91:84:eb:92:e0:47:b4:d3: 78:f6:19:17:d8:39:07:bd:05:c7:25:64:ec:33:d8:db:22:21: c7:40:31:cf:3f:b8:d8:a1:c7:01:a7:ec:6e:0c:d8:21:d6:ee: 8c:64:6e:22 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFG2zeG/jvsq+ka7SqtTYQJpOghgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDMzMTE3MDc1MFoX DTI2MDMzMDE3MTI1MFowMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlD NDRBOEFENDE2QjU1RkE1RTczRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfk6NKq4GVTjzNyXUniii6LimmeW8HTev0ARNI3e77/zHq0dIqirfqLcAUG th2L6ahZUGQrBubwug4zP6KbonXb+UYIy0j8JT/iUXdDWbeO5IqbIu+JWv+rkZem O9pYrbyyOTfqpkY9Jhi8Uxxrx+xd6r+ZsYQ30CWluuvk6ivKDDBjUKDaKbx/Funb zyYh0RnboLqLgfoU5xIiMUegDKpAg6Skq17Vr1y1nCvlgdfXF/EBPntYsSTwnLTD 5PF9kYzqf0qKAv6ESq6texjfkypn7fH6LK/bT08z6wECLcNfu8YqUIkNOBqqRuEY fmPn7hanqiaLz3tQ0nZN8FnjZzECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCJGAV//L8Vf77nESorUFrVfpec/MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3 LWU5MTctNDBmNS1hY2VlLTAzZDY4YmU1ZmQ5Ny8wLzIyNDYwMTVGRkYyRkM1NUZF RkI5QzQ0QThBRDQxNkI1NUZBNUU3M0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdD5AwDQYJKoZIhvcNAQELBQADggEBABmcH+IxpjWNeYXNDO8tr4S3mTl6syjb 2xjKTgwxlv3l/VGl4YOuPFhU8fZaMRRDED7eG2xzQ/Xci1CtxUnd/qCu/7Uzwg6o yzZDDbMxKivGFsYHrjWs3wkAZrKbozd8xoOX8odo8p7XS7iVRmcxz0l/ZJ3Gc3k5 E6iGrpu6G6dKNetxjGM1x6lf98J/J5iqX3PjEWZN4p3WsQD/YmEJmutXiiuRAvGN +/JJlHU6RZSIzbMgaoWQRuAqkD6lTv7jCo9p2UPn5gHMvh4nOhEdT0aRhOuS4Ee0 03j2GRfYOQe9BcclZOwz2NsiIcdAMc8/uNihxwGn7G4M2CHW7oxkbiI= -----END CERTIFICATE-----Generated at Mon Apr 7 03:29:43 2025 by rpki-client