$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer File: B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.cer (raw, json) Hash identifier: fsGeAK4HTbqb2q5I16fB1GDkF4vk2cMgWkZQfp94eOg= Subject key identifier: B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3C641E37A88E0064AA9398471DB3F5B4297001E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.mft caRepository: rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 22 Jul 2024 13:53:45 +0000 Certificate not after: Mon 21 Jul 2025 13:58:45 +0000 Subordinate resources: IP: 160.25.48.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:64:1e:37:a8:8e:00:64:aa:93:98:47:1d:b3:f5:b4:29:70:01:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 22 13:53:45 2024 GMT Not After : Jul 21 13:58:45 2025 GMT Subject: CN=B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6f:0a:68:4b:9a:d0:a2:64:7a:c9:9f:3d:9a: 15:3b:73:7b:68:c6:3f:f0:a1:71:fe:91:4c:78:c6: 86:b9:06:21:98:03:ba:c3:f8:08:66:e3:1e:b6:bc: b0:e7:31:db:d7:a8:b3:5b:d4:09:21:1b:f0:91:f8: 4e:59:3c:56:b0:8f:b0:66:57:11:84:c0:65:29:df: f0:a8:78:1a:74:79:3d:c7:c7:0a:7c:ba:4c:aa:c4: 78:47:f7:8b:cb:69:0f:be:3f:b6:65:c4:a4:0b:69: b4:bb:c4:52:a9:aa:e2:97:bd:af:c6:6b:f3:dc:98: 32:e1:65:8e:c0:a3:34:f3:9b:a3:f3:3f:08:f4:f1: ed:32:b7:1c:fa:c4:8f:14:ca:fa:24:24:50:2c:ed: 9f:35:bc:66:6e:bf:69:a8:3f:e9:85:fb:22:f3:ff: 57:86:4e:9e:b2:22:5d:93:ff:39:92:4f:d3:74:bd: bc:b7:4e:88:38:10:05:3c:39:f8:9a:50:cf:ad:1c: c3:21:fc:f9:81:fa:39:5f:86:f1:0e:16:9d:f4:0e: 09:ea:b4:ff:98:1b:ff:db:8e:a2:18:58:fb:d5:4d: 6c:11:00:a1:7e:5c:ff:db:ad:b3:b3:1c:be:99:13: 94:21:7b:d5:4a:a2:cc:24:b5:73:04:f7:09:d6:02: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B5:76:6E:F9:69:F5:BB:0A:7C:76:FA:A9:E5:3B:DE:82:74:E5:64:3E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e5682bf2-0634-4782-a5af-eeb919f19143/0/B5766EF969F5BB0A7C76FAA9E53BDE8274E5643E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.48.0/23 Signature Algorithm: sha256WithRSAEncryption 41:18:c0:09:5a:a8:11:75:54:fc:f6:a0:b1:0d:e4:6e:c7:98: 39:9c:04:31:70:4e:e7:91:6d:fc:38:00:87:1a:99:20:a0:d5: 64:be:a7:0b:c0:8e:cd:a6:01:40:5d:25:67:b3:41:5c:ef:1d: f9:b2:43:24:8f:7e:9d:66:c4:a1:5c:41:24:e6:0d:ed:d6:ef: 79:7c:88:16:32:79:74:b9:91:df:b7:25:ac:48:f1:a0:eb:64: 25:20:05:45:1e:c2:5a:7e:2e:0f:ba:7e:d2:0a:0a:83:e5:3a: 6d:47:a1:c4:9b:46:cc:98:9e:88:5b:a7:ff:9e:0f:ac:4b:29: 26:32:d2:f7:14:7b:23:80:e8:5a:fd:e7:8e:7c:6b:72:b0:3f: a2:f6:a8:d2:17:b0:f6:9c:a7:3d:40:f1:35:9d:14:81:b4:fa: 28:c8:fc:bc:cf:ca:6b:4d:b5:5f:d2:f3:f9:01:16:85:8f:bb: e1:7e:c4:7e:ea:76:72:49:05:80:39:99:b5:c4:e3:69:d4:aa: be:1b:80:db:37:c7:cb:58:dd:59:a1:68:93:61:da:30:04:c4: 6d:ca:e5:5b:85:77:08:82:00:9a:ee:b8:ef:62:4c:6a:19:4a: 3c:da:42:ea:ee:bc:95:fc:e2:75:4f:68:b2:ba:de:63:51:04: f2:46:83:21 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPGQeN6iOAGSqk5hHHbP1tClwAeQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcyMjEzNTM0NVoX DTI1MDcyMTEzNTg0NVowMzExMC8GA1UEAxMoQjU3NjZFRjk2OUY1QkIwQTdDNzZG QUE5RTUzQkRFODI3NEU1NjQzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAONvCmhLmtCiZHrJnz2aFTtze2jGP/Chcf6RTHjGhrkGIZgDusP4CGbjHra8 sOcx29eos1vUCSEb8JH4Tlk8VrCPsGZXEYTAZSnf8Kh4GnR5PcfHCny6TKrEeEf3 i8tpD74/tmXEpAtptLvEUqmq4pe9r8Zr89yYMuFljsCjNPObo/M/CPTx7TK3HPrE jxTK+iQkUCztnzW8Zm6/aag/6YX7IvP/V4ZOnrIiXZP/OZJP03S9vLdOiDgQBTw5 +JpQz60cwyH8+YH6OV+G8Q4WnfQOCeq0/5gb/9uOohhY+9VNbBEAoX5c/9uts7Mc vpkTlCF71UqizCS1cwT3CdYCjCsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLV2bvlp9bsKfHb6qeU73oJ05WQ+MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNTY4MmJmMi0wNjM0LTQ3ODItYTVhZi1lZWI5MTlmMTkxNDMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NjgyYmYy LTA2MzQtNDc4Mi1hNWFmLWVlYjkxOWYxOTE0My8wL0I1NzY2RUY5NjlGNUJCMEE3 Qzc2RkFBOUU1M0JERTgyNzRFNTY0M0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGTAwDQYJKoZIhvcNAQELBQADggEBAEEYwAlaqBF1VPz2oLEN5G7HmDmcBDFw TueRbfw4AIcamSCg1WS+pwvAjs2mAUBdJWezQVzvHfmyQySPfp1mxKFcQSTmDe3W 73l8iBYyeXS5kd+3JaxI8aDrZCUgBUUewlp+Lg+6ftIKCoPlOm1HocSbRsyYnohb p/+eD6xLKSYy0vcUeyOA6Fr95458a3KwP6L2qNIXsPacpz1A8TWdFIG0+ijI/LzP ymtNtV/S8/kBFoWPu+F+xH7qdnJJBYA5mbXE42nUqr4bgNs3x8tY3VmhaJNh2jAE xG3K5VuFdwiCAJruuO9iTGoZSjzaQuruvJX84nVPaLK63mNRBPJGgyE= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org