$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer File: 8107B8970680BF15377E222E6093ED124116C40F.cer (raw, json) Hash identifier: MXhtJXe3hQ88s2lPX1P2hrEgOt31BgZgz1yvlN0m6rQ= Subject key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 11257B300C55F75019BBC20D4705C91BBC36F43E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft caRepository: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 29 Aug 2025 20:42:21 +0000 Certificate not after: Fri 28 Aug 2026 20:47:21 +0000 Subordinate resources: IP: 160.22.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 14:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:25:7b:30:0c:55:f7:50:19:bb:c2:0d:47:05:c9:1b:bc:36:f4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 29 20:42:21 2025 GMT Not After : Aug 28 20:47:21 2026 GMT Subject: CN=8107B8970680BF15377E222E6093ED124116C40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:90:fe:ec:65:ee:73:c5:b5:a4:0e:e1:bb:9f: ab:87:f9:c3:02:88:82:0e:31:7c:6f:f9:34:a2:5a: f8:ae:14:cb:41:4e:57:46:7f:69:0f:67:8f:2f:33: 3d:b6:c2:0c:e1:62:57:f2:75:c3:fa:b3:78:80:b6: 35:42:dc:d2:1b:ed:8f:f7:c1:d5:21:c4:68:cf:0c: bd:cd:88:c5:40:dd:af:c7:42:a3:01:1a:90:04:25: 17:9e:71:71:44:0d:c8:71:b6:a4:0f:94:64:64:aa: e0:7c:2d:b2:47:b7:1f:0d:a5:f6:6e:12:bd:bc:f0: 01:e8:a0:65:c8:f7:a3:78:63:df:6b:4e:71:a4:67: 2b:7a:6c:15:fe:72:fd:76:76:6d:0b:00:f3:c5:13: 92:83:d7:1d:c4:c6:ec:31:24:62:83:ba:c7:9d:63: 8e:3f:d5:d4:90:1a:d9:dc:72:d8:49:94:40:e9:62: d7:34:9f:17:65:6f:d1:c6:ca:20:55:67:23:67:71: a0:c8:02:32:a7:65:a7:5c:f9:0c:91:77:98:26:22: 1e:3d:0b:a5:ef:82:ad:ef:8d:73:18:22:8f:0b:28: d1:51:2b:01:ed:2c:1b:f1:99:4d:78:c5:07:e3:54: 4f:7b:1d:fe:0a:57:63:c4:f1:a1:72:d6:8e:c1:0d: 10:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 56:0d:c1:77:65:52:c0:b6:4a:f6:0f:ec:a8:d7:7c:4b:45:72: 2d:c1:01:e0:bb:54:ec:35:aa:3f:a0:e1:36:77:01:5a:c1:3c: c9:cf:6b:a8:6f:32:cc:39:98:cd:e4:a2:a3:d4:d4:2d:62:22: 89:1a:a0:ce:32:44:29:fa:92:20:e5:b0:59:08:b5:34:4d:60: 3a:ff:69:8d:e8:99:8d:c0:73:25:12:d9:29:d5:9a:16:32:2e: 28:de:cf:99:65:e7:e5:b1:e5:48:05:e9:d0:f9:b4:ef:b4:40: e2:bf:9c:42:53:e4:d1:4a:1b:f2:de:2f:72:44:71:1c:b0:f2: a4:25:46:5b:92:c0:e6:48:45:76:e6:fe:7f:dc:28:a3:13:d7: 68:ee:86:3e:de:f1:4a:6b:3b:fc:4d:d0:5f:70:84:fd:f0:24: 86:77:d9:b7:dc:9e:a0:ae:bf:e7:27:a7:3a:32:59:2d:d4:2c: f4:e4:2d:d1:82:39:04:b0:4f:28:dd:8c:3b:48:2f:ff:e1:33: 62:34:18:ed:77:e4:9a:45:8b:22:65:ee:4d:bd:08:d3:6a:2a: 04:ab:29:a6:09:a4:21:54:fd:ee:72:0e:4b:8a:d7:7d:ee:e1: e3:8e:64:69:87:3d:2c:26:84:26:0d:e6:43:44:ca:d2:1c:60: b1:ba:86:86 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUESV7MAxV91AZu8INRwXJG7w29D4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDgyOTIwNDIyMVoX DTI2MDgyODIwNDcyMVowMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0Uy MjJFNjA5M0VEMTI0MTE2QzQwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSQ/uxl7nPFtaQO4bufq4f5wwKIgg4xfG/5NKJa+K4Uy0FOV0Z/aQ9njy8z PbbCDOFiV/J1w/qzeIC2NULc0hvtj/fB1SHEaM8Mvc2IxUDdr8dCowEakAQlF55x cUQNyHG2pA+UZGSq4Hwtske3Hw2l9m4SvbzwAeigZcj3o3hj32tOcaRnK3psFf5y /XZ2bQsA88UTkoPXHcTG7DEkYoO6x51jjj/V1JAa2dxy2EmUQOli1zSfF2Vv0cbK IFVnI2dxoMgCMqdlp1z5DJF3mCYiHj0Lpe+Cre+Ncxgijwso0VErAe0sG/GZTXjF B+NUT3sd/gpXY8TxoXLWjsENEG0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIEHuJcGgL8VN34iLmCT7RJBFsQPMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0 LWJjOGEtNGNlNS1iNTUwLTlhYTdiMzZlZTFmYS8wLzgxMDdCODk3MDY4MEJGMTUz NzdFMjIyRTYwOTNFRDEyNDExNkM0MEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFogwDQYJKoZIhvcNAQELBQADggEBAFYNwXdlUsC2SvYP7KjXfEtFci3BAeC7 VOw1qj+g4TZ3AVrBPMnPa6hvMsw5mM3koqPU1C1iIokaoM4yRCn6kiDlsFkItTRN YDr/aY3omY3AcyUS2SnVmhYyLijez5ll5+Wx5UgF6dD5tO+0QOK/nEJT5NFKG/Le L3JEcRyw8qQlRluSwOZIRXbm/n/cKKMT12juhj7e8UprO/xN0F9whP3wJIZ32bfc nqCuv+cnpzoyWS3ULPTkLdGCOQSwTyjdjDtIL//hM2I0GO135JpFiyJl7k29CNNq KgSrKaYJpCFU/e5yDkuK133u4eOOZGmHPSwmhCYN5kNEytIcYLG6hoY= -----END CERTIFICATE-----Generated at Sun Sep 7 10:11:59 2025 by rpki-client