$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer File: 4617272EE875B55CD5F2A88330A95F6410A3EB1B.cer (raw, json) Hash identifier: 8I63etrUdoh2Hb6Q72XSfZW5WtJ+ioOZQi1AcL8pGAQ= Subject key identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0640ED2FDA752C620C0F79F9271F2E23F736939D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft caRepository: rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 28 Feb 2025 17:53:37 +0000 Certificate not after: Fri 27 Feb 2026 17:58:37 +0000 Subordinate resources: IP: 157.15.44.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:40:ed:2f:da:75:2c:62:0c:0f:79:f9:27:1f:2e:23:f7:36:93:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 28 17:53:37 2025 GMT Not After : Feb 27 17:58:37 2026 GMT Subject: CN=4617272EE875B55CD5F2A88330A95F6410A3EB1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:af:46:af:6e:1c:52:a4:5a:90:60:13:02: 56:69:62:b9:7b:0c:e7:7e:fa:64:76:27:3c:b2:75: 66:66:ac:e2:86:0b:82:90:7c:e8:3b:e0:fa:c1:4c: 69:13:fb:b6:01:32:62:ea:9c:e3:93:e2:e8:3d:6c: 32:54:1c:a1:65:ce:cc:a3:62:5a:cd:fd:29:b9:96: 5e:84:87:f6:5a:0b:63:3e:06:0c:ca:3e:22:dd:fc: 6a:0d:4d:fe:5a:e1:fb:97:c2:e1:eb:b9:7b:e4:d7: a1:25:22:92:6b:56:c9:5c:5e:f3:1f:3b:0c:96:f4: 5c:82:c7:3c:80:d2:83:8b:e8:77:48:5c:79:62:f5: f7:d2:5c:a5:2b:1c:ea:2a:a7:4a:e9:b5:64:c3:7f: c9:2e:dd:07:3c:95:d0:be:53:48:9e:35:9c:32:d4: 88:db:ae:4d:7b:b5:28:ba:72:f0:98:23:ba:71:70: d5:4d:4f:2a:6b:e3:b8:fd:ad:16:76:93:35:7a:81: ef:c5:19:d6:6b:6a:e3:d0:3a:76:54:7d:9b:63:d0: b4:74:d3:ce:61:fb:97:ec:46:80:01:33:46:2d:44: 9f:39:95:cb:df:06:9e:93:bc:5b:76:13:67:39:05: eb:5f:2c:3d:d2:6b:b8:26:76:7c:a8:9a:6f:5b:52: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 46:17:27:2E:E8:75:B5:5C:D5:F2:A8:83:30:A9:5F:64:10:A3:EB:1B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9fdaf06a-f624-42cf-bb19-b6bbf931aac8/0/4617272EE875B55CD5F2A88330A95F6410A3EB1B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.44.0/23 Signature Algorithm: sha256WithRSAEncryption 14:10:b0:d4:32:fd:fc:8a:2f:1a:8f:93:70:6c:67:f7:81:77: 99:3c:b8:c5:e8:e2:57:46:2c:b1:2e:42:3b:0b:c8:54:c4:a1: f8:7d:37:87:c6:fe:fa:92:87:7b:47:2f:41:6e:e3:97:dc:30: 2d:d0:72:30:17:f2:ca:25:e9:12:6e:37:69:94:79:9b:5a:b4: be:a2:8e:85:df:9f:50:b3:8c:05:70:61:2e:d0:59:ec:4c:5f: ba:ec:3e:c5:9e:5f:76:2e:a8:d0:cc:fc:35:5b:f1:b8:e4:9a: 7c:32:ed:63:58:72:5a:da:1a:0b:1a:b7:8a:21:e7:cc:c9:c8: b7:f6:f3:9b:10:71:16:60:6e:bc:7a:46:13:8a:93:75:16:4b: 0e:42:7a:ad:15:b8:59:88:22:4b:8d:36:1f:91:8e:f1:81:9f: 29:d5:d9:57:44:66:c1:09:d6:60:8f:08:f2:48:6a:18:c0:93: ac:59:9c:33:d0:70:55:25:fb:94:05:22:a8:d1:6a:63:45:9b: ef:33:62:af:80:25:5b:24:92:cc:c0:94:64:17:03:91:5a:a4: aa:5c:c4:7c:0d:20:64:ca:2e:10:77:64:65:b9:d2:f4:6c:2f: 22:e0:e2:98:56:dc:5b:b3:e1:60:0d:d8:ec:94:c6:8f:de:d8: 79:b2:60:8c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBkDtL9p1LGIMD3n5Jx8uI/c2k50wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIyODE3NTMzN1oX DTI2MDIyNzE3NTgzN1owMzExMC8GA1UEAxMoNDYxNzI3MkVFODc1QjU1Q0Q1RjJB ODgzMzBBOTVGNjQxMEEzRUIxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhHr0avbhxSpFqQYBMCVmliuXsM5376ZHYnPLJ1Zmas4oYLgpB86Dvg+sFM aRP7tgEyYuqc45Pi6D1sMlQcoWXOzKNiWs39KbmWXoSH9loLYz4GDMo+It38ag1N /lrh+5fC4eu5e+TXoSUikmtWyVxe8x87DJb0XILHPIDSg4vod0hceWL199JcpSsc 6iqnSum1ZMN/yS7dBzyV0L5TSJ41nDLUiNuuTXu1KLpy8JgjunFw1U1PKmvjuP2t FnaTNXqB78UZ1mtq49A6dlR9m2PQtHTTzmH7l+xGgAEzRi1EnzmVy98GnpO8W3YT ZzkF618sPdJruCZ2fKiab1tS0d0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEYXJy7odbVc1fKogzCpX2QQo+sbMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZmRhZjA2YS1mNjI0LTQyY2YtYmIxOS1iNmJiZjkzMWFhYzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlmZGFmMDZh LWY2MjQtNDJjZi1iYjE5LWI2YmJmOTMxYWFjOC8wLzQ2MTcyNzJFRTg3NUI1NUNE NUYyQTg4MzMwQTk1RjY0MTBBM0VCMUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdDywwDQYJKoZIhvcNAQELBQADggEBABQQsNQy/fyKLxqPk3BsZ/eBd5k8uMXo 4ldGLLEuQjsLyFTEofh9N4fG/vqSh3tHL0Fu45fcMC3QcjAX8sol6RJuN2mUeZta tL6ijoXfn1CzjAVwYS7QWexMX7rsPsWeX3YuqNDM/DVb8bjkmnwy7WNYclraGgsa t4oh58zJyLf285sQcRZgbrx6RhOKk3UWSw5Ceq0VuFmIIkuNNh+RjvGBnynV2VdE ZsEJ1mCPCPJIahjAk6xZnDPQcFUl+5QFIqjRamNFm+8zYq+AJVskkszAlGQXA5Fa pKpcxHwNIGTKLhB3ZGW50vRsLyLg4phW3Fuz4WAN2OyUxo/e2HmyYIw= -----END CERTIFICATE-----Generated at Mon Apr 7 11:31:27 2025 by rpki-client