$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer File: 6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer (raw, json) Hash identifier: 5sBPw8e4lLtnUwDor1qpn53jD8UUYYowFBKeXQmBvHM= Subject key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 38BCDFD79BA4848E9A21BA1C725E595DCC748E8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft caRepository: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 06 Jun 2025 15:09:39 +0000 Certificate not after: Fri 05 Jun 2026 15:14:39 +0000 Subordinate resources: IP: 157.66.18.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 03:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bc:df:d7:9b:a4:84:8e:9a:21:ba:1c:72:5e:59:5d:cc:74:8e:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 6 15:09:39 2025 GMT Not After : Jun 5 15:14:39 2026 GMT Subject: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:b0:98:f0:ba:05:f9:96:7d:7e:65:af:6f: 1b:1b:80:18:f8:b3:18:a9:62:8a:bf:cc:33:96:79: 0f:78:21:1c:62:ec:61:81:d8:16:7e:6d:d4:0b:f2: b9:02:5c:31:4f:4f:12:99:3c:5a:a5:e9:b8:7d:e6: 2e:4f:68:6d:72:04:1f:0a:39:63:7e:9c:43:7a:22: b9:92:00:2d:02:d9:d3:11:4a:11:1b:49:fa:dc:98: f3:b6:ee:75:52:f1:8d:16:2e:ae:0a:21:b3:d1:27: 2e:b0:a7:8b:54:9f:bb:ae:a0:c6:f1:b2:22:c4:c6: 88:70:19:51:73:02:b0:e0:c3:18:9b:5c:83:10:18: c4:e8:98:d0:b7:66:26:9a:32:5d:44:c0:9c:fc:e7: 7d:f6:67:5c:9c:67:bb:f9:8e:09:13:06:bc:df:e5: 47:a0:ac:b8:18:b3:32:c9:d8:56:78:d3:31:37:e8: df:fb:f2:19:93:3b:e4:fd:bb:f1:66:9b:4b:56:db: cf:7f:af:d4:af:ca:0a:d8:eb:57:8f:49:01:56:1c: 90:4c:12:a8:f4:de:d3:4a:ad:d5:3c:1f:35:d4:fe: 92:fc:aa:b1:11:e0:0c:90:cf:f5:14:2a:a9:02:d8: be:f0:53:c3:db:96:6e:ad:56:4d:69:dd:95:52:8c: cd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.18.0/23 Signature Algorithm: sha256WithRSAEncryption 05:18:ea:fb:60:4a:10:1e:d4:3b:89:77:6d:57:32:3e:83:2a: 4e:72:b7:11:2c:6a:8a:cb:e5:32:64:fa:eb:cd:71:ca:d5:e7: 41:9f:3a:9f:e8:31:fa:32:bd:ce:dc:a1:c8:39:dd:f2:6c:b8: 05:10:d5:f2:c8:76:fb:b0:d2:20:a3:04:71:77:27:d8:59:b0: f3:70:ae:dd:1b:04:a3:bd:87:17:bb:1a:a3:33:01:58:2f:e0: 71:1c:09:4d:c0:00:57:b7:97:f5:78:81:10:0c:6d:d1:b9:a3: 1f:05:9c:1c:19:16:2b:ae:71:cb:7f:c9:72:54:f1:a2:27:c2: e9:92:f2:43:a5:91:ec:3a:98:77:ec:ed:89:31:8a:78:e7:bb: a2:1f:8a:18:35:33:0d:02:e5:bd:75:14:27:26:04:1c:c6:b1: 30:27:f5:90:52:a7:c8:90:ee:4c:8d:f3:f2:f7:ce:a9:5c:f7: 21:15:30:94:cf:0f:03:01:34:6b:99:32:5d:24:cd:dc:1a:51: c1:8d:66:dc:55:9c:3a:22:dc:2c:0d:c3:27:5a:39:68:a3:2f: be:a1:0c:95:e0:1c:82:d3:84:00:5a:82:25:bc:20:79:3e:9b: 8d:75:77:40:c0:b8:21:96:6f:31:39:94:b3:79:60:1d:ef:43: 56:fe:f4:b1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUOLzf15ukhI6aIboccl5ZXcx0joowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDYwNjE1MDkzOVoX DTI2MDYwNTE1MTQzOVowMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNE NEVDQjYwMDlDQ0Y3OEM5QkMyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL92sJjwugX5ln1+Za9vGxuAGPizGKliir/MM5Z5D3ghHGLsYYHYFn5t1Avy uQJcMU9PEpk8WqXpuH3mLk9obXIEHwo5Y36cQ3oiuZIALQLZ0xFKERtJ+tyY87bu dVLxjRYurgohs9EnLrCni1Sfu66gxvGyIsTGiHAZUXMCsODDGJtcgxAYxOiY0Ldm JpoyXUTAnPznffZnXJxnu/mOCRMGvN/lR6CsuBizMsnYVnjTMTfo3/vyGZM75P27 8WabS1bbz3+v1K/KCtjrV49JAVYckEwSqPTe00qt1TwfNdT+kvyqsRHgDJDP9RQq qQLYvvBTw9uWbq1WTWndlVKMzakCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGQoNhUil37HT6PU7LYAnM94ybwoMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYz LTA5YmMtNDkxYi04ZmI5LWZkMzlmMDkxNjY5ZC8wLzY0MjgzNjE1MjI5NzdFQzc0 RkEzRDRFQ0I2MDA5Q0NGNzhDOUJDMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQhIwDQYJKoZIhvcNAQELBQADggEBAAUY6vtgShAe1DuJd21XMj6DKk5ytxEs aorL5TJk+uvNccrV50GfOp/oMfoyvc7cocg53fJsuAUQ1fLIdvuw0iCjBHF3J9hZ sPNwrt0bBKO9hxe7GqMzAVgv4HEcCU3AAFe3l/V4gRAMbdG5ox8FnBwZFiuucct/ yXJU8aInwumS8kOlkew6mHfs7Ykxinjnu6Ifihg1Mw0C5b11FCcmBBzGsTAn9ZBS p8iQ7kyN8/L3zqlc9yEVMJTPDwMBNGuZMl0kzdwaUcGNZtxVnDoi3CwNwydaOWij L76hDJXgHILThABagiW8IHk+m411d0DAuCGWbzE5lLN5YB3vQ1b+9LE= -----END CERTIFICATE-----Generated at Mon Oct 20 20:31:52 2025 by rpki-client