$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/575614534DD1047EA1BA290176D96470FCBA1ECA.cer File: 575614534DD1047EA1BA290176D96470FCBA1ECA.cer (raw, json) Hash identifier: ueTLE/t7WEdJKcdRvN3nsEEr5R2bpPDSxCpRikd8lxA= Subject key identifier: 57:56:14:53:4D:D1:04:7E:A1:BA:29:01:76:D9:64:70:FC:BA:1E:CA Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 65EF6D2AB96EE977F2B04DADBFB69DFFFF36903F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f17f79b0-b9e3-4c3d-a113-b6c6a18af4d1/0/575614534DD1047EA1BA290176D96470FCBA1ECA.mft caRepository: rsync://repo-rpki.idnic.net/repo/f17f79b0-b9e3-4c3d-a113-b6c6a18af4d1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 27 May 2025 18:46:17 +0000 Certificate not after: Tue 26 May 2026 18:51:17 +0000 Subordinate resources: IP: 160.22.90.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ef:6d:2a:b9:6e:e9:77:f2:b0:4d:ad:bf:b6:9d:ff:ff:36:90:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 27 18:46:17 2025 GMT Not After : May 26 18:51:17 2026 GMT Subject: CN=575614534DD1047EA1BA290176D96470FCBA1ECA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d1:0f:45:ed:e4:e4:23:12:97:11:89:65:77: 5a:4b:c5:40:d3:c9:95:d2:c3:7f:bc:2e:9e:73:d5: 55:92:79:fc:21:2c:48:85:b9:ad:4a:84:45:34:a3: a3:8e:d2:e8:ad:0d:d7:5a:8a:12:c1:d9:35:76:35: 66:86:08:db:32:19:de:c7:d5:3b:c7:b6:6d:60:1e: 04:64:51:1d:9a:41:2b:92:0a:7c:de:6d:0f:e7:41: 9f:17:21:68:5f:30:19:74:f5:2a:39:53:87:cb:84: 63:ad:99:d4:71:ea:8f:fd:84:67:3a:65:55:99:5a: 6d:15:3d:53:78:84:40:e3:8a:f4:6a:fb:78:b3:44: 0b:de:a5:a6:90:07:f7:96:ce:3d:74:4d:f9:be:e1: fb:9b:25:b2:2e:c6:5c:40:78:f4:1d:09:62:69:cc: 41:35:07:ab:ea:17:b2:a1:77:7b:0a:f0:97:c0:76: 95:67:d0:f9:91:3a:c7:4a:cb:e9:3a:dc:6b:a7:53: 42:36:1c:db:f8:89:8c:2d:ee:88:49:6b:29:5f:ea: ab:9e:7c:b8:91:ea:56:fd:c8:4e:9c:ca:fb:1b:86: 9b:f7:10:f0:62:a0:c8:7a:bb:f0:fa:a4:a8:b6:ff: 5a:ba:18:a9:be:45:1e:e6:7e:3c:d6:6f:7c:cb:ea: bb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:56:14:53:4D:D1:04:7E:A1:BA:29:01:76:D9:64:70:FC:BA:1E:CA X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f17f79b0-b9e3-4c3d-a113-b6c6a18af4d1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f17f79b0-b9e3-4c3d-a113-b6c6a18af4d1/0/575614534DD1047EA1BA290176D96470FCBA1ECA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.90.0/24 Signature Algorithm: sha256WithRSAEncryption 32:61:04:cf:5e:7a:46:bb:81:d1:c6:ad:21:7f:c1:4d:ba:ef: 0e:48:b1:44:67:ec:c0:64:11:3b:f8:32:ca:dd:eb:8a:7a:8f: 14:d8:2f:da:d2:f4:8f:7e:b7:4a:24:4a:1e:9a:69:7d:00:f0: bd:48:e4:bb:04:65:0d:71:15:50:63:65:3f:4b:b5:63:e1:d6: 43:bf:58:00:dc:45:67:5c:e6:1b:08:7b:53:37:91:af:1a:52: d9:7a:cd:c9:a4:ab:f1:20:df:0d:a3:f9:b1:b7:6a:88:ed:3a: 43:1d:a3:8e:ad:3a:4a:0c:da:8f:b9:5c:6b:45:37:3e:5d:5c: d6:4f:7d:7f:c8:9b:c2:4a:22:fb:ed:59:dd:f0:cd:3a:a9:14: d5:9f:33:1b:fd:d7:f5:00:bc:e5:1e:c5:82:f5:17:72:da:86: 81:f7:a7:d5:2c:4a:5b:11:56:05:87:ea:c4:9c:d4:c4:9f:96: a1:45:4c:64:3a:67:cc:39:9c:d9:45:df:1f:a9:82:7b:00:a9: 5f:2c:ba:a2:f6:47:43:66:74:cd:d3:cd:23:be:96:30:18:c1: e6:05:2c:bc:47:8b:b7:c3:85:5b:71:ec:18:0e:e7:fd:2e:61: ca:a8:5a:53:d3:c6:e3:d7:05:2b:9b:88:17:dc:1f:67:6c:91: a8:db:ac:b0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZe9tKrlu6XfysE2tv7ad//82kD8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUyNzE4NDYxN1oX DTI2MDUyNjE4NTExN1owMzExMC8GA1UEAxMoNTc1NjE0NTM0REQxMDQ3RUExQkEy OTAxNzZEOTY0NzBGQ0JBMUVDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKjRD0Xt5OQjEpcRiWV3WkvFQNPJldLDf7wunnPVVZJ5/CEsSIW5rUqERTSj o47S6K0N11qKEsHZNXY1ZoYI2zIZ3sfVO8e2bWAeBGRRHZpBK5IKfN5tD+dBnxch aF8wGXT1KjlTh8uEY62Z1HHqj/2EZzplVZlabRU9U3iEQOOK9Gr7eLNEC96lppAH 95bOPXRN+b7h+5slsi7GXEB49B0JYmnMQTUHq+oXsqF3ewrwl8B2lWfQ+ZE6x0rL 6Trca6dTQjYc2/iJjC3uiElrKV/qq558uJHqVv3ITpzK+xuGm/cQ8GKgyHq78Pqk qLb/WroYqb5FHuZ+PNZvfMvqu6sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFdWFFNN0QR+obopAXbZZHD8uh7KMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTdmNzliMC1iOWUzLTRjM2QtYTExMy1iNmM2YTE4YWY0ZDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxN2Y3OWIw LWI5ZTMtNGMzZC1hMTEzLWI2YzZhMThhZjRkMS8wLzU3NTYxNDUzNEREMTA0N0VB MUJBMjkwMTc2RDk2NDcwRkNCQTFFQ0EubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgFlowDQYJKoZIhvcNAQELBQADggEBADJhBM9eeka7gdHGrSF/wU267w5IsURn 7MBkETv4Msrd64p6jxTYL9rS9I9+t0okSh6aaX0A8L1I5LsEZQ1xFVBjZT9LtWPh 1kO/WADcRWdc5hsIe1M3ka8aUtl6zcmkq/Eg3w2j+bG3aojtOkMdo46tOkoM2o+5 XGtFNz5dXNZPfX/Im8JKIvvtWd3wzTqpFNWfMxv91/UAvOUexYL1F3LahoH3p9Us SlsRVgWH6sSc1MSflqFFTGQ6Z8w5nNlF3x+pgnsAqV8suqL2R0NmdM3TzSO+ljAY weYFLLxHi7fDhVtx7BgO5/0uYcqoWlPTxuPXBSubiBfcH2dskajbrLA= -----END CERTIFICATE-----Generated at Wed Jun 4 11:38:32 2025 by rpki-client