$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer File: 46F8E3AC44B2F2208037674979268378CA60B901.cer (raw, json) Hash identifier: yJpNJCB3OXSkSlCjcKaJHWRAr2ayR5xQsfhddUdw0ew= Subject key identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 447B6D492FCA069DEBC60ED3E516259EFB43C03A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft caRepository: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 26 Feb 2025 14:13:23 +0000 Certificate not after: Wed 25 Feb 2026 14:18:23 +0000 Subordinate resources: IP: 157.20.218.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7b:6d:49:2f:ca:06:9d:eb:c6:0e:d3:e5:16:25:9e:fb:43:c0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 26 14:13:23 2025 GMT Not After : Feb 25 14:18:23 2026 GMT Subject: CN=46F8E3AC44B2F2208037674979268378CA60B901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:16:59:fa:61:f7:1e:8b:b3:ec:ad:dd:b6:8e: d0:36:9e:d5:e0:38:50:d3:ab:ec:55:37:b2:3d:c1: 9c:12:a2:f3:d0:7b:33:a9:79:23:a6:84:c6:a1:e6: 1f:5d:b5:43:df:39:14:1d:45:07:a6:ec:32:8f:fb: 9c:79:a8:b8:7f:99:83:97:52:84:b9:80:11:8e:de: cb:52:b1:62:02:50:96:c4:35:26:1b:13:ed:45:32: f1:b3:f3:26:d3:b7:1d:c3:a9:79:38:69:dd:5c:eb: 18:a5:3e:3b:51:99:3a:6f:1f:19:41:7d:0c:15:24: 35:8d:16:02:5c:43:a6:21:30:ad:93:d6:0a:e2:20: 0c:2a:cc:a1:c1:26:46:3a:33:5f:38:65:8b:35:0b: f1:45:8e:4a:7e:c2:bd:56:1a:a2:b4:e0:0a:f6:19: 9b:c3:d9:f0:1b:e8:23:81:b8:04:95:dc:71:e6:c8: 61:54:f5:6e:8a:a5:ad:c8:30:e9:f7:1e:45:2d:73: 30:85:fb:40:4f:f4:48:ef:d7:b2:ad:27:23:ed:49: de:f9:6b:a1:a8:5e:e0:a3:f2:ce:06:7f:08:37:58: 20:da:63:c4:86:fd:13:35:fe:e1:86:c7:43:77:5c: 96:d6:b5:fc:ed:9d:39:37:b1:0f:cf:ef:14:d5:ea: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 15:c4:a6:bc:7f:14:b2:93:52:4e:af:6e:3a:5f:6c:74:59:9b: e7:92:17:91:28:c1:f7:90:3e:fa:05:82:0b:e5:8f:94:93:57: 93:36:49:32:d5:41:e6:78:e7:59:86:71:20:ae:9a:b5:7f:3d: 06:e7:0f:ca:c8:cb:26:1c:01:ce:7a:8a:a3:83:d0:dd:be:4a: c5:d1:2c:4b:95:56:ca:94:0f:5a:fe:6b:0a:2e:66:3a:dd:33: 76:27:ed:fe:d4:3b:51:9c:a9:4c:51:2f:1c:4a:02:8c:9b:4a: af:6a:f8:b5:ea:49:67:59:8b:5d:05:ea:98:f5:eb:11:12:93: eb:35:13:04:a6:e9:ec:07:24:a9:63:27:93:b0:8f:46:c9:f3: 1f:10:2e:41:28:f3:fc:51:cb:d8:49:11:9c:57:5b:de:1b:a2: c6:9e:e0:65:bf:cf:ed:8a:14:bf:02:85:98:d4:ec:d8:11:11: 8b:61:f9:9c:ad:c8:d5:4f:57:bf:72:8f:fb:91:e1:5e:e1:b5: e4:cc:93:6e:f2:67:6d:c9:8f:9d:27:5b:34:ef:df:69:2b:0c: 6b:6b:f0:c6:9a:0a:21:ce:13:c7:50:69:ac:53:ac:e2:86:89: f2:6c:81:f0:c8:f5:6e:b2:25:32:1e:ca:f5:84:87:43:e6:e4: f8:55:f4:ec -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURHttSS/KBp3rxg7T5RYlnvtDwDowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIyNjE0MTMyM1oX DTI2MDIyNTE0MTgyM1owMzExMC8GA1UEAxMoNDZGOEUzQUM0NEIyRjIyMDgwMzc2 NzQ5NzkyNjgzNzhDQTYwQjkwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYWWfph9x6Ls+yt3baO0Dae1eA4UNOr7FU3sj3BnBKi89B7M6l5I6aExqHm H121Q985FB1FB6bsMo/7nHmouH+Zg5dShLmAEY7ey1KxYgJQlsQ1JhsT7UUy8bPz JtO3HcOpeThp3VzrGKU+O1GZOm8fGUF9DBUkNY0WAlxDpiEwrZPWCuIgDCrMocEm RjozXzhlizUL8UWOSn7CvVYaorTgCvYZm8PZ8BvoI4G4BJXccebIYVT1boqlrcgw 6fceRS1zMIX7QE/0SO/Xsq0nI+1J3vlroahe4KPyzgZ/CDdYINpjxIb9EzX+4YbH Q3dclta1/O2dOTexD8/vFNXqSUkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEb446xEsvIggDdnSXkmg3jKYLkBMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lMmU4M2FmZS0zYmRjLTQ0YjItYTcwMi1iNDU1NWRhYTY1ZWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZl LTNiZGMtNDRiMi1hNzAyLWI0NTU1ZGFhNjVlYS8wLzQ2RjhFM0FDNDRCMkYyMjA4 MDM3Njc0OTc5MjY4Mzc4Q0E2MEI5MDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFNowDQYJKoZIhvcNAQELBQADggEBABXEprx/FLKTUk6vbjpfbHRZm+eSF5Eo wfeQPvoFggvlj5STV5M2STLVQeZ451mGcSCumrV/PQbnD8rIyyYcAc56iqOD0N2+ SsXRLEuVVsqUD1r+awouZjrdM3Yn7f7UO1GcqUxRLxxKAoybSq9q+LXqSWdZi10F 6pj16xESk+s1EwSm6ewHJKljJ5Owj0bJ8x8QLkEo8/xRy9hJEZxXW94bosae4GW/ z+2KFL8ChZjU7NgREYth+ZytyNVPV79yj/uR4V7hteTMk27yZ23Jj50nWzTv32kr DGtr8MaaCiHOE8dQaaxTrOKGifJsgfDI9W6yJTIeyvWEh0Pm5PhV9Ow= -----END CERTIFICATE-----Generated at Mon Apr 7 04:14:32 2025 by rpki-client