$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/46F8E3AC44B2F2208037674979268378CA60B901.cer File: 46F8E3AC44B2F2208037674979268378CA60B901.cer (raw, json) Hash identifier: 05gRnyu3lTTxZBKuRA9rRnbWLMM09ySYJlqiF4/FzqY= Subject key identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 47294A175E45AD4F6AA79976ECF7D09C3624D120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft caRepository: rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Mar 2024 12:24:07 +0000 Certificate not after: Wed 26 Mar 2025 12:29:07 +0000 Subordinate resources: IP: 157.20.218.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:29:4a:17:5e:45:ad:4f:6a:a7:99:76:ec:f7:d0:9c:36:24:d1:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 27 12:24:07 2024 GMT Not After : Mar 26 12:29:07 2025 GMT Subject: CN=46F8E3AC44B2F2208037674979268378CA60B901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:16:59:fa:61:f7:1e:8b:b3:ec:ad:dd:b6:8e: d0:36:9e:d5:e0:38:50:d3:ab:ec:55:37:b2:3d:c1: 9c:12:a2:f3:d0:7b:33:a9:79:23:a6:84:c6:a1:e6: 1f:5d:b5:43:df:39:14:1d:45:07:a6:ec:32:8f:fb: 9c:79:a8:b8:7f:99:83:97:52:84:b9:80:11:8e:de: cb:52:b1:62:02:50:96:c4:35:26:1b:13:ed:45:32: f1:b3:f3:26:d3:b7:1d:c3:a9:79:38:69:dd:5c:eb: 18:a5:3e:3b:51:99:3a:6f:1f:19:41:7d:0c:15:24: 35:8d:16:02:5c:43:a6:21:30:ad:93:d6:0a:e2:20: 0c:2a:cc:a1:c1:26:46:3a:33:5f:38:65:8b:35:0b: f1:45:8e:4a:7e:c2:bd:56:1a:a2:b4:e0:0a:f6:19: 9b:c3:d9:f0:1b:e8:23:81:b8:04:95:dc:71:e6:c8: 61:54:f5:6e:8a:a5:ad:c8:30:e9:f7:1e:45:2d:73: 30:85:fb:40:4f:f4:48:ef:d7:b2:ad:27:23:ed:49: de:f9:6b:a1:a8:5e:e0:a3:f2:ce:06:7f:08:37:58: 20:da:63:c4:86:fd:13:35:fe:e1:86:c7:43:77:5c: 96:d6:b5:fc:ed:9d:39:37:b1:0f:cf:ef:14:d5:ea: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 46:F8:E3:AC:44:B2:F2:20:80:37:67:49:79:26:83:78:CA:60:B9:01 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e2e83afe-3bdc-44b2-a702-b4555daa65ea/0/46F8E3AC44B2F2208037674979268378CA60B901.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 53:dd:1f:86:72:48:a6:ec:7f:f4:a1:40:e7:03:fe:6a:eb:c2: 23:12:ac:35:d2:80:12:b3:c9:dd:1b:be:57:87:e9:25:09:e1: ed:15:c6:2f:39:dc:16:e2:e6:15:94:ed:60:c9:5d:04:df:5f: 19:fe:32:8e:4d:fe:8d:58:31:4e:58:c1:c1:47:db:94:7e:1b: 47:d4:cd:90:cd:e9:7c:a4:80:b4:46:a8:25:0c:8a:3f:4f:da: 61:c9:6e:67:bb:23:bf:86:59:a6:7e:cb:76:80:23:26:8b:6c: 7a:4f:44:da:66:1e:25:2e:da:8a:7a:a1:18:50:c1:bc:7a:57: e3:98:ad:9d:85:a2:a4:93:05:ae:fd:fd:2f:e7:81:e5:34:5b: 63:60:90:9b:9e:e9:1b:d2:7c:e7:38:56:92:59:85:76:35:a8: 34:37:e7:af:e8:ef:a5:c4:15:2a:ee:a3:5a:d6:06:fa:35:f9: bb:c4:1d:5c:37:e3:fc:ff:9c:7e:a1:2c:47:fe:01:33:ab:d5: 8f:6c:f5:ec:e0:96:8a:14:a1:67:53:d0:35:d3:d1:0b:0e:16: 68:23:7e:40:e6:9e:26:c5:d2:30:31:4a:c3:05:ad:42:31:0b: f1:2d:2e:19:ed:0b:6a:e2:ec:4d:34:3e:1d:27:cb:b6:ae:c3: cb:17:93:49 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURylKF15FrU9qp5l27PfQnDYk0SAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMyNzEyMjQwN1oX DTI1MDMyNjEyMjkwN1owMzExMC8GA1UEAxMoNDZGOEUzQUM0NEIyRjIyMDgwMzc2 NzQ5NzkyNjgzNzhDQTYwQjkwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYWWfph9x6Ls+yt3baO0Dae1eA4UNOr7FU3sj3BnBKi89B7M6l5I6aExqHm H121Q985FB1FB6bsMo/7nHmouH+Zg5dShLmAEY7ey1KxYgJQlsQ1JhsT7UUy8bPz JtO3HcOpeThp3VzrGKU+O1GZOm8fGUF9DBUkNY0WAlxDpiEwrZPWCuIgDCrMocEm RjozXzhlizUL8UWOSn7CvVYaorTgCvYZm8PZ8BvoI4G4BJXccebIYVT1boqlrcgw 6fceRS1zMIX7QE/0SO/Xsq0nI+1J3vlroahe4KPyzgZ/CDdYINpjxIb9EzX+4YbH Q3dclta1/O2dOTexD8/vFNXqSUkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEb446xEsvIggDdnSXkmg3jKYLkBMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lMmU4M2FmZS0zYmRjLTQ0YjItYTcwMi1iNDU1NWRhYTY1ZWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTgzYWZl LTNiZGMtNDRiMi1hNzAyLWI0NTU1ZGFhNjVlYS8wLzQ2RjhFM0FDNDRCMkYyMjA4 MDM3Njc0OTc5MjY4Mzc4Q0E2MEI5MDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFNowDQYJKoZIhvcNAQELBQADggEBAFPdH4ZySKbsf/ShQOcD/mrrwiMSrDXS gBKzyd0bvleH6SUJ4e0Vxi853Bbi5hWU7WDJXQTfXxn+Mo5N/o1YMU5YwcFH25R+ G0fUzZDN6XykgLRGqCUMij9P2mHJbme7I7+GWaZ+y3aAIyaLbHpPRNpmHiUu2op6 oRhQwbx6V+OYrZ2FoqSTBa79/S/ngeU0W2NgkJue6RvSfOc4VpJZhXY1qDQ356/o 76XEFSruo1rWBvo1+bvEHVw34/z/nH6hLEf+ATOr1Y9s9ezglooUoWdT0DXT0QsO FmgjfkDmnibF0jAxSsMFrUIxC/EtLhntC2ri7E00Ph0ny7auw8sXk0k= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org