$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer File: 85735A4922D529215199E6F4D6829DF68512E117.cer (raw, json) Hash identifier: etjqI4DM2VTl+coK2FvFjazV+qu342bROei6e2eE2FU= Subject key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 01C27309B1810E126C59EC048B83DDD4D339B689 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Mar 2026 20:42:34 +0000 Certificate not after: Mon 01 Mar 2027 20:47:34 +0000 Subordinate resources: IP: 157.66.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c2:73:09:b1:81:0e:12:6c:59:ec:04:8b:83:dd:d4:d3:39:b6:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 2 20:42:34 2026 GMT Not After : Mar 1 20:47:34 2027 GMT Subject: CN=85735A4922D529215199E6F4D6829DF68512E117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:26:ae:f9:9c:70:e1:ee:b8:8f:8c:52:1d:b3: 75:6d:3a:ad:08:75:2f:38:98:94:03:5a:6c:fa:e5: 97:8d:38:f6:d6:cc:b9:fb:26:ff:12:52:2d:f1:f0: f1:c2:b8:c6:09:c8:90:7a:07:7a:3a:55:ec:e3:88: 0c:08:5e:9c:89:9f:d9:59:90:92:cc:bb:92:60:54: 21:50:d9:4b:f6:22:aa:76:5b:ca:a5:67:a6:19:6f: 13:74:6d:e4:5f:39:3a:a9:ab:a7:fb:80:16:ef:ea: ae:c4:4c:d3:85:f4:b0:db:cb:70:a1:03:91:82:4c: e5:2d:47:7f:be:9d:ee:04:8b:5c:8c:5c:b4:a7:6b: f7:15:df:7c:92:b5:c7:9d:04:50:62:b1:34:a5:87: b1:e1:3f:49:12:20:c3:9b:37:8a:2c:6a:f4:10:75: e7:8e:7c:fd:fc:07:20:2d:05:92:f4:0f:8d:30:4b: 76:8d:0a:d9:3b:fd:23:61:04:80:b2:3e:5d:16:b2: 44:c0:5a:96:24:5f:f3:10:aa:6c:ce:59:96:3c:af: 91:4f:e9:4a:e6:c8:d3:11:2a:77:3c:b5:cf:35:52: 3a:d7:e4:2f:f9:d1:6b:a1:a6:8e:17:d1:c8:da:82: 8e:7b:a3:8c:fb:e3:57:4b:93:bc:33:65:4f:25:54: dd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.34.0/23 Signature Algorithm: sha256WithRSAEncryption 94:c6:20:24:98:be:54:29:c9:2e:98:b7:97:9b:b8:67:ef:4e: 1f:a0:c3:75:24:34:d3:97:3a:ed:36:36:96:cd:be:36:43:d8: 40:a5:65:fc:09:94:05:a5:d7:d1:d4:40:ba:cc:47:a6:53:bf: ac:10:bf:53:3a:61:19:e7:22:46:1b:01:ca:c7:3a:70:dd:55: e3:7d:13:30:f8:a3:07:86:85:20:26:7e:47:3b:27:3c:c1:fb: 20:a1:9b:d2:cb:7a:a7:5a:51:75:69:e8:81:ea:e6:dd:90:49: f0:14:7b:20:0e:72:45:14:77:f4:17:bb:5d:a9:73:d8:aa:cd: 3c:1f:db:8f:48:03:4e:ad:bb:d5:fb:50:97:1f:0e:c8:3b:0b: ea:29:d7:eb:b0:b9:78:3e:8c:0f:32:da:82:6a:c9:02:20:8c: 18:3b:37:c7:51:f3:48:7d:c7:2a:df:94:a7:d4:b3:86:97:63: fc:9f:2e:5a:24:9b:b7:de:ef:76:90:d7:84:9a:3e:6e:75:38: f2:c4:77:b8:6e:e2:c0:2e:ad:4b:d0:8d:d2:5c:8b:80:4e:77: a5:c5:39:bd:77:b2:84:2a:7b:9b:a4:9c:d8:33:31:e9:6f:1b: df:fc:26:65:80:f5:33:b2:ad:47:99:15:23:06:48:f9:d6:ad: 8a:c4:8d:53 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAcJzCbGBDhJsWewEi4Pd1NM5tokwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDMwMjIwNDIzNFoX DTI3MDMwMTIwNDczNFowMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlF NkY0RDY4MjlERjY4NTEyRTExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEmrvmccOHuuI+MUh2zdW06rQh1LziYlANabPrll4049tbMufsm/xJSLfHw 8cK4xgnIkHoHejpV7OOIDAhenImf2VmQksy7kmBUIVDZS/YiqnZbyqVnphlvE3Rt 5F85Oqmrp/uAFu/qrsRM04X0sNvLcKEDkYJM5S1Hf76d7gSLXIxctKdr9xXffJK1 x50EUGKxNKWHseE/SRIgw5s3iixq9BB15458/fwHIC0FkvQPjTBLdo0K2Tv9I2EE gLI+XRayRMBaliRf8xCqbM5ZljyvkU/pSubI0xEqdzy1zzVSOtfkL/nRa6GmjhfR yNqCjnujjPvjV0uTvDNlTyVU3RUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIVzWkki1SkhUZnm9NaCnfaFEuEXMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjM2U2OGJk LWIwNGMtNGQzNS04MDIwLTAyOTM2MzQyZmIxZC8wLzg1NzM1QTQ5MjJENTI5MjE1 MTk5RTZGNEQ2ODI5REY2ODUxMkUxMTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQiIwDQYJKoZIhvcNAQELBQADggEBAJTGICSYvlQpyS6Yt5ebuGfvTh+gw3Uk NNOXOu02NpbNvjZD2EClZfwJlAWl19HUQLrMR6ZTv6wQv1M6YRnnIkYbAcrHOnDd VeN9EzD4oweGhSAmfkc7JzzB+yChm9LLeqdaUXVp6IHq5t2QSfAUeyAOckUUd/QX u12pc9iqzTwf249IA06tu9X7UJcfDsg7C+op1+uwuXg+jA8y2oJqyQIgjBg7N8dR 80h9xyrflKfUs4aXY/yfLlokm7fe73aQ14SaPm51OPLEd7hu4sAurUvQjdJci4BO d6XFOb13soQqe5uknNgzMelvG9/8JmWA9TOyrUeZFSMGSPnWrYrEjVM= -----END CERTIFICATE-----Generated at Sat Mar 7 16:13:18 2026 by rpki-client