$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer File: 2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.cer (raw, json) Hash identifier: LRs3EPH86+SOHVOyVV0klVR0EkJsdcp16Q62Uxk+LaI= Subject key identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3B79DA0A0E76987F00EDB4572F921353860667F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft caRepository: rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Mar 2026 22:22:26 +0000 Certificate not after: Mon 01 Mar 2027 22:27:26 +0000 Subordinate resources: IP: 157.15.144.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:79:da:0a:0e:76:98:7f:00:ed:b4:57:2f:92:13:53:86:06:67:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 2 22:22:26 2026 GMT Not After : Mar 1 22:27:26 2027 GMT Subject: CN=2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:e8:d2:aa:e0:65:53:8f:33:72:5d:49:e2: 8a:2e:8b:8a:69:9e:5b:c1:d3:7a:fd:00:44:d2:37: 7b:be:ff:cc:7a:b4:74:8a:a2:ad:fa:8b:70:05:06: b6:1d:8b:e9:a8:59:50:64:2b:06:e6:f0:ba:0e:33: 3f:a2:9b:a2:75:db:f9:46:08:cb:48:fc:25:3f:e2: 51:77:43:59:b7:8e:e4:8a:9b:22:ef:89:5a:ff:ab: 91:97:a6:3b:da:58:ad:bc:b2:39:37:ea:a6:46:3d: 26:18:bc:53:1c:6b:c7:ec:5d:ea:bf:99:b1:84:37: d0:25:a5:ba:eb:e4:ea:2b:ca:0c:30:63:50:a0:da: 29:bc:7f:16:e9:db:cf:26:21:d1:19:db:a0:ba:8b: 81:fa:14:e7:12:22:31:47:a0:0c:aa:40:83:a4:a4: ab:5e:d5:af:5c:b5:9c:2b:e5:81:d7:d7:17:f1:01: 3e:7b:58:b1:24:f0:9c:b4:c3:e4:f1:7d:91:8c:ea: 7f:4a:8a:02:fe:84:4a:ae:ad:7b:18:df:93:2a:67: ed:f1:fa:2c:af:db:4f:4f:33:eb:01:02:2d:c3:5f: bb:c6:2a:50:89:0d:38:1a:aa:46:e1:18:7e:63:e7: ee:16:a7:aa:26:8b:cf:7b:50:d2:76:4d:f0:59:e3: 67:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 22:46:01:5F:FF:2F:C5:5F:EF:B9:C4:4A:8A:D4:16:B5:5F:A5:E7:3F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a56eccb7-e917-40f5-acee-03d68be5fd97/0/2246015FFF2FC55FEFB9C44A8AD416B55FA5E73F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.144.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:7d:eb:cd:ef:d1:de:4a:69:64:11:1a:b4:d9:09:b6:08:d3: 50:fe:b7:d2:2d:51:31:d1:b0:d8:d1:ad:f0:85:f9:b7:01:ff: df:7d:30:c0:d3:7f:37:32:cd:e7:88:3e:c2:89:42:8a:f7:d8: 21:f3:20:e5:46:c2:b6:8a:fd:3f:00:52:c4:3d:db:2b:53:57: 43:a1:9d:08:70:7f:59:16:6f:a8:f0:69:d9:a5:c0:57:b2:47: 32:63:1a:50:6e:29:7f:fd:28:fe:99:04:29:78:58:23:2d:df: 47:d1:07:70:9f:b6:8c:d9:0d:a3:fc:b0:bd:4b:a9:30:ce:d6: 0b:c9:b2:9d:35:90:35:e1:1d:78:d1:12:09:85:35:e0:22:d3: 17:31:62:95:46:d0:b8:02:97:b5:37:da:74:05:bf:fb:6b:7f: 01:4e:b7:95:ca:1c:a2:a0:1b:3a:78:ea:ef:d8:ce:7b:6f:4d: 24:9a:d7:83:a3:3c:fb:c8:7e:fb:97:37:64:37:86:88:42:b3: 82:d4:d5:2a:14:62:1b:3f:6a:1b:c1:56:12:81:54:9b:1d:fc: 6c:f0:a3:36:36:eb:5e:98:97:48:83:7f:34:cb:48:f8:15:26: 5e:81:db:d6:66:5e:0f:be:12:a1:33:0f:b5:27:8c:56:88:96: 80:f7:9b:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUO3naCg52mH8A7bRXL5ITU4YGZ/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDMwMjIyMjIyNloX DTI3MDMwMTIyMjcyNlowMzExMC8GA1UEAxMoMjI0NjAxNUZGRjJGQzU1RkVGQjlD NDRBOEFENDE2QjU1RkE1RTczRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfk6NKq4GVTjzNyXUniii6LimmeW8HTev0ARNI3e77/zHq0dIqirfqLcAUG th2L6ahZUGQrBubwug4zP6KbonXb+UYIy0j8JT/iUXdDWbeO5IqbIu+JWv+rkZem O9pYrbyyOTfqpkY9Jhi8Uxxrx+xd6r+ZsYQ30CWluuvk6ivKDDBjUKDaKbx/Funb zyYh0RnboLqLgfoU5xIiMUegDKpAg6Skq17Vr1y1nCvlgdfXF/EBPntYsSTwnLTD 5PF9kYzqf0qKAv6ESq6texjfkypn7fH6LK/bT08z6wECLcNfu8YqUIkNOBqqRuEY fmPn7hanqiaLz3tQ0nZN8FnjZzECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCJGAV//L8Vf77nESorUFrVfpec/MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNTZlY2NiNy1lOTE3LTQwZjUtYWNlZS0wM2Q2OGJlNWZkOTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1NmVjY2I3 LWU5MTctNDBmNS1hY2VlLTAzZDY4YmU1ZmQ5Ny8wLzIyNDYwMTVGRkYyRkM1NUZF RkI5QzQ0QThBRDQxNkI1NUZBNUU3M0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdD5AwDQYJKoZIhvcNAQELBQADggEBAIx9683v0d5KaWQRGrTZCbYI01D+t9It UTHRsNjRrfCF+bcB/999MMDTfzcyzeeIPsKJQor32CHzIOVGwraK/T8AUsQ92ytT V0OhnQhwf1kWb6jwadmlwFeyRzJjGlBuKX/9KP6ZBCl4WCMt30fRB3CftozZDaP8 sL1LqTDO1gvJsp01kDXhHXjREgmFNeAi0xcxYpVG0LgCl7U32nQFv/trfwFOt5XK HKKgGzp46u/YzntvTSSa14OjPPvIfvuXN2Q3hohCs4LU1SoUYhs/ahvBVhKBVJsd /GzwozY2616Yl0iDfzTLSPgVJl6B29ZmXg++EqEzD7UnjFaIloD3m1E= -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:05 2026 by rpki-client